71e7fb1c3d86e45073aabd0630b40ad0_NEIKI

Sharing

Copy URL Twitter E-mail

General

Target

71e7fb1c3d86e45073aabd0630b40ad0_NEIKI
Size

680KB
MD5

71e7fb1c3d86e45073aabd0630b40ad0
SHA1

4faca4deb21cf09c969f74b70f756e5097e09e10
SHA256

dd43d826e0598862a8b363655863f284120008d39004671237983755de34d8a7
SHA512

adff0d5ec8eec2eceabb180204475434abf4f113e403435f1fae37c505567975cac961d2c843595538b30a67586d039e80bade996fed2a69f33a2793af56eb68
SSDEEP

6144:hAXiKaHTRoQTbK6yug08krs7X+s3PnihepNe7o/SxYqhCpYNK7xZ/suLu:hKizH15s7Xvfgqek/SxYqhOYq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71e7fb1c3d86e45073aabd0630b40ad0_NEIKI

Files

71e7fb1c3d86e45073aabd0630b40ad0_NEIKI
.exe windows:4 windows x86 arch:x86

9da2d3f3fee7012add767fd47a009894

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

d3d8

Direct3DCreate8

winmm

timeGetTime
PlaySoundA

kernel32

GetCurrentProcess
LocalFree
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
SetUnhandledExceptionFilter
GetCommandLineA
SetThreadPriority
GetCurrentThread
Sleep
GetProcAddress
LoadLibraryA
GetVersionExA
GetModuleHandleA
FreeLibrary
FormatMessageA
GetLastError
UnmapViewOfFile
CreateFileW
MapViewOfFile
SetEnvironmentVariableA
CreateFileMappingA
CompareStringA
CompareStringW
FlushFileBuffers
GetStringTypeW
SetStdHandle
HeapSize
LCMapStringW
GetStringTypeA
GetOEMCP
GetACP
LCMapStringA
IsBadWritePtr
HeapReAlloc
GetCPInfo
RaiseException
RtlUnwind
VirtualAlloc
WideCharToMultiByte
MultiByteToWideChar
QueryPerformanceFrequency
QueryPerformanceCounter
CreateFileA
CloseHandle
lstrcatA
lstrcpyA
IsBadCodePtr
ReadFile
GetFileSize
LockResource
LoadResource
SizeofResource
FindResourceA
GetPriorityClass
GetThreadPriority
WriteFile
SetFilePointer
SetPriorityClass
UnhandledExceptionFilter
GetModuleFileNameA
GetStartupInfoA
GetVersion
ExitProcess
IsBadReadPtr
FreeEnvironmentStringsW
GetTimeZoneInformation
GetEnvironmentStrings
GetEnvironmentStringsW
TerminateProcess
SetHandleCount
GetStdHandle
FreeEnvironmentStringsA
GetFileType
HeapCreate
HeapDestroy
GetEnvironmentVariableA
VirtualFree

user32

SystemParametersInfoA
AdjustWindowRect
RegisterClassA
DefWindowProcA
SetRect
PeekMessageA
LoadIconA
LoadCursorA
TranslateAcceleratorA
LoadAcceleratorsA
MessageBoxA
InvalidateRect
FrameRect
DrawTextA
UnionRect
ScreenToClient
UpdateWindow
ShowWindow
GetClientRect
CreateWindowExA
GetForegroundWindow
PostMessageA
GetMessageA
TranslateMessage
DispatchMessageA
PostQuitMessage
LoadStringA
SetRectEmpty
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
GetWindowRect
SetCursor
BeginPaint
FillRect
EndPaint
KillTimer
SetTimer
GetSystemMetrics

gdi32

GetStockObject
GetClipBox
ExcludeClipRect
GetDCOrgEx

comctl32

ord17

advapi32

RegQueryValueExA
RegOpenKeyA
RegCloseKey

dsound

ord6

ole32

CoInitialize

avifil32

AVIStreamGetFrameOpen
AVIFileGetStream
AVIFileInfoA
AVIStreamInfoA
AVIFileRelease
AVIFileExit
AVIStreamAddRef
AVIFileOpenA
AVIFileInit
AVIStreamGetFrameClose
AVIStreamGetFrame
AVIStreamRelease

Sections

.text
Size: 328KB - Virtual size: 326KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 304KB - Virtual size: 304KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9da2d3f3fee7012add767fd47a009894

Headers

File Characteristics

Imports

d3d8

winmm

kernel32

user32

gdi32

comctl32

advapi32

dsound

ole32

avifil32

Sections

.text Size: 328KB - Virtual size: 326KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 24KB - Virtual size: 33KB

.rsrc Size: 304KB - Virtual size: 304KB

.text
Size: 328KB - Virtual size: 326KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 24KB - Virtual size: 33KB

.rsrc
Size: 304KB - Virtual size: 304KB