1d51a9dc3ddf71bef6549635f4a81ce0_NEIKI

Sharing

Copy URL

Twitter E-mail

General

Target

1d51a9dc3ddf71bef6549635f4a81ce0_NEIKI
Size

730KB
MD5

1d51a9dc3ddf71bef6549635f4a81ce0
SHA1

4b321d5db3d5ed8fcc194dbaa7183f6dd9606607
SHA256

5d5416e3d6f558f79eb06c5e7b408ef5eda696c2a644cdb2be05c073277b5819
SHA512

4bd1e3ad8119f3f9ed27ffe0221655864ce800d527ca51e79721351b65ad9827f5a3aad085b5f12de9a3041b6edda61883887a18aed3d318fdae8b50277d0412
SSDEEP

12288:iPQE1DjEJFc6/xbnaPLqumoxV+a0zcBpwC4HymEkxI3QtGd0OTroRT7JmKso5szl:ejgFV/paqVYwmTrSJmPomUxR4lIk2pCd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1d51a9dc3ddf71bef6549635f4a81ce0_NEIKI

Files

1d51a9dc3ddf71bef6549635f4a81ce0_NEIKI
.exe windows:5 windows x86 arch:x86

d653eebfe0173c4c3aa3c44bd581a864

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

imm32

ImmAssociateContext

kernel32

SetConsoleWindowInfo
GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
GetProcAddress
LoadLibraryA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalUnlock
GlobalLock
GlobalAlloc
SizeofResource
LockResource
LoadResource
FindResourceA
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
WriteConsoleW
SetStdHandle
HeapReAlloc
LoadLibraryW
HeapSize
GetStringTypeW
GetSystemTimeAsFileTime
WriteConsoleA
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlushFileBuffers
GetConsoleMode
GetFileType
SetHandleCount
InitializeCriticalSectionAndSpinCount
ReadFile
SetFilePointer
GetModuleFileNameW
ExitProcess
SetConsoleScreenBufferSize
LCMapStringW
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError
GetModuleHandleW
TlsFree
DecodePointer
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
SetConsoleTextAttribute
SetConsoleCtrlHandler
FreeConsole
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
Sleep
GetVersionExA
DeleteFileA
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
HeapCreate
CreateProcessA
GetProcessHeap
CreateFileW
GetCurrentProcessId

user32

PostMessageA
EndPaint
BeginPaint
DefWindowProcA
SetWindowLongA
GetWindowLongA
EnableMenuItem
SetMenu
DispatchMessageA
GetMessageA
TranslateMessage
PeekMessageA
FindWindowA
GetForegroundWindow
GetAsyncKeyState
GetMenu
GetMenuItemInfoA
SetForegroundWindow
RemoveMenu
GetSystemMenu
InvalidateRect
ReleaseDC
GetDC
SetRect
CharLowerA
IsWindow
SetCursor
LoadCursorA
PostQuitMessage
CheckMenuItem
CheckMenuRadioItem
SetMenuItemInfoA
AppendMenuA
DeleteMenu
ModifyMenuA
DrawMenuBar
GetMenuItemID
GetMenuItemCount
SetWindowPos
CallWindowProcA
LoadIconA
RegisterClassA
UpdateWindow
LoadAcceleratorsA
CopyAcceleratorTableA
CreateAcceleratorTableA
TranslateAcceleratorA
DestroyAcceleratorTable
DestroyWindow
IsIconic
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SetWindowTextA
SendInput
CreateWindowExA
MapVirtualKeyA
CreatePopupMenu
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
OpenClipboard
GetClipboardData
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
SetCursorPos
MoveWindow
EnumDisplaySettingsA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
InsertMenuA
DestroyMenu
GetSubMenu

gdi32

SelectObject
DeleteDC
SetStretchBltMode
CreateDIBSection
CreateCompatibleDC
TextOutA
SetBkMode
SetTextColor
GetTextMetricsA
GetDeviceCaps
GetTextExtentPoint32A
GetStockObject
BitBlt
DeleteObject

comdlg32

GetOpenFileNameA

shell32

DragFinish
DragAcceptFiles
DragQueryFileA

ole32

CreateStreamOnHGlobal
CoInitialize
CoUninitialize

wsock32

closesocket
WSACleanup
shutdown
send
inet_ntoa
accept
listen
setsockopt
bind
htons
htonl
socket
WSAStartup
recv

comctl32

ord17
ord6

gdiplus

GdipAlloc
GdipDeleteGraphics
GdiplusShutdown
GdiplusStartup
GdipDisposeImage
GdipSaveImageToFile
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateFromHDC
GdipDrawImageI
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectI
GdipFree

avifil32

AVIStreamSetFormat
AVIMakeCompressedStream
AVIFileExit
AVIFileRelease
AVIStreamRelease
AVISaveOptionsFree
AVISaveOptions
AVIFileCreateStreamA
AVIStreamWrite
AVIFileInit
AVIFileOpenA

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 314KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d653eebfe0173c4c3aa3c44bd581a864

Headers

DLL Characteristics

File Characteristics

Imports

winmm

imm32

kernel32

user32

gdi32

comdlg32

shell32

ole32

wsock32

comctl32

gdiplus

avifil32

dsound

dinput8

Sections

.text Size: 311KB - Virtual size: 311KB

.rdata Size: 90KB - Virtual size: 90KB

.data Size: 13KB - Virtual size: 90KB

.rsrc Size: 314KB - Virtual size: 313KB

.text
Size: 311KB - Virtual size: 311KB

.rdata
Size: 90KB - Virtual size: 90KB

.data
Size: 13KB - Virtual size: 90KB

.rsrc
Size: 314KB - Virtual size: 313KB