7caca008e6b418b5aff98ed4247178d0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

7caca008e6b418b5aff98ed4247178d0_NeikiAnalytics
Size

2.6MB
MD5

7caca008e6b418b5aff98ed4247178d0
SHA1

50219683d3a6379d379536632f4dcb10e3b89cf8
SHA256

c1d7e1a9e8f8e5ba96e55cf08e56ba1fa006832a45265e0fad24ea9e841b4fdf
SHA512

479c27efefd3f1e24f9ca2d6237e8695ca50277c00a08cbac7ddc101407b11519e63d0f3037e3233a5f19ae75dbe389fce753e6e69cc10376f811135b804296f
SSDEEP

24576:lz6DJwPYm/z6DJwPYm/z6DJwPYm/z6DJwPYmxLfUhAuDzxWPF3tm7s7g96H0r:AFwJuFwJuFwJuFwJxLfUtDzx2SStHc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7caca008e6b418b5aff98ed4247178d0_NeikiAnalytics

Files

7caca008e6b418b5aff98ed4247178d0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

0380757c3a562b08ea82cab442cb17cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddMasked
ImageList_Create
InitCommonControlsEx
ImageList_Destroy

kernel32

GetStartupInfoA
GetModuleHandleA
lstrcpynA
lstrlenA
CloseHandle
LoadLibraryA
GlobalUnlock
GlobalLock
GlobalAlloc
ReadFile
SetFilePointer
CreateFileA
GetTickCount
WriteFile
lstrcmpA
SetThreadPriority
GetThreadPriority
GetCurrentThread
FreeLibrary

user32

SetFocus
CreateWindowExA
GetSystemMetrics
RegisterClassExA
LoadCursorA
LoadIconA
TrackPopupMenu
GetSubMenu
GetCursorPos
PostQuitMessage
CreateDialogParamA
MessageBoxA
OpenClipboard
EmptyClipboard
GetWindowTextA
CloseClipboard
SetWindowTextA
SetForegroundWindow
PostMessageA
SetWindowLongA
LoadMenuA
SendDlgItemMessageA
GetClientRect
GetMenu
AdjustWindowRect
GetWindowRect
DestroyMenu
DestroyWindow
IsDialogMessageA
DefWindowProcA
GetDlgItemTextA
SetClipboardData
ScreenToClient
MoveWindow
EnableWindow
wsprintfA
SetDlgItemTextA
LoadBitmapA
LoadImageA
GetDC
ReleaseDC
BeginPaint
EndPaint
GetDlgItemInt
SetDlgItemInt
ShowWindow
InvalidateRect
SetWindowPos
UpdateWindow
GetWindowLongA
CallWindowProcA
HideCaret
GetDlgItem
SendMessageA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
CopyRect

gdi32

DeleteDC
StretchBlt
RealizePalette
SelectPalette
SelectObject
CreateCompatibleDC
CreateHalftonePalette
CreatePalette
GetDIBColorTable
GetObjectA
CreateFontIndirectA
CreateSolidBrush
SetBkColor
SetTextColor
GetStockObject
DeleteObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA

shell32

DragAcceptFiles
DragQueryFileA

msvcrt

__CxxFrameHandler
_strlwr
strstr
sprintf
memmove
??3@YAXPAX@Z
??2@YAPAXI@Z
malloc
free
strchr
__dllonexit
_onexit
_exit
_XcptFilter
exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
calloc
_stricmp
_acmdln

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0380757c3a562b08ea82cab442cb17cd

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

comdlg32

shell32

msvcrt

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 3KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 3KB

.rsrc
Size: 12KB - Virtual size: 12KB