e87dd7a66210aa8f1f0a951c6a2f9cd0_NEIKI

Sharing

Copy URL Twitter E-mail

General

Target

e87dd7a66210aa8f1f0a951c6a2f9cd0_NEIKI
Size

7.0MB
MD5

e87dd7a66210aa8f1f0a951c6a2f9cd0
SHA1

d6936ce3716ef6b1a0e25fcd0c4896820b154f71
SHA256

fed3853fe2679fcb2615ae70fbca3631f9f42ff2dc518587242d2cb231690a66
SHA512

33794ae86da38ef2e7a82e4226b417769965d4dcfa016df06c1c1669a4faedd0759a5951cd48258198906230651fd044dc8883319871dabece3716eb6dc87d26
SSDEEP

98304:5xKBKNXfdqeGv01ol1e0Aq4+C5VSrhtpfCHVvjn2f5ShDrgUI7SgDZtdiDdUXJfZ:GBm9GM1oHe0AkmS5+D3I73NuqXyA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e87dd7a66210aa8f1f0a951c6a2f9cd0_NEIKI

Files

e87dd7a66210aa8f1f0a951c6a2f9cd0_NEIKI
.exe windows:4 windows x86 arch:x86

e2cfb630ca5525ef9a4d6db0c813e34d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
MultiByteToWideChar
WideCharToMultiByte
FreeLibrary
GetProcAddress
LoadLibraryA
CloseHandle
ReadFile
GetFileSize
CreateFileA
GetModuleFileNameA
GetCurrentDirectoryA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
EnterCriticalSection
Sleep
InitializeCriticalSection
InterlockedExchange
DeleteCriticalSection
LeaveCriticalSection
InterlockedDecrement
InterlockedIncrement
HeapFree
RtlUnwind
HeapReAlloc
HeapAlloc
GetCommandLineA
GetVersion
ExitProcess
GetLastError
FindFirstFileA
FindNextFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
RaiseException
LCMapStringA
LCMapStringW
GetCPInfo
CompareStringA
CompareStringW
TerminateProcess
GetCurrentProcess
FindResourceA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
WriteFile
SetUnhandledExceptionFilter
SetFilePointer
FlushFileBuffers
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
SetEnvironmentVariableA
SetStdHandle
SetEndOfFile
SizeofResource
LoadResource
HeapSize
LockResource
GetDiskFreeSpaceA
SetFileAttributesA
GetFileAttributesA
GetDriveTypeA
SetVolumeLabelA
DeleteFileA
MoveFileA
GetSystemTime
GetLocalTime
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetCurrentDirectoryA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Exports

Exports

_Java_com_regexlab_j2e_Handler_loadResourceData@12
_Java_com_regexlab_j2e_Jar2ExeClassLoader_findClass@12
_Java_com_regexlab_j2e_Jar2ExeClassLoader_findResource@12
_Java_com_regexlab_j2e_Jar2ExeClassLoader_findResources@12

Sections

.text
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2cfb630ca5525ef9a4d6db0c813e34d

Headers

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 156KB - Virtual size: 153KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 16KB - Virtual size: 21KB

.rsrc Size: 4.6MB - Virtual size: 4.6MB

.text
Size: 156KB - Virtual size: 153KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 16KB - Virtual size: 21KB

.rsrc
Size: 4.6MB - Virtual size: 4.6MB