927afc36f206a558867e74ff40a24b90_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

927afc36f206a558867e74ff40a24b90_NeikiAnalytics
Size

1.3MB
MD5

927afc36f206a558867e74ff40a24b90
SHA1

9b843fe50b64d9af176d6fc65cc0a8468f6b1214
SHA256

71ae5bceb6a444f3a3ff49babd8bd2060d71a7f5a1c2337ac5b3381a25d8db21
SHA512

73e058d741d1f2914855cd056d8a9cc9073dcd505c8c4e895ef47cc4a44e220a4c33e90b0f8e7809e1710f21537fe2925d0e518b102fbf797a0865b8978eb5a1
SSDEEP

24576:K9L0zo08awpx9V4RoBJyFb2526oQcp5nlW1SB9mVq23p1:KL0zoTEAyFbSQPnlbB9mVq23P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
927afc36f206a558867e74ff40a24b90_NeikiAnalytics

Files

927afc36f206a558867e74ff40a24b90_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

8dccf98e81ce677c5b2a975a7a69a19e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetFileAttributesA
GetCurrentDirectoryA
GetCPInfo
SetErrorMode
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
IsBadReadPtr
ExitProcess
GetProcessVersion
TerminateProcess
GetCommandLineA
SetEnvironmentVariableA
SetCurrentDirectoryA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapAlloc
HeapReAlloc
HeapSize
GetACP
LCMapStringA
RaiseException
HeapFree
Sleep
GetStartupInfoA
WritePrivateProfileStringA
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetEnvironmentVariableW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetStdHandle
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
CompareStringA
CompareStringW
GetLocaleInfoW
GetFileTime
GetFileSize
CreateFileA
GetLogicalDrives
GetDriveTypeA
GetTickCount
CloseHandle
OpenSemaphoreA
ReleaseSemaphore
CreateSemaphoreA
InterlockedExchange
LocalReAlloc
GlobalFlags
TlsGetValue
TlsFree
TlsSetValue
GlobalReAlloc
LocalAlloc
GlobalHandle
TlsAlloc
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetVolumeInformationA
GetFullPathNameA
UnlockFile
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
GetCurrentProcess
WriteFile
ReadFile
SetLastError
DuplicateHandle
MulDiv
lstrcpyA
GlobalFindAtomA
lstrcatA
GetEnvironmentVariableA
GlobalAddAtomA
lstrcpynA
GetVersionExA
GlobalGetAtomNameA
GlobalFree
GetVersion
GlobalUnlock
LoadResource
LockResource
FindResourceA
HeapDestroy
GlobalMemoryStatus
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
OutputDebugStringA
GetModuleHandleA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
FreeLibrary
CompareFileTime
FindFirstFileA
FindNextFileA
FindClose
GetLastError
FormatMessageA
LocalFree
DeleteFileA
GetModuleFileNameA
HeapCreate
VirtualFree
LCMapStringW
SetUnhandledExceptionFilter

user32

GetMenuItemCount
CopyRect
EqualRect
BringWindowToTop
GetWindowPlacement
GetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
UnhookWindowsHookEx
SetPropA
GetClassLongA
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
DeferWindowPos
ScreenToClient
AdjustWindowRectEx
GetSysColor
MapWindowPoints
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
LoadStringA
GetClassNameA
PtInRect
GetSysColorBrush
WinHelpA
SetMenu
GetMenu
GetClassInfoA
LoadMenuA
DestroyMenu
GetDesktopWindow
GetWindow
GetCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
SetFocus
MoveWindow
wsprintfA
InvalidateRect
SetWindowTextA
IsDialogMessageA
ReuseDDElParam
SendDlgItemMessageA
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
GetActiveWindow
CallNextHookEx
IsWindowVisible
GetLastActivePopup
SetCursor
ShowOwnedPopups
GetWindowLongA
GetDlgCtrlID
DefWindowProcA
TranslateMessage
DispatchMessageA
IsWindowEnabled
GetDlgItem
DestroyWindow
RegisterClassA
SystemParametersInfoA
CreateWindowExA
MessageBoxA
SetWindowLongA
SetWindowPos
ChangeDisplaySettingsA
ClientToScreen
ShowWindow
SetCapture
GetKeyState
GetCursorPos
ShowCursor
ReleaseCapture
GetWindowRect
SetCursorPos
GetAsyncKeyState
FillRect
ReleaseDC
GetDC
GetClientRect
EnableWindow
GetKeyboardState
ToAscii
IsIconic
ValidateRect
LoadCursorA
GetSubMenu
GetMenuItemID
UnpackDDElParam
GetWindowTextA
LoadIconA
SendMessageA
GetSystemMetrics
PostQuitMessage
PostMessageA
SetForegroundWindow
UpdateWindow
PeekMessageA
GetParent
SetWindowsHookExA
GetMenuCheckMarkDimensions
UnregisterClassA

gdi32

MoveToEx
CreatePen
SetPixel
GetPixel
TextOutA
SetBkMode
SetTextColor
BitBlt
CreateCompatibleDC
DeleteDC
Polygon
CreateCompatibleBitmap
CreateFontA
SetPixelFormat
DescribePixelFormat
ChoosePixelFormat
SwapBuffers
CreateBitmap
GetClipBox
SetBkColor
GetObjectA
SaveDC
RestoreDC
GetStockObject
SetMapMode
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetDeviceCaps
CreateSolidBrush
PtVisible
ExtTextOutA
Escape
RectVisible
DeleteObject
LineTo
SelectObject

comdlg32

ChooseColorA
GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA

shell32

DragFinish
DragQueryFileA

comctl32

ord17

ole32

CoInitialize
CoCreateInstance
CoUninitialize

winmm

mixerGetLineInfoA
mixerGetDevCapsA
mixerSetControlDetails
mciSendCommandA
joyGetPosEx
joyGetDevCapsA
timeGetTime
mixerOpen
mixerGetControlDetailsA
mixerClose
mixerGetLineControlsA

Sections

.text
Size: 944KB - Virtual size: 941KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8dccf98e81ce677c5b2a975a7a69a19e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

winmm

Sections

.text Size: 944KB - Virtual size: 941KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 108KB - Virtual size: 140KB

.rsrc Size: 156KB - Virtual size: 152KB

.text
Size: 944KB - Virtual size: 941KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 108KB - Virtual size: 140KB

.rsrc
Size: 156KB - Virtual size: 152KB