bac07c3384d317aca9c3e9925fa2efe0_NeikiAnalytics

General

Target

bac07c3384d317aca9c3e9925fa2efe0_NeikiAnalytics
Size

298KB
MD5

bac07c3384d317aca9c3e9925fa2efe0
SHA1

347d60b8f1453d778c303d7ce1ced221fa66f92c
SHA256

fc3e9880fc2bf38590d0b5a4f7a5755e322cfe17cdf57d01d3accc0bb1f7ad70
SHA512

fa480f34af5a5566eeb3927714053e5e4203f86da4b212e151338ad1c8a64067fee9117f9d65a9bfdd1af24b793c136c4a60172ee5e12f65e55876916e30145b
SSDEEP

6144:Hj+jUUvlk0gXdHvu+hq5l4pfaPxAWtR3oHXKNAF7i18C2RaTJH29xpLM6WfoyTT/:D+jBSvuki40ZAWv3oaNWs4+gxphWfv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bac07c3384d317aca9c3e9925fa2efe0_NeikiAnalytics

Files

bac07c3384d317aca9c3e9925fa2efe0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

89a6d6f3d1557233777e25d611c7b76f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcW
SetTimer
wsprintfW
GetParent
EnableWindow
FindWindowW
GetDlgItemInt
IsWindow
SetDlgItemInt
GetDlgItem
KillTimer
PostMessageW
GetClientRect
SetScrollPos
ReleaseDC
RegisterWindowMessageW
CharNextW
DialogBoxParamW
GetMessageW
SendDlgItemMessageW
CreateWindowExW
EndDialog
GetSystemMetrics
LoadStringW
PeekMessageW
DispatchMessageW
PostQuitMessage
GetForegroundWindow
SetForegroundWindow
LoadIconW
RegisterClassW
GetCursorPos
TranslateMessage
SystemParametersInfoW
SetScrollRange
SendMessageW

kernel32

GetSystemTimeAsFileTime
GetVersionExW
HeapQueryInformation
GetLocaleInfoW
GetSystemInfo
HeapLock
InitializeCriticalSection
HeapReAlloc
HeapSize
GetSystemPowerStatus
GetCommandLineW
GetProcAddress
FreeLibrary
GetModuleHandleA
HeapSetInformation
HeapValidate
HeapWalk
HeapUnlock
GetCurrentProcess
LoadLibraryW

gdi32

GetStockObject
PatBlt
GetClipBox

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

cembodga
Size: 33KB - Virtual size: 873KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

rsrs
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89a6d6f3d1557233777e25d611c7b76f

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 136KB - Virtual size: 136KB

.data Size: 30KB - Virtual size: 29KB

cembodga Size: 33KB - Virtual size: 873KB

.udata Size: 17KB - Virtual size: 17KB

rsrs Size: 78KB - Virtual size: 78KB

.text
Size: 136KB - Virtual size: 136KB

.data
Size: 30KB - Virtual size: 29KB

cembodga
Size: 33KB - Virtual size: 873KB

.udata
Size: 17KB - Virtual size: 17KB

rsrs
Size: 78KB - Virtual size: 78KB