a690c8e83dde65f42dad062979db1020_NEIKI

Sharing

Copy URL Twitter E-mail

General

Target

a690c8e83dde65f42dad062979db1020_NEIKI
Size

172KB
MD5

a690c8e83dde65f42dad062979db1020
SHA1

a7cafe7cb3e6a732b804f6129f4ada3f2046a4de
SHA256

d5cfe113c878ab9d60307a898c1f815a576ce96293ce216b9571f7f636d5ac1c
SHA512

1a4cf2a1cd4ba9f9d7dd4f5d248fdb002588e1a95ba4818d91fdf4b7589780bcc17ee41d4e211286632dc9a9a681af8a4e067633438956f2d790bd681b715c8c
SSDEEP

3072:+J988vWZOY4L45bOWqHbQlmC3/UNtja0TG:Y856HMlZ3ea0i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a690c8e83dde65f42dad062979db1020_NEIKI

Files

a690c8e83dde65f42dad062979db1020_NEIKI
.dll windows:4 windows x86 arch:x86

caf27c8953cb805e1c6faa111a89d181

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

halconxl

HMBKTuple2Tcamera
HMBKTcamera2Tuple
IOReadCamPar
HFgGetDefaults
HMBKGetLineOfSight
HXAllocLocal
HGVGet_CPUCache
HNewImage
HAccessGlVar
HXFree
HXFreeMemCheck
IOPrintErrorMessage
HDoLowError
HXAlloc
HXAllocMemCheck
HTraceMemory

kernel32

IsValidCodePage
FlushFileBuffers
CloseHandle
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
RtlUnwind
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetLastError
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetModuleHandleA
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
WideCharToMultiByte
ExitProcess
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
Sleep
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
LCMapStringW
WriteFile
SetFilePointer
GetConsoleCP
GetConsoleMode
CompareStringA
MultiByteToWideChar
CompareStringW
SetEnvironmentVariableA
LoadLibraryA
InitializeCriticalSection
LCMapStringA

openni

xnNodeInfoListGetFirst
xnNodeInfoListIteratorIsValid
xnNodeInfoListGetCurrent
xnNodeInfoListGetNext
xnSetViewPoint
xnResetViewPoint
xnSetGlobalMirror
xnGetDepthFieldOfView
xnGetGlobalMirror
xnNodeQueryFree
xnNodeQueryAllocate
xnProductionNodeTypeFromString
xnCreateProductionTree
xnNodeInfoGetInstanceName
xnNodeQueryAddNeededNode
xnCreateAnyProductionTree
xnOSFreeAligned
xnEnumerationErrorsAllocate
xnInit
xnGetDepthMetaData
xnStartGenerating
xnGetImageMetaData
xnGetIRMetaData
xnInitFromXmlFile
xnGetStatusString
xnEnumerationErrorsFree
xnEnumerationErrorsToString
xnShutdown
xnFindExistingNodeByType
xnOSMemSet
xnSetMapOutputMode
xnSetMirror
xnWaitAndUpdateData
xnConvertProjectiveToRealWorld
xnNodeInfoListAllocate
xnEnumerateProductionTrees
xnNodeInfoListFree

Exports

Exports

FGInit

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 4KB - Virtual size: 560B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 389KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 4KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

caf27c8953cb805e1c6faa111a89d181

Headers

File Characteristics

Imports

halconxl

kernel32

openni

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 99KB

.text1 Size: 4KB - Virtual size: 560B

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 8KB - Virtual size: 389KB

.data1 Size: 4KB - Virtual size: 620B

.trace Size: 4KB - Virtual size: 1000B

.rsrc Size: 4KB - Virtual size: 800B

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 100KB - Virtual size: 99KB

.text1
Size: 4KB - Virtual size: 560B

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 8KB - Virtual size: 389KB

.data1
Size: 4KB - Virtual size: 620B

.trace
Size: 4KB - Virtual size: 1000B

.rsrc
Size: 4KB - Virtual size: 800B

.reloc
Size: 12KB - Virtual size: 9KB