99c44a16af51ac866f16d20fccf3b0f0_NEIKI

Sharing

Copy URL Twitter E-mail

General

Target

99c44a16af51ac866f16d20fccf3b0f0_NEIKI
Size

707KB
MD5

99c44a16af51ac866f16d20fccf3b0f0
SHA1

120c4e8dea22c5a6695820864786fdf5cc40e456
SHA256

de44d12e7baa40e015623bb802c87ce410b90118cbaf779d0be057d0d43882c2
SHA512

ff4152a58e7325d634bc0970f66d27a79af1e2a53c2b582917e4bbe891f232873153f63dd7a8de1a9bc0213ec0f51fef4d21166b63373596d97b0a8dff30512e
SSDEEP

12288:Ehjh8soSLmOa0i5sY3oaPIZ4G9LF1mRXS1UHs08bekDxCSiTNdTr+w9/:EhjhsSL9Zi5sY3oaG4G9LFwRXE8IxnO7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99c44a16af51ac866f16d20fccf3b0f0_NEIKI

Files

99c44a16af51ac866f16d20fccf3b0f0_NEIKI
.exe windows:5 windows x86 arch:x86

e2c6e6c0450187f9e59a7e73b7406cca

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

joyGetNumDevs
joyGetPosEx
timeGetTime
timeEndPeriod
timeBeginPeriod
joyGetDevCapsA

imm32

ImmAssociateContext

kernel32

SetConsoleWindowInfo
GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
CreateEventA
WaitForMultipleObjects
ResetEvent
SetEvent
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
SetThreadExecutionState
SetThreadPriority
SearchPathA
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
WriteConsoleA
GetStartupInfoW
HeapSetInformation
GetCommandLineA
EncodePointer
DecodePointer
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
SetConsoleTextAttribute
SetConsoleCtrlHandler
FreeConsole
SetConsoleScreenBufferSize
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
GetVersionExA
Sleep
LoadLibraryA
GetProcAddress
LCMapStringW
HeapCreate
ExitProcess
GetModuleFileNameW
SetFilePointer
ReadFile
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetConsoleMode
FlushFileBuffers
FreeLibrary
DeleteFileA
FreeEnvironmentStringsW
IsProcessorFeaturePresent
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
HeapSize
InterlockedExchange
LoadLibraryW
HeapReAlloc
SetStdHandle
WriteConsoleW
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
FillConsoleOutputAttribute
CreateProcessA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetProcessHeap
CreateFileW
LocalAlloc
GetCPInfo

user32

LoadAcceleratorsA
CopyAcceleratorTableA
CreateAcceleratorTableA
CreateWindowExA
RegisterClassA
UpdateWindow
TranslateAcceleratorA
DestroyAcceleratorTable
LoadIconA
IsIconic
MapVirtualKeyA
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SendInput
IsDlgButtonChecked
SetWindowTextA
GetDlgItem
SetFocus
CallWindowProcA
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
DestroyWindow
OpenClipboard
GetClipboardData
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
MoveWindow
EnumDisplaySettingsA
LoadBitmapA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetSubMenu
DrawMenuBar
ModifyMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
DeleteMenu
AppendMenuA
SetMenuItemInfoA
CheckMenuRadioItem
CheckMenuItem
PostQuitMessage
LoadCursorA
SetCursor
IsWindow
SetRect
GetDC
ReleaseDC
GetCursorPos
ScreenToClient
ShowCursor
ClientToScreen
SetCursorPos
GetSystemMenu
RemoveMenu
SetForegroundWindow
SetWindowPos
GetAsyncKeyState
GetForegroundWindow
FindWindowA
PeekMessageA
TranslateMessage
GetMessageA
DispatchMessageA
GetMenu
EnableMenuItem
GetWindowLongA
SetWindowLongA
DefWindowProcA
BeginPaint
EndPaint
PostMessageA
SetTimer

gdi32

GetTextMetricsA
DeleteDC
DeleteObject
SelectObject
StretchBlt
GetTextExtentPoint32A
SetTextColor
SetBkMode
BitBlt
GetStockObject
SetStretchBltMode
CreateDIBSection
GetDeviceCaps
CreateCompatibleDC
GetObjectA
TextOutA

comdlg32

GetOpenFileNameA

shell32

DragAcceptFiles
DragQueryFileA
DragFinish

ole32

CoUninitialize
CoInitialize

wsock32

recv
WSACleanup
closesocket
shutdown
send
inet_ntoa
WSAStartup
socket
htonl
htons
bind
setsockopt
listen
accept

comctl32

ord6
ord17

msimg32

TransparentBlt

gdiplus

GdipDisposeImage
GdipSaveImageToFile
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIFileExit
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVISaveOptions
AVISaveOptionsFree
AVIMakeCompressedStream
AVIFileRelease
AVIStreamWrite
AVIStreamRelease

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 492KB - Virtual size: 491KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2c6e6c0450187f9e59a7e73b7406cca

Headers

DLL Characteristics

File Characteristics

Imports

winmm

imm32

kernel32

user32

gdi32

comdlg32

shell32

ole32

wsock32

comctl32

msimg32

gdiplus

d3d9

avifil32

dsound

dinput8

Sections

.text Size: 492KB - Virtual size: 491KB

.rdata Size: 186KB - Virtual size: 185KB

.data Size: 15KB - Virtual size: 3.8MB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 492KB - Virtual size: 491KB

.rdata
Size: 186KB - Virtual size: 185KB

.data
Size: 15KB - Virtual size: 3.8MB

.rsrc
Size: 12KB - Virtual size: 12KB