6f3b278b15d1dff6a2d4f053a619cf90_NEIKI

Sharing

Copy URL Twitter E-mail

General

Target

6f3b278b15d1dff6a2d4f053a619cf90_NEIKI
Size

665KB
MD5

6f3b278b15d1dff6a2d4f053a619cf90
SHA1

88425b29e1368a71d1f54b4d4664358ce6976673
SHA256

9070435639bcf64aebc632f848af969aa24800cb40864ae90d5ce56a1d43b373
SHA512

8da06733aba8e32d510b54087a433bd16ea0281983829737b525649eea6a66ff80dabf0c51b9f4b129af207da80003f13288cf355846d03b48d122fafd9020fa
SSDEEP

12288:sx1SZHqPrT9cpmYhJ2YL1LkBf3QD/YEH4vcn9VNB3t0m:sLSZHkpQmYh3LFkB3s/Y5oVNB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f3b278b15d1dff6a2d4f053a619cf90_NEIKI

Files

6f3b278b15d1dff6a2d4f053a619cf90_NEIKI
.dll windows:5 windows x86 arch:x86

d8b6a99fe9c547f16d908ed8afcee4c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FlushFileBuffers
ReadFile
InitializeCriticalSectionAndSpinCount
SetFilePointer
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetConsoleMode
GetConsoleCP
HeapSize
SetHandleCount
GetStdHandle
WriteFile
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MultiByteToWideChar
DebugBreak
IsDebuggerPresent
RaiseException
GetCommandLineA
WideCharToMultiByte
RtlUnwind
ExitProcess
GetModuleHandleW
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcessHeap
GetModuleFileNameW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetEndOfFile
VirtualQuery
GetSystemInfo
HeapFree
HeapAlloc
HeapReAlloc
SetThreadContext
HeapDestroy
HeapCreate
GetStartupInfoA
GetVersion
GetVersionExW
GetSystemTime
GetSystemTimeAsFileTime
SleepEx
QueryPerformanceCounter
QueryPerformanceFrequency
GetDiskFreeSpaceA
GlobalMemoryStatus
LoadLibraryExA
LoadLibraryW
LoadLibraryExW
GetTempFileNameA
SetPriorityClass
GlobalUnlock
VirtualFree
GetTempPathA
VirtualProtectEx
ReadProcessMemory
GetThreadContext
TerminateProcess
WaitForDebugEvent
ContinueDebugEvent
DebugSetProcessKillOnExit
DebugActiveProcessStop
GetVolumeInformationA
SystemTimeToTzSpecificLocalTime
DuplicateHandle
OpenProcess
VirtualAllocEx
WriteProcessMemory
CreateRemoteThread
VirtualFreeEx
GetCurrentThread
SetThreadPriority
DisableThreadLibraryCalls
CreateFileMappingA
MapViewOfFile
OpenMutexA
CreateMutexA
UnmapViewOfFile
GetProcessId
GetFullPathNameA
FileTimeToSystemTime
SystemTimeToFileTime
AddVectoredExceptionHandler
CreateThread
lstrcmpiA
VirtualAlloc
GetProcessAffinityMask
SetProcessAffinityMask
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetErrorMode
VirtualProtect
GetCurrentProcess
FlushInstructionCache
GetVersionExA
WaitForSingleObject
GetTickCount
GetCurrentDirectoryA
OutputDebugStringA
ReleaseMutex
GetLocalTime
LoadLibraryA
SetDllDirectoryA
GetSystemDirectoryA
GetProcAddress
FreeLibrary
CreateDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetThreadTimes
CreateToolhelp32Snapshot
Thread32First
CloseHandle
OpenThread
SuspendThread
Thread32Next
Sleep
ResumeThread
GetLastError
GetFileAttributesA
GetModuleHandleA
GetModuleFileNameA
GetPrivateProfileStringA
GetFileType
GetPrivateProfileIntA

user32

GetKeyState
CreateDesktopA
SwitchDesktop
OpenDesktopA
CloseDesktop
SetTimer
KillTimer
SetWindowPos
CallWindowProcA
CallWindowProcW
DialogBoxIndirectParamA
GetCursorPos
SetCursorPos
GetCursorInfo
SetCursor
SendMessageW
PeekMessageW
ValidateRect
ScrollWindow
FrameRect
InvalidateRgn
TabbedTextOutA
TabbedTextOutW
ScrollDC
InvalidateRect
DrawTextA
DrawTextExA
DrawTextW
DrawTextExW
ScreenToClient
ClientToScreen
GetClientRect
MapWindowPoints
GetUpdateRgn
RedrawWindow
ChangeDisplaySettingsA
ChangeDisplaySettingsExA
GetMonitorInfoW
ShowCursor
CreateDialogIndirectParamA
CreateDialogParamA
MoveWindow
EnumDisplaySettingsA
GetClipCursor
ClipCursor
DefWindowProcA
DefWindowProcW
CreateWindowExA
CreateWindowExW
RegisterClassExA
RegisterClassA
RegisterClassExW
RegisterClassW
SystemParametersInfoA
SystemParametersInfoW
BringWindowToTop
SetForegroundWindow
ChildWindowFromPoint
ChildWindowFromPointEx
WindowFromPoint
SetWindowsHookExW
GetDCEx
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
ShowScrollBar
DrawMenuBar
EnumDisplayDevicesA
EnumDisplayDevicesW
MonitorFromWindow
EnumWindows
IsWindowVisible
SetWindowsHookExA
CallNextHookEx
UnhookWindowsHookEx
GetWindowLongW
SetWindowLongW
SetWindowLongA
WindowFromDC
GetForegroundWindow
LoadBitmapA
SetWindowTextA
DispatchMessageA
PeekMessageA
TranslateMessage
GetWindowRect
GetMenu
AdjustWindowRectEx
EnumDisplayMonitors
GetMonitorInfoA
GetSystemMetrics
GetParent
GetDesktopWindow
GetWindowLongA
GetClassNameA
GetWindowTextA
DestroyWindow
GetAsyncKeyState
SendMessageA
LoadIconA
PostQuitMessage
FindWindowA
FindWindowExA
ShowWindow
OffsetRect
PostMessageA
GetDC
MessageBoxA
DeferWindowPos

gdi32

CreateEllipticRgnIndirect
CreateRectRgnIndirect
CreatePolygonRgn
SetRectRgn
StretchDIBits
SetDIBits
GetDIBits
SetDIBitsToDevice
Polyline
MaskBlt
StretchBlt
PatBlt
Rectangle
TextOutW
PolyPolygon
RoundRect
Polygon
PolylineTo
PolyBezier
PolyBezierTo
PlgBlt
PolyDraw
GetPixel
Chord
SetPixel
SetPixelV
ExtTextOutW
Ellipse
ExtTextOutA
PolyTextOutA
ArcTo
LineTo
Arc
MoveToEx
GetClipBox
IntersectClipRect
CreateDCA
CreateDCW
PlayEnhMetaFile
SetViewportOrgEx
SetViewportExtEx
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
SetWindowOrgEx
GetCurrentPositionEx
GetRgnBox
GetDCOrgEx
ScaleWindowExtEx
SaveDC
RestoreDC
AnimatePalette
CreatePalette
SelectPalette
RealizePalette
GetSystemPaletteEntries
SetSystemPaletteUse
GetPaletteEntries
GetSystemPaletteUse
CreateICA
DeleteObject
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
GetObjectA
GetStretchBltMode
SetStretchBltMode
DeleteDC
SetTextColor
SetBkMode
TextOutA
GetDeviceCaps
GetPixelFormat
DescribePixelFormat
GetObjectType
GetStockObject
BitBlt
CreateEllipticRgn
CreateFontIndirectA
CreateFontA
GetDeviceGammaRamp
SetDeviceGammaRamp
AddFontResourceW
AddFontResourceA
CreateScalableFontResourceW
CreateScalableFontResourceA
SetBrushOrgEx
GetBrushOrgEx
GetTextColor
SetTextCharacterExtra
GetTextCharacterExtra
SetTextAlign
GetTextAlign
SetROP2
GetROP2
SetPolyFillMode
GetPolyFillMode
SetLayout
GetLayout
SetDCPenColor
GetDCPenColor
SetDCBrushColor
GetDCBrushColor
GetBkMode
SetBkColor
GetBkColor
SetArcDirection
GetArcDirection
SetWindowExtEx
GetWindowExtEx
SetMapMode
GetMapMode
SetWorldTransform
GetWorldTransform
SetGraphicsMode
GetGraphicsMode
GetCurrentObject
ExcludeClipRect
ExtSelectClipRgn
GetClipRgn
SelectClipRgn
OffsetRgn
GetRandomRgn
CreateRectRgn

Exports

Exports

EndHook
GetDllVersion
GetHookInfo
GetHookStatus
GetThreadStartAddress
Inject
SetTarget
StartHook

Sections

.text
Size: 407KB - Virtual size: 407KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8b6a99fe9c547f16d908ed8afcee4c0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 407KB - Virtual size: 407KB

.rdata Size: 150KB - Virtual size: 149KB

.data Size: 18KB - Virtual size: 49KB

.rsrc Size: 40KB - Virtual size: 40KB

.reloc Size: 48KB - Virtual size: 47KB

.text
Size: 407KB - Virtual size: 407KB

.rdata
Size: 150KB - Virtual size: 149KB

.data
Size: 18KB - Virtual size: 49KB

.rsrc
Size: 40KB - Virtual size: 40KB

.reloc
Size: 48KB - Virtual size: 47KB