C:\WorkSpace\Pixeval\src\Pixeval.Controls\obj\x86\Release\net8.0-windows10.0.22621.0\Pixeval.Controls.pdb
Static task
static1
Behavioral task
behavioral1
Sample
2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics.dll
Resource
win10v2004-20240611-en
General
-
Target
2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics.exe
-
Size
329KB
-
MD5
c312526fa8b8baf6186f5d12eb9622e0
-
SHA1
8547e2eff5796cee2bbd858dd2703785a7f710c5
-
SHA256
2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0
-
SHA512
133cc6f054acebb183743622da1be5838b01900927d25b6d925b22c96515b88d49d3fd4de8e10d3ebaf84f7adfd72e6abb240b2d4c29da390933436a0092c033
-
SSDEEP
6144:Alr+ddfH6MJmUHSBtz/BdX3ZaWlJxmg5CW6IN1/2Ps+a3gzf7VQXF2q9ZBuEu:pEESBt7BtEWl5CWe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics.exe
Files
-
2b186e48d8e73dbce633df28816f7f078f0d4e6c130af33fb8d6eeafc6c917b0_NeikiAnalytics.exe.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
mscoree
_CorDllMain
Sections
.text Size: 327KB - Virtual size: 327KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 960B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ