3452acd7a71f77181a5ad8dda3c3e8d0_NEIKI

Sharing

Copy URL

Twitter E-mail

General

Target

3452acd7a71f77181a5ad8dda3c3e8d0_NEIKI
Size

505KB
MD5

3452acd7a71f77181a5ad8dda3c3e8d0
SHA1

cffbe30e4be3805aaaf804bfe082af07f265cfc7
SHA256

110ce6565b7657df6d7ffa6a54269a9155c671988cf1dfe1a89c99cffcea94f4
SHA512

10e983000b9bd82f650c27f974287e5a6b2e99aef7eafb7e60a89e842f208d806db88f03c08ea3efbd38c57b9b8182e8f12254f57d11ecdd361a95cd63881e02
SSDEEP

6144:WFBLBDFbTdkifyIad/oCD+Xu3LOU5M6oeehhwdDXPDRAO4QihEQTBJWFgr834:sLB/kZmC/bOeM6LdDXLRqPEQTrO4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3452acd7a71f77181a5ad8dda3c3e8d0_NEIKI

Files

3452acd7a71f77181a5ad8dda3c3e8d0_NEIKI
.exe windows:5 windows x86 arch:x86

040251860ca1fbee91476c8e30cc9bd0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
timeBeginPeriod
timeEndPeriod

imm32

ImmAssociateContext

kernel32

FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
ExitProcess
SetThreadExecutionState
SetPriorityClass
GetCurrentProcess
GetProcessHeap
SetEndOfFile
HeapSize
WriteConsoleW
GetConsoleOutputCP
FlushFileBuffers
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RaiseException
LCMapStringW
FreeLibrary
GetConsoleMode
GetFileType
SetHandleCount
ReadFile
SetFilePointer
HeapCreate
HeapReAlloc
VirtualAlloc
VirtualFree
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
IsDebuggerPresent
LoadLibraryA
UnhandledExceptionFilter
TerminateProcess
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoA
GetCommandLineA
GlobalAlloc
CreateFileA
WriteFile
MultiByteToWideChar
GlobalFree
ReadConsoleInputA
WriteConsoleA
GetConsoleCP
FreeConsole
AllocConsole
CreateFileW
SetConsoleTitleA
SetConsoleCtrlHandler
GetConsoleWindow
GetStdHandle
SetConsoleScreenBufferSize
SetConsoleTextAttribute
Sleep
GetVersionExA
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
HeapFree
HeapAlloc
WaitForSingleObject
CloseHandle
WideCharToMultiByte
GetLastError
DeleteFileA
GetFileAttributesA
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
SetUnhandledExceptionFilter
GetProcAddress
LCMapStringA

user32

GetAsyncKeyState
RemoveMenu
FindWindowA
GetDC
PostMessageA
EnableMenuItem
ReleaseDC
GetForegroundWindow
GetSystemMenu
UpdateWindow
MessageBoxA
InvalidateRect
GetClipboardData
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
LoadAcceleratorsA
PeekMessageA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetWindowTextA
SendInput
DestroyWindow
PostQuitMessage
BeginPaint
EndPaint
DialogBoxParamA
DefWindowProcA
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
OpenClipboard
CheckMenuItem
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
SetWindowLongA
SetWindowPos
GetClientRect
GetWindowLongA
SetCursorPos
EnumDisplaySettingsA
LoadBitmapA
GetWindowRect
SendMessageA
ShowWindow
DestroyMenu
IsMenu
LoadMenuA
SetMenu
DrawMenuBar
InsertMenuA
GetMenuItemCount
GetMenuItemID
DeleteMenu
AppendMenuA
SetMenuItemInfoA
CheckMenuRadioItem
SetRect

gdi32

GetDeviceCaps
GetTextMetricsA
SetTextColor
SetBkMode
GetObjectA
GetTextExtentPoint32A
CreateCompatibleDC
CreateDIBSection
SetStretchBltMode
GetStockObject
StretchBlt
SelectObject
DeleteObject
DeleteDC
BitBlt
TextOutA

comdlg32

GetOpenFileNameA

shell32

DragAcceptFiles
DragFinish
DragQueryFileA

comctl32

ord17
ord6

msimg32

TransparentBlt

gdiplus

GdipFree
GdipAlloc
GdipDisposeImage
GdipSaveImageToFile
GdiplusShutdown
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCloneImage
GdipCreateBitmapFromHBITMAP
GdiplusStartup

d3d9

Direct3DCreate9

avifil32

AVIStreamRelease
AVIFileRelease
AVIFileExit
AVIStreamWrite
AVIStreamSetFormat
AVIMakeCompressedStream
AVISaveOptionsFree
AVISaveOptions
AVIFileCreateStreamA
AVIFileOpenA
AVIFileInit

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 364KB - Virtual size: 363KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

040251860ca1fbee91476c8e30cc9bd0

Headers

DLL Characteristics

File Characteristics

Imports

winmm

imm32

kernel32

user32

gdi32

comdlg32

shell32

comctl32

msimg32

gdiplus

d3d9

avifil32

dsound

dinput8

Sections

.text Size: 364KB - Virtual size: 363KB

.rdata Size: 122KB - Virtual size: 121KB

.data Size: 9KB - Virtual size: 3.6MB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 364KB - Virtual size: 363KB

.rdata
Size: 122KB - Virtual size: 121KB

.data
Size: 9KB - Virtual size: 3.6MB

.rsrc
Size: 9KB - Virtual size: 8KB