234e6fc6ffe80d486693deeea918abe0_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

234e6fc6ffe80d486693deeea918abe0_NeikiAnalytics
Size

5.7MB
MD5

234e6fc6ffe80d486693deeea918abe0
SHA1

440e08eea9b7865aa41ad67274c0064a1b3a2277
SHA256

147e2036bbad28dd0960c346863747eb0269c019c83563389b401d599bc0f4e9
SHA512

b62799b4a5fd299de385d28ce43db2eaf19975c3b261fd93de0f716725a9a7be7f689f1c31cabc4f8c6b7dc364cb48454fbd524ca45c273c25bcdcec2f831c31
SSDEEP

98304:0GT1354l1pJnboFmIa/MAPuq8PqzJhBXJnm2doHft9tLcFgvGx:wl1pxMPmYCDBXIlvqUGx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
234e6fc6ffe80d486693deeea918abe0_NeikiAnalytics

Files

234e6fc6ffe80d486693deeea918abe0_NeikiAnalytics
.exe windows:5 windows x86 arch:x86

a0010f9a44f8bab2b514911355945c90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

atl

ord47

gdi32

DeleteDC

gdiplus

GdipDrawRectangle

msimg32

TransparentBlt

msvcrt

strncmp

ole32

CreateStreamOnHGlobal

oleaut32

SysAllocString

shell32

DragAcceptFiles

shlwapi

PathFileExistsA

user32

AppendMenuA
CharUpperBuffW

wininet

HttpQueryInfoA

Sections

.text
Size: - Virtual size: 256KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.htext
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Qsl
Size: - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.~o$
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qq!
Size: 5.7MB - Virtual size: 5.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0010f9a44f8bab2b514911355945c90

Headers

File Characteristics

Imports

kernel32

atl

gdi32

gdiplus

msimg32

msvcrt

ole32

oleaut32

shell32

shlwapi

user32

wininet

Sections

.text Size: - Virtual size: 256KB

.rdata Size: - Virtual size: 6KB

.data Size: - Virtual size: 293KB

.htext Size: - Virtual size: 4KB

.Qsl Size: - Virtual size: 3.1MB

.~o$ Size: 2KB - Virtual size: 1KB

.qq! Size: 5.7MB - Virtual size: 5.7MB

.text
Size: - Virtual size: 256KB

.rdata
Size: - Virtual size: 6KB

.data
Size: - Virtual size: 293KB

.htext
Size: - Virtual size: 4KB

.Qsl
Size: - Virtual size: 3.1MB

.~o$
Size: 2KB - Virtual size: 1KB

.qq!
Size: 5.7MB - Virtual size: 5.7MB