7ce28db3c64a860f1b6fb79c9a869580_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

7ce28db3c64a860f1b6fb79c9a869580_NeikiAnalytics
Size

294KB
MD5

7ce28db3c64a860f1b6fb79c9a869580
SHA1

a251fe09d42e6a613290c1e1a7679067fa809d6a
SHA256

41810ca8cbfe43195a81378573c3feae9ecfee730d06f4611e5cf6e6b561dee5
SHA512

25857001214560a660141929741946df2cde45e4533d5bc8857ace2a28fcb0f987329392fadffc84c128e15490e56f305d992341884a9320f8b21b356396253a
SSDEEP

3072:W4F1xB1cNi1eOn0pXWmjZ3v+xNmJNiWPHqtHQMZB1LbTGFnqKbTfoaO2FYxtNos:W4tBGiUTVZflWW41LeFnqCxO2Fst

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7ce28db3c64a860f1b6fb79c9a869580_NeikiAnalytics

Files

7ce28db3c64a860f1b6fb79c9a869580_NeikiAnalytics
.dll windows:4 windows x86 arch:x86

8f743b67057338083692a6df897d3d46

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

WindowFromDC
UnhookWindowsHookEx
SetWindowsHookExA
ReleaseDC
wsprintfA
RedrawWindow
PostQuitMessage
PeekMessageA
KillTimer
IsWindow
RegisterClassA
IntersectRect
GetWindowLongA
GetSystemMetrics
GetMenu
GetDC
GetClipboardViewer
GetClientRect
EqualRect
EnumDisplayMonitors
EndDeferWindowPos
DestroyWindow
DefWindowProcA
CreateWindowExA
ClientToScreen
CallNextHookEx
AdjustWindowRectEx

kernel32

WriteFile
WaitForSingleObject
VirtualQuery
VirtualProtect
VirtualAlloc
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
Thread32First
TerminateProcess
BindIoCompletionCallback
CompareStringA
CompareStringW
CreateFileA
DisableThreadLibraryCalls
EnterCriticalSection
FindClose
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcessPriorityBoost
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetTickCount
GetUserDefaultLCID
GetVersionExA
GlobalAlloc
GlobalFree
GlobalSize
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapSize
InterlockedExchange
InterlockedIncrement
IsBadCodePtr
IsBadWritePtr
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
MultiByteToWideChar
OutputDebugStringA
Process32Next
QueryPerformanceCounter
RaiseException
ReadFile
ReadProcessMemory
ReleaseMutex
RtlUnwind
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetUnhandledExceptionFilter

opengl32

wglMakeCurrent

gdi32

SetPixelFormat
SelectObject
GetPixelFormat
GetObjectType
GetDeviceCaps
GetCurrentObject
DescribePixelFormat
DeleteObject
DeleteDC
CreateDIBSection
CreateCompatibleDC

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

Exports

Exports

Long_FromSize_t
Number_Rshift
OSError
State_Clear
UnicodeError
WithUnicodeFilename
_InputHook

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f743b67057338083692a6df897d3d46

Headers

File Characteristics

Imports

user32

kernel32

opengl32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 146KB - Virtual size: 146KB

.data Size: 35KB - Virtual size: 35KB

.rsrc Size: 15KB - Virtual size: 15KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 146KB - Virtual size: 146KB

.data
Size: 35KB - Virtual size: 35KB

.rsrc
Size: 15KB - Virtual size: 15KB

.reloc
Size: 4KB - Virtual size: 3KB