7693d6158c3720036b3ba57c85ed2ca0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

7693d6158c3720036b3ba57c85ed2ca0_NeikiAnalytics
Size

1.2MB
MD5

7693d6158c3720036b3ba57c85ed2ca0
SHA1

399850173834599c459de731defa26c6268293ba
SHA256

3364071946a4d9a692d51c8974e789cf894e5b1418082de74377654080d76be7
SHA512

ee203886658bda6d767a66141fb67704cfaee379d23e259af5291dc27bdd8f93cacf1fd8f8a056055ba3ffb481e9e25cf5a51d0e7736533a33e070fde867ceeb
SSDEEP

24576:Ijx4o+SzawxG0ZTbLd/1xstkHEOaI0+MWpjSwdC712EStijIz5ie7gat0Hev97ce:IpxvERJStijUdN7j/l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7693d6158c3720036b3ba57c85ed2ca0_NeikiAnalytics

Files

7693d6158c3720036b3ba57c85ed2ca0_NeikiAnalytics
.exe windows:1 windows x86 arch:x86

be98b08fff759d155bba339bca3490ef

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

ug3220

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
TB_EndEdit
TB_FitHeadingToTable
TB_InitTable
TB_SetEditClassEx
TB_SetupTable
TB_StartEdit
TB_StartEditEx

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateFileW
CreateMutexA
CreateThread
DeleteFileA
DeleteFileW
DosDateTimeToFileTime
DuplicateHandle
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetComputerNameA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatA
GetDriveTypeA
GetEnvironmentStrings
GetExitCodeThread
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOverlappedResult
GetPrivateProfileIntA
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetSystemInfo
GetTimeZoneInformation
GetVersion
GetVersionExA
GetVolumeInformationA
GlobalAlloc
GlobalLock
GlobalMemoryStatus
GlobalUnlock
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocalHandle
LocalLock
LocalReAlloc
LocalUnlock
LockResource
MoveFileA
MulDiv
MultiByteToWideChar
RaiseException
ReadFile
ReleaseMutex
ReleaseSemaphore
ResumeThread
RtlUnwind
SetConsoleCtrlHandler
SetEndOfFile
SetErrorMode
SetFileAttributesA
SetFilePointer
SetFileTime
SetHandleCount
SetNamedPipeHandleState
SetThreadPriority
Sleep
SuspendThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForMultipleObjectsEx
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WinExec
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA

comctl32

InitCommonControls

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA

gdi32

BitBlt
CombineRgn
CopyEnhMetaFileA
CopyMetaFileA
CreateBitmap
CreateBitmapIndirect
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
CreateDiscardableBitmap
CreateEllipticRgnIndirect
CreateFontA
CreateFontIndirectA
CreateHatchBrush
CreateICA
CreatePalette
CreatePatternBrush
CreatePen
CreatePenIndirect
CreatePolyPolygonRgn
CreatePolygonRgn
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteMetaFile
DeleteObject
ExtCreatePen
ExtTextOutA
GetClipRgn
GetCurrentObject
GetDeviceCaps
GetEnhMetaFileA
GetMetaFileA
GetMetaFileBitsEx
GetObjectA
GetPaletteEntries
GetStockObject
GetTextExtentPointA
GetTextMetricsA
GetViewportOrgEx
IntersectClipRect
LineTo
MoveToEx
OffsetViewportOrgEx
OffsetWindowOrgEx
PatBlt
PlayEnhMetaFile
PlayMetaFile
RealizePalette
ResetDCA
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetEnhMetaFileBits
SetMapMode
SetMetaFileBitsEx
SetPixel
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
TextOutA

user32

AppendMenuA
BeginDeferWindowPos
BeginPaint
BringWindowToTop
CallWindowProcA
CheckMenuItem
CheckMenuRadioItem
ClientToScreen
CloseClipboard
CopyRect
CreateDialogParamA
CreateMenu
CreatePopupMenu
CreateWindowExA
DefFrameProcA
DefMDIChildProcA
DefWindowProcA
DeferWindowPos
DeleteMenu
DestroyCursor
DestroyMenu
DestroyWindow
DialogBoxParamA
DispatchMessageA
DrawEdge
DrawFrameControl
DrawIcon
DrawMenuBar
DrawTextA
EnableMenuItem
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EnumClipboardFormats
EnumThreadWindows
FillRect
FrameRect
GetActiveWindow
GetClassInfoA
GetClassNameA
GetClientRect
GetClipboardData
GetCursorPos
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItem
GetDlgItemInt
GetDlgItemTextA
GetFocus
GetKeyState
GetMenu
GetMenuDefaultItem
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMenuStringA
GetParent
GetScrollInfo
GetSubMenu
GetSysColor
GetSystemMenu
GetSystemMetrics
GetUpdateRgn
GetWindow
GetWindowDC
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
GrayStringA
InsertMenuA
InsertMenuItemA
InvalidateRect
IsChild
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsMenu
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsA
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
LoadMenuA
LoadMenuIndirectA
LoadStringA
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxExA
ModifyMenuA
MsgWaitForMultipleObjects
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
RegisterClassA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
ScreenToClient
SendDlgItemMessageA
SendMessageA
SetCapture
SetClipboardData
SetCursor
SetFocus
SetMenu
SetMenuDefaultItem
SetMenuItemInfoA
SetParent
SetScrollInfo
SetTimer
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowTextA
ShowScrollBar
ShowWindow
TabbedTextOutA
TrackPopupMenu
TranslateAcceleratorA
TranslateMDISysAccel
TranslateMessage
UnregisterClassA
UpdateWindow
WaitMessage
WindowFromPoint
wsprintfA

Exports

Exports

__DebuggerHookData
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 882KB - Virtual size: 884KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 175KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 66KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be98b08fff759d155bba339bca3490ef

Headers

File Characteristics

Imports

ug3220

kernel32

comctl32

comdlg32

gdi32

user32

Exports

Exports

Sections

.text Size: 882KB - Virtual size: 884KB

.data Size: 175KB - Virtual size: 196KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 9KB - Virtual size: 12KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 68KB - Virtual size: 68KB

.reloc Size: 66KB - Virtual size: 68KB

.text
Size: 882KB - Virtual size: 884KB

.data
Size: 175KB - Virtual size: 196KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 9KB - Virtual size: 12KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 68KB - Virtual size: 68KB

.reloc
Size: 66KB - Virtual size: 68KB