a53e94ad0e532346e1cfba56468dc4a0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

a53e94ad0e532346e1cfba56468dc4a0_NeikiAnalytics
Size

280KB
MD5

a53e94ad0e532346e1cfba56468dc4a0
SHA1

fabb1c987fda28a342a4a34514dc9b685d740d14
SHA256

137cf04e37e733e0f123c95d2e8e4bcf5a6ab86300f5893818ab7d28389ab21d
SHA512

ca4d46bbf1e64167a8e0dd7efc6ce79198268f50dde0ff7c78d5faf0ff158aab4d70feca7b43189013b43d127168b97a718d2d89d5344623eaddb3029a7c2ad3
SSDEEP

3072:ZGV2g2v+tLI+yoerbfHSaaObBp96LTXkF+gd36GVDFK03tszhrQjK4azkp1OsE:ZfJvUS0K+gNfA03a1rYKZzI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a53e94ad0e532346e1cfba56468dc4a0_NeikiAnalytics

Files

a53e94ad0e532346e1cfba56468dc4a0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

3b8c270bf4f99b701b3ac2fc529d2fe5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetVersionExA
PurgeComm
LoadLibraryA
GetCurrentDirectoryA
GetFileAttributesA
GetFullPathNameA
GetFileSize
GetCommandLineA
GetLongPathNameA
InterlockedExchange
LocalAlloc
FreeLibrary
FlushFileBuffers
SetStdHandle
GetProcAddress
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetFilePointer
IsBadWritePtr
HeapReAlloc
VirtualAlloc
FormatMessageA
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcess
TerminateProcess
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
HeapAlloc
HeapFree
ExitProcess
RaiseException
GetVersion
GetStartupInfoA
GetModuleHandleA
LocalFree
ReadFile
CloseHandle
WriteFile
CreateFileA
GetCommState
SetCommState
GetCommTimeouts
VirtualFree
SetCommTimeouts
RtlUnwind

user32

MessageBoxA
DestroyMenu
SetMenu
DeleteMenu
DrawMenuBar
GetDlgItemTextA
DlgDirListA
PostMessageA
GetSystemMetrics
GetWindowRect
MoveWindow
SetFocus
GetDlgItem
SendMessageA
SetDlgItemTextA
EndDialog
SetWindowTextA
BeginPaint
GetDC
ReleaseDC
EndPaint
PostQuitMessage
DestroyWindow
DialogBoxParamA
InvalidateRect
SetTimer
DefWindowProcA
KillTimer
CreateWindowExA
ShowWindow
UpdateWindow
GetMenu
CheckMenuItem
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
wsprintfA
LoadMenuA

gdi32

SelectObject
Rectangle
GetStockObject

advapi32

RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegCreateKeyExA

shell32

DragAcceptFiles
DragQueryFileA

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b8c270bf4f99b701b3ac2fc529d2fe5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 40KB - Virtual size: 37KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 12KB - Virtual size: 39KB

.rsrc Size: 200KB - Virtual size: 199KB

.text
Size: 40KB - Virtual size: 37KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 12KB - Virtual size: 39KB

.rsrc
Size: 200KB - Virtual size: 199KB