899a3989775f14c221626dc07c7b9ea0_NEIKI

Sharing

Copy URL Twitter E-mail

General

Target

899a3989775f14c221626dc07c7b9ea0_NEIKI
Size

3.9MB
MD5

899a3989775f14c221626dc07c7b9ea0
SHA1

44357666fa65247d9cf46212b64386eacc110073
SHA256

36c7554d8a8e2b94dff8801312c9f58ebcd3396e28c6aad9dca2e83b872e022b
SHA512

8ee1fe4e22107d08e8f89305604bce402f07821ba64d12471a7b30dea51f0b0e4e07e5ecfd5d2346cc78ec364b534affec18cf8810d04f14c5eef87913bf669d
SSDEEP

98304:6r+W8esjbszfx6WxzK91TWkH8tJu/H2kct:6a4fU6m8I83Y27

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
899a3989775f14c221626dc07c7b9ea0_NEIKI

Files

899a3989775f14c221626dc07c7b9ea0_NEIKI
.exe windows:5 windows x86 arch:x86

f0fce41f45658a06269539a147b6e591

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA
waveOutGetNumDevs
timeGetTime

imm32

ImmGetVirtualKey

comctl32

ImageList_DragMove
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_Write
ord17
ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_Add
ImageList_DragLeave

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

LockFileEx
LockResource
lstrcatA
lstrcmpA
lstrcmpW
lstrcpyA
lstrcpynA
lstrlenA
MapViewOfFile
MoveFileA
MoveFileW
LocalAlloc
MultiByteToWideChar
OpenProcess
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadFile
ReleaseMutex
RemoveDirectoryA
RemoveDirectoryW
ResetEvent
ResumeThread
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesA
SetFileAttributesW
SetFilePointer
SetFileTime
SetLastError
SetThreadExecutionState
SetThreadLocale
SetThreadPriority
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFileEx
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObjectEx
WideCharToMultiByte
WriteFile
LoadResource
LoadLibraryW
LoadLibraryExA
IsValidCodePage
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
HeapValidate
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapCompact
HeapAlloc
GlobalSize
GlobalReAlloc
GlobalMemoryStatus
GlobalLock
GlobalHandle
GlobalFree
GlobalFindAtomA
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetWindowsDirectoryA
GetVolumeInformationA
GetVersionExA
GetUserDefaultLCID
GetThreadLocale
GetTempPathW
GetTempPathA
GetTempFileNameA
LocalFree
GetSystemTime
GetSystemInfo
GetSystemDefaultLangID
GetStringTypeExW
GetStringTypeExA
GetStdHandle
GetStartupInfoA
GetShortPathNameW
GetShortPathNameA
GetProfileStringA
GetProcessHeap
GetProcAddress
GetOverlappedResult
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLogicalDriveStringsA
GetLocalTime
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameW
GetFullPathNameA
GetFileType
GetFileSize
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesA
GetExitCodeThread
GetExitCodeProcess
GetDriveTypeW
GetDriveTypeA
GetDiskFreeSpaceW
GetDiskFreeSpaceA
GetDateFormatA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentDirectoryW
GetCurrentDirectoryA
GetCPInfo
GetComputerNameA
GetCommandLineW
GetACP
FreeResource
FreeLibrary
FormatMessageW
FormatMessageA
FlushViewOfFile
FlushFileBuffers
FindResourceA
FindNextFileW
FindNextFileA
FindNextChangeNotification
FindFirstFileW
FindFirstFileA
FindFirstChangeNotificationW
FindCloseChangeNotification
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExitThread
ExitProcess
EnumCalendarInfoA
DosDateTimeToFileTime
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateThread
CreateProcessW
CreateMutexW
CreateMutexA
CreateFileW
CreateFileMappingW
CreateFileA
CreateEventA
CreateDirectoryW
CreateDirectoryA
CopyFileW
CopyFileA
CompareStringW
CompareStringA
CloseHandle
AreFileApisANSI
GetStartupInfoW
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
GetTimeZoneInformation
GetSystemTimeAsFileTime
LocalFileTimeToFileTime
MulDiv

user32

SetCaretPos
SetClassLongA
SetClipboardData
SetCursorPos
SetFocus
SetForegroundWindow
SetKeyboardState
SetMenuItemInfoA
SetMenuItemInfoW
SetParent
SetPropA
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetSysColors
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowsHookExA
SetWindowsHookExW
SetWindowTextA
SetWindowTextW
ShowCaret
ShowCursor
ShowOwnedPopups
ShowScrollBar
ShowWindow
SystemParametersInfoA
TrackPopupMenu
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UnregisterClassW
UnregisterHotKey
UpdateWindow
ValidateRect
WaitForInputIdle
WaitMessage
WindowFromPoint
WinHelpA
wvsprintfA
SendMessageA
SendDlgItemMessageA
ScrollWindowEx
ScreenToClient
RemovePropA
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageA
RegisterHotKey
RegisterClipboardFormatA
RegisterClassW
RegisterClassA
RedrawWindow
PtInRect
PostMessageW
PostMessageA
PeekMessageA
OpenClipboard
OffsetRect
OemToCharA
MsgWaitForMultipleObjects
MoveWindow
mouse_event
MessageBoxA
MessageBeep
MapWindowPoints
MapVirtualKeyA
LockWindowUpdate
LoadStringW
LoadStringA
LoadKeyboardLayoutA
LoadIconA
LoadCursorA
LoadBitmapA
KillTimer
keybd_event
IsZoomed
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsRectEmpty
IsIconic
IsDialogMessageW
IsDialogMessageA
IsClipboardFormatAvailable
IsChild
IsCharAlphaNumericA
IsCharAlphaA
InvalidateRect
IntersectRect
InsertMenuItemA
SetCapture
InflateRect
HideCaret
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowTextA
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowDC
GetUpdateRect
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropA
GetParent
GetMessageTime
GetMessagePos
GetMessageA
GetMenuStringW
GetMenuStringA
GetMenuState
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetLastActivePopup
GetKeyState
GetKeyNameTextA
GetKeyboardType
GetKeyboardState
GetKeyboardLayoutList
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDesktopWindow
GetDCEx
GetCursorPos
GetClipboardFormatNameA
GetClipboardData
GetClientRect
GetClassNameW
GetClassNameA
GetClassInfoW
GetClassInfoA
GetCaretPos
GetCapture
GetActiveWindow
FrameRect
FindWindowA
FillRect
EqualRect
EnumWindows
EnumThreadWindows
EnumClipboardFormats
EnumChildWindows
EndPaint
EnableWindow
EnableScrollBar
EnableMenuItem
DrawTextW
DrawTextA
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DrawCaption
DispatchMessageW
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyCaret
DeleteMenu
DefWindowProcW
DefWindowProcA
DefMDIChildProcW
DefMDIChildProcA
DefFrameProcW
DefFrameProcA
CreateWindowExW
CreateWindowExA
CreatePopupMenu
CreateMenu
CreateMDIWindowW
CreateIconIndirect
CreateCaret
CopyImage
CloseClipboard
ClipCursor
SetActiveWindow
SendNotifyMessageA
SendMessageW
InsertMenuA
SendMessageTimeoutA
ClientToScreen
ChildWindowFromPointEx
CheckMenuItem
CharUpperW
CharUpperBuffW
CharUpperBuffA
CharUpperA
CharToOemA
CharNextA
CharLowerBuffW
CharLowerBuffA
CharLowerA
CallWindowProcW
CallWindowProcA
CallNextHookEx
BringWindowToTop
BeginPaint
AttachThreadInput
AdjustWindowRectEx
ActivateKeyboardLayout
GetSysColor
GetMenuItemInfoW

gdi32

GetEnhMetaFileBits
GetEnhMetaFileDescriptionA
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
GetGlyphOutlineA
GetICMProfileW
GetNearestColor
GetNearestPaletteIndex
GetObjectA
GetObjectType
GetPaletteEntries
GetPixel
GetRegionData
GetRgnBox
GetStockObject
GetSystemPaletteEntries
GetTextColor
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextExtentPointA
GetTextExtentPointW
GetTextMetricsA
GetTextMetricsW
GetWindowOrgEx
GetWinMetaFileBits
IntersectClipRect
LineDDA
LineTo
LPtoDP
MaskBlt
MoveToEx
GetCurrentObject
OffsetClipRgn
GetDIBits
OffsetWindowOrgEx
PatBlt
GetDIBColorTable
PolyBezier
Polygon
Polyline
PolyPolyline
RealizePalette
Rectangle
RectVisible
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetAbortProc
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetEnhMetaFileBits
SetMapMode
SetPaletteEntries
SetPixelV
SetRectRgn
SetROP2
SetStretchBltMode
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SetWinMetaFileBits
StartDocA
StartPage
StretchBlt
StretchDIBits
TextOutA
TextOutW
UnrealizeObject
GetClipRgn
GetClipBox
GetBrushOrgEx
GetBitmapBits
GdiFlush
FrameRgn
FillRgn
ExtTextOutW
ExtTextOutA
ExtCreatePen
ExcludeClipRect
EnumFontsA
EndPage
EndDoc
Ellipse
CreateBrushIndirect
CreateBitmap
CopyEnhMetaFileA
CombineRgn
PlayEnhMetaFile
GetDeviceCaps
GetDCOrgEx
CloseEnhMetaFile
BitBlt
Arc
OffsetRgn
AbortDoc
DeleteObject
DeleteEnhMetaFile
DeleteDC
CreateSolidBrush
CreateRoundRectRgn
CreateRectRgnIndirect
CreatePolygonRgn
CreatePenIndirect
CreatePatternBrush
CreatePalette
CreateICA
CreateHalftonePalette
CreateFontIndirectA
CreateEnhMetaFileA
CreateEllipticRgn
CreateDIBSection
CreateDIBitmap
CreateDCW
CreateDCA
CreateCompatibleDC
CreateCompatibleBitmap
GetCurrentPositionEx

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
EnumPrintersA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA
GetSaveFileNameW
ChooseColorA
FindTextA
ChooseFontA
PrintDlgA
CommDlgExtendedError

advapi32

RegQueryValueExW
RegQueryInfoKeyA
RegFlushKey
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExA

shell32

ShellExecuteA
FindExecutableW
DragQueryFileW
ShellExecuteW

ole32

CLSIDFromString
CoCreateInstance
CoDisconnectObject
CoGetClassObject
CoTaskMemFree
CoUninitialize
CreateItemMoniker
CreateStreamOnHGlobal
DoDragDrop
FreePropVariantArray
GetRunningObjectTable
IsAccelerator
OleDraw
OleInitialize
OleSetMenuDescriptor
OleUninitialize
ProgIDFromCLSID
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StringFromCLSID

oleaut32

VariantChangeTypeEx
VarI4FromStr
VarDateFromStr
VarCyFromStr
VarBstrFromDate
VarBstrFromCy
VariantClear
VarBoolFromStr
SysReAllocStringLen
SysFreeString
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayRedim
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
SafeArrayCreate
SafeArrayAccessData
GetErrorInfo
VariantCopyInd
VariantInit
VarR8FromStr
VarNeg
VarNot
VarBstrFromBool
GetActiveObject

msvcrt

__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 584KB - Virtual size: 581KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_table_6
Size: 999KB - Virtual size: 1000KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f0fce41f45658a06269539a147b6e591

Headers

File Characteristics

Imports

winmm

imm32

comctl32

version

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

msvcrt

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 4KB - Virtual size: 4.0MB

.rsrc Size: 584KB - Virtual size: 581KB

_table_6 Size: 999KB - Virtual size: 1000KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 4KB - Virtual size: 4.0MB

.rsrc
Size: 584KB - Virtual size: 581KB

_table_6
Size: 999KB - Virtual size: 1000KB