2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics.exe
Size

329KB
MD5

c312526fa8b8baf6186f5d12eb9622e0
SHA1

8547e2eff5796cee2bbd858dd2703785a7f710c5
SHA256

2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0
SHA512

133cc6f054acebb183743622da1be5838b01900927d25b6d925b22c96515b88d49d3fd4de8e10d3ebaf84f7adfd72e6abb240b2d4c29da390933436a0092c033
SSDEEP

6144:Alr+ddfH6MJmUHSBtz/BdX3ZaWlJxmg5CW6IN1/2Ps+a3gzf7VQXF2q9ZBuEu:pEESBt7BtEWl5CWe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics.exe

Files

2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics.exe
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\WorkSpace\Pixeval\src\Pixeval.Controls\obj\x86\Release\net8.0-windows10.0.22621.0\Pixeval.Controls.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 327KB - Virtual size: 327KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ