2938fd2d4a41d65ef0c3571df02e30c0_NeikiAnalytics

General

Target

2938fd2d4a41d65ef0c3571df02e30c0_NeikiAnalytics
Size

119KB
MD5

2938fd2d4a41d65ef0c3571df02e30c0
SHA1

9fa045f6f5397836dd2e2f2b98b4c0d86f19743c
SHA256

633e526d3ae8d2d150455b31655b65ac92f0410168ce42025537c2ccece8b5a9
SHA512

d45a56649b7d3a16aa776f5d01342bc479ea22ad40474e166e814900a08cc45bef1e4c63df47d843d0b1d38a2a544ca5321420d22a4e8740d647cbbfa9919101
SSDEEP

1536:hsogbSi24V5oMgbt2g8740zoTKWc+wdyP41wzCk0rWD62RB0sHFw2zRF2CxEFX:hsogbhBAbtS7ZcJOC4MCNz2R6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2938fd2d4a41d65ef0c3571df02e30c0_NeikiAnalytics

Files

2938fd2d4a41d65ef0c3571df02e30c0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f2165a52f857813d2cdfeb6897e91b3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
ReadFile
WriteFile
GetFileAttributesA
CreateDirectoryA
CloseHandle
lstrlenA
SetFileAttributesA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetSystemDirectoryA
GetProcessHeap
CreateFileA
lstrcpyA
GetCurrentDirectoryA
lstrcatA
LocalFree
FormatMessageA
ExitProcess
GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
lstrcmpA
IsDBCSLeadByte
HeapAlloc
HeapFree
GetWindowsDirectoryA
GetTempPathA

user32

EndDialog
GetSystemMetrics
GetWindowRect
PostMessageA
GetDlgItemTextA
wsprintfA
MoveWindow
CharNextA
DispatchMessageA
PeekMessageA
SendMessageA
DialogBoxParamA
GetMessageA
SetWindowTextA
GetDlgItem
LoadStringA
TranslateMessage
MessageBoxA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
SHGetDesktopFolder

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2165a52f857813d2cdfeb6897e91b3c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Sections

.text Size: 15KB - Virtual size: 14KB

.data Size: 1024B - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 15KB - Virtual size: 14KB

.data
Size: 1024B - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 1KB