69b5fe8bacb1c2feeeb6d7964f69eff0_NEIKI

Sharing

Copy URL Twitter E-mail

General

Target

69b5fe8bacb1c2feeeb6d7964f69eff0_NEIKI
Size

3.6MB
MD5

69b5fe8bacb1c2feeeb6d7964f69eff0
SHA1

07df2a17cb2d4fe525785be756192ffee5619673
SHA256

03f43898dc6c13b0cbd05fa4328315b81e11b891e2e94d4871925a8a93fdf120
SHA512

fc170a3d0b3297683eb00e3f2d502877b071b0cc8fe34c0cfd5d30be5662e3860f09a38e370acde045b268a8bd03a8e7a0e16a9c8c3c3e290d10659fcf9831f6
SSDEEP

98304:QzJdVdaumW1/EH5la0ayWQlk2Qxr2+PPTxHgMEGkdWNPQsBbEo71jcLQgt0rmLT3:OX1/EH5la0ayWQlk2Qxr2+PPTxHgMEGV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69b5fe8bacb1c2feeeb6d7964f69eff0_NEIKI

Files

69b5fe8bacb1c2feeeb6d7964f69eff0_NEIKI
.exe windows:5 windows x86 arch:x86

68cad0df67fa6012fda4da5663f43dce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\b\s\w\ir\cache\builder\sdk\out\ReleaseIA32\gen_snapshot.exe.pdb

Imports

ws2_32

closesocket
setsockopt
shutdown
WSAStartup
WSASend
WSARecv
WSAIoctl
WSAGetLastError
WSASetLastError
socket

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

dbghelp

SymCleanup
SymInitialize
SymFromAddr
SymSetOptions

kernel32

GetCPInfo
DecodePointer
GetFileSizeEx
LCMapStringW
CompareStringW
HeapReAlloc
IsValidCodePage
HeapFree
ReadConsoleW
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
CreateThread
SetFilePointerEx
DuplicateHandle
FlushFileBuffers
SetEndOfFile
PeekNamedPipe
GetModuleHandleExW
GetACP
GetOEMCP
SetEnvironmentVariableW
GetProcessHeap
GetStringTypeW
HeapSize
FindFirstFileExW
HeapAlloc
EncodePointer
LoadLibraryExW
RaiseException
RtlUnwind
GetStartupInfoW
GetStdHandle
SetStdHandle
CreateFileW
MultiByteToWideChar
GetConsoleCP
GetConsoleOutputCP
GetConsoleMode
SetConsoleMode
SetConsoleCtrlHandler
SetConsoleCP
SetConsoleOutputCP
GetFileType
ReadFile
WriteFile
CloseHandle
GetLastError
SetLastError
CreateIoCompletionPort
GetQueuedCompletionStatus
PostQueuedCompletionStatus
CancelIoEx
WaitForSingleObject
OpenThread
GetCurrentDirectoryW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetUnhandledExceptionFilter
SetErrorMode
ExitProcess
GetSystemInfo
GetModuleFileNameW
GetUserDefaultLocaleName
CreateEventW
GetCurrentProcess
GetCurrentProcessId
TerminateProcess
GetModuleHandleW
GetProcAddress
FindClose
FindNextFileW
GetFileAttributesW
GetFileInformationByHandle
WideCharToMultiByte
FreeLibrary
LoadLibraryW
VirtualAlloc
VirtualProtect
VirtualFree
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
GetCurrentThreadId
TlsAlloc
TlsSetValue
TlsFree
GetCommandLineW
QueryPerformanceCounter
QueryPerformanceFrequency
Sleep
GetSystemTimeAsFileTime
TlsGetValue
SleepConditionVariableSRW
VirtualQuery
GetTimeZoneInformation
SuspendThread
ResumeThread
GetThreadContext
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
CreateFileA
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
SetEvent
ResetEvent
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
IsProcessorFeaturePresent
UnhandledExceptionFilter
InitializeSListHead
IsDebuggerPresent
WriteConsoleW

Exports

Exports

Dart_AddSymbols
Dart_Allocate
Dart_AllocateWithNativeFields
Dart_BooleanValue
Dart_ClassLibrary
Dart_ClassName
Dart_Cleanup
Dart_CloseNativePort
Dart_ClosureFunction
Dart_CompileAll
Dart_CompileSourcesToKernel
Dart_CompileToKernel
Dart_CreateAppAOTSnapshotAsAssembly
Dart_CreateAppAOTSnapshotAsBlobs
Dart_CreateAppAOTSnapshotAsElf
Dart_CreateAppJITSnapshotAsBlobs
Dart_CreateCoreJITSnapshotAsBlobs
Dart_CreateIsolateGroup
Dart_CreateIsolateGroupFromKernel
Dart_CreateSnapshot
Dart_CreateVMAOTSnapshotAsAssembly
Dart_CurrentIsolate
Dart_CurrentIsolateData
Dart_CurrentIsolateGroupData
Dart_DebugName
Dart_DefaultCanonicalizeUrl
Dart_DeletePersistentHandle
Dart_DeleteWeakPersistentHandle
Dart_DoubleValue
Dart_DumpNativeStackTrace
Dart_EmptyString
Dart_EnterIsolate
Dart_EnterScope
Dart_ErrorGetException
Dart_ErrorGetStackTrace
Dart_ErrorHasException
Dart_ExecuteInternalCommand
Dart_ExitIsolate
Dart_ExitScope
Dart_False
Dart_FinalizeAllClasses
Dart_FinalizeLoading
Dart_FunctionIsStatic
Dart_FunctionName
Dart_FunctionOwner
Dart_GetClass
Dart_GetDataFromByteBuffer
Dart_GetError
Dart_GetField
Dart_GetImportsOfScheme
Dart_GetLoadedLibraries
Dart_GetMainPortId
Dart_GetMessageNotifyCallback
Dart_GetNativeArgument
Dart_GetNativeArgumentCount
Dart_GetNativeArguments
Dart_GetNativeBooleanArgument
Dart_GetNativeDoubleArgument
Dart_GetNativeFieldsOfArgument
Dart_GetNativeInstanceField
Dart_GetNativeInstanceFieldCount
Dart_GetNativeIntegerArgument
Dart_GetNativeIsolateGroupData
Dart_GetNativeReceiver
Dart_GetNativeResolver
Dart_GetNativeStringArgument
Dart_GetNativeSymbol
Dart_GetObfuscationMap
Dart_GetPeer
Dart_GetStaticMethodClosure
Dart_GetStickyError
Dart_GetType
Dart_GetTypeOfExternalTypedData
Dart_GetTypeOfTypedData
Dart_GlobalTimelineSetRecordedStreams
Dart_HandleFromPersistent
Dart_HandleFromWeakPersistent
Dart_HandleMessage
Dart_HandleServiceMessages
Dart_HasLivePorts
Dart_HasServiceMessages
Dart_HasStickyError
Dart_IdentityEquals
Dart_Initialize
Dart_InstanceGetType
Dart_IntegerFitsIntoInt64
Dart_IntegerFitsIntoUint64
Dart_IntegerToHexCString
Dart_IntegerToInt64
Dart_IntegerToUint64
Dart_Invoke
Dart_InvokeClosure
Dart_InvokeConstructor
Dart_InvokeVMServiceMethod
Dart_IsApiError
Dart_IsBoolean
Dart_IsByteBuffer
Dart_IsClosure
Dart_IsCompilationError
Dart_IsDouble
Dart_IsError
Dart_IsExternalString
Dart_IsFatalError
Dart_IsFunction
Dart_IsFuture
Dart_IsInstance
Dart_IsInteger
Dart_IsKernel
Dart_IsKernelIsolate
Dart_IsLibrary
Dart_IsList
Dart_IsMap
Dart_IsNull
Dart_IsNumber
Dart_IsPausedOnExit
Dart_IsPausedOnStart
Dart_IsPrecompiledRuntime
Dart_IsReloading
Dart_IsServiceIsolate
Dart_IsString
Dart_IsStringLatin1
Dart_IsTearOff
Dart_IsType
Dart_IsTypeVariable
Dart_IsTypedData
Dart_IsUnhandledExceptionError
Dart_IsVMFlagSet
Dart_IsVariable
Dart_IsolateData
Dart_IsolateFlagsInitialize
Dart_IsolateGroupData
Dart_IsolateHeapGlobalUsedMaxMetric
Dart_IsolateHeapGlobalUsedMetric
Dart_IsolateHeapNewCapacityMaxMetric
Dart_IsolateHeapNewCapacityMetric
Dart_IsolateHeapNewExternalMetric
Dart_IsolateHeapNewUsedMaxMetric
Dart_IsolateHeapNewUsedMetric
Dart_IsolateHeapOldCapacityMaxMetric
Dart_IsolateHeapOldCapacityMetric
Dart_IsolateHeapOldExternalMetric
Dart_IsolateHeapOldUsedMaxMetric
Dart_IsolateHeapOldUsedMetric
Dart_IsolateMakeRunnable
Dart_IsolateRunnableHeapSizeMetric
Dart_IsolateRunnableLatencyMetric
Dart_IsolateServiceId
Dart_KernelIsolateIsRunning
Dart_KernelListDependencies
Dart_KernelPort
Dart_KillIsolate
Dart_LibraryHandleError
Dart_LibraryResolvedUrl
Dart_LibraryUrl
Dart_ListGetAsBytes
Dart_ListGetAt
Dart_ListGetRange
Dart_ListLength
Dart_ListSetAsBytes
Dart_ListSetAt
Dart_LoadCompilationTrace
Dart_LoadLibraryFromKernel
Dart_LoadScriptFromKernel
Dart_LoadTypeFeedback
Dart_LookupLibrary
Dart_MapContainsKey
Dart_MapGetAt
Dart_MapKeys
Dart_New
Dart_NewApiError
Dart_NewBoolean
Dart_NewByteBuffer
Dart_NewCompilationError
Dart_NewDouble
Dart_NewExternalLatin1String
Dart_NewExternalTypedData
Dart_NewExternalTypedDataWithFinalizer
Dart_NewExternalUTF16String
Dart_NewInteger
Dart_NewIntegerFromHexCString
Dart_NewIntegerFromUint64
Dart_NewList
Dart_NewListOf
Dart_NewListOfType
Dart_NewNativePort
Dart_NewPersistentHandle
Dart_NewSendPort
Dart_NewStringFromCString
Dart_NewStringFromUTF16
Dart_NewStringFromUTF32
Dart_NewStringFromUTF8
Dart_NewTypedData
Dart_NewUnhandledExceptionError
Dart_NewWeakPersistentHandle
Dart_NotifyIdle
Dart_NotifyLowMemory
Dart_Null
Dart_ObjectEquals
Dart_ObjectIsType
Dart_Post
Dart_PostCObject
Dart_PostInteger
Dart_Precompile
Dart_PrepareToAbort
Dart_PropagateError
Dart_ReThrowException
Dart_ReadAllBytecode
Dart_RegisterIsolateServiceRequestCallback
Dart_RegisterRootServiceRequestCallback
Dart_RootLibrary
Dart_RunLoop
Dart_SaveCompilationTrace
Dart_SaveTypeFeedback
Dart_ScopeAllocate
Dart_SendPortGetId
Dart_ServiceSendDataEvent
Dart_ServiceWaitForLoadPort
Dart_SetBooleanReturnValue
Dart_SetDartLibrarySourcesKernel
Dart_SetDoubleReturnValue
Dart_SetEmbedderInformationCallback
Dart_SetEnvironmentCallback
Dart_SetField
Dart_SetFileModifiedCallback
Dart_SetIntegerReturnValue
Dart_SetLibraryTagHandler
Dart_SetMessageNotifyCallback
Dart_SetNativeInstanceField
Dart_SetNativeResolver
Dart_SetNativeServiceStreamCallback
Dart_SetPausedOnExit
Dart_SetPausedOnStart
Dart_SetPeer
Dart_SetPersistentHandle
Dart_SetReturnValue
Dart_SetRootLibrary
Dart_SetServiceStreamCallbacks
Dart_SetShouldPauseOnExit
Dart_SetShouldPauseOnStart
Dart_SetStickyError
Dart_SetThreadName
Dart_SetVMFlags
Dart_SetWeakHandleReturnValue
Dart_ShouldPauseOnExit
Dart_ShouldPauseOnStart
Dart_ShutdownIsolate
Dart_SortClasses
Dart_StartProfiling
Dart_StopProfiling
Dart_StringGetProperties
Dart_StringLength
Dart_StringStorageSize
Dart_StringToCString
Dart_StringToLatin1
Dart_StringToUTF16
Dart_StringToUTF8
Dart_ThreadDisableProfiling
Dart_ThreadEnableProfiling
Dart_ThrowException
Dart_TimelineEvent
Dart_TimelineGetMicros
Dart_ToString
Dart_True
Dart_TypedDataAcquireData
Dart_TypedDataReleaseData
Dart_VMCurrentRSSMetric
Dart_VMIsolateCountMetric
Dart_VMPeakRSSMetric
Dart_VersionString
Dart_WaitForEvent
Dart_WriteProfileToTimeline

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 720KB - Virtual size: 720KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 189KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68cad0df67fa6012fda4da5663f43dce

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

advapi32

dbghelp

kernel32

Exports

Exports

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.rdata Size: 720KB - Virtual size: 720KB

.data Size: 26KB - Virtual size: 45KB

.reloc Size: 189KB - Virtual size: 188KB

.text
Size: 2.7MB - Virtual size: 2.7MB

.rdata
Size: 720KB - Virtual size: 720KB

.data
Size: 26KB - Virtual size: 45KB

.reloc
Size: 189KB - Virtual size: 188KB