Static task
static1
Behavioral task
behavioral1
Sample
3f4b583d239ea0826cda427dad1c1cd0_NeikiAnalytics.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
3f4b583d239ea0826cda427dad1c1cd0_NeikiAnalytics.dll
Resource
win10v2004-20240426-en
windows10-2004-x64
General
-
Target
3f4b583d239ea0826cda427dad1c1cd0_NeikiAnalytics
-
Size
47KB
-
MD5
3f4b583d239ea0826cda427dad1c1cd0
-
SHA1
698285f8f15d5354a252f1d173309a9d4e9c7a05
-
SHA256
66e6d29d7f364d4ef7e66271aaeafb5b7a0993ea499153dac627ae78a84d17a4
-
SHA512
2408308368c95f5d73b5c1439f37ef1507379a4a06f6939742866ae222a59b657a56e9ee8d9c03a174c0fb99f7dc5c5bf6a06c27ada69a074e25ceba647818f3
-
SSDEEP
768:0+G20RSfcjDnXrZkhHG41/GBZ/S9JOwgvtGdQAICaGV:PGTSfcjDn7ZkhHG4plOwuGdQABj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3f4b583d239ea0826cda427dad1c1cd0_NeikiAnalytics
Files
-
3f4b583d239ea0826cda427dad1c1cd0_NeikiAnalytics.dll windows:6 windows x86 arch:x86
c02ddd867c6daf35cd18814f30ed7e1f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
soapysdr
?hasHardwareTime@Device@SoapySDR@@UBE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?hasIQBalance@Device@SoapySDR@@UBE_NHI@Z
?listAntennas@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@HI@Z
?listBandwidths@Device@SoapySDR@@UBE?AV?$vector@NV?$allocator@N@std@@@std@@HI@Z
?listClockSources@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?listGPIOBanks@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?listGains@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@HI@Z
?listRegisterInterfaces@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?listSensors@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@HI@Z
?listSensors@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?listTimeSources@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?listUARTs@Device@SoapySDR@@UBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?readGPIO@Device@SoapySDR@@UBEIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?readGPIODir@Device@SoapySDR@@UBEIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?readI2C@Device@SoapySDR@@UAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HI@Z
?readRegister@Device@SoapySDR@@UBEIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I@Z
?readRegister@Device@SoapySDR@@UBEII@Z
?readRegisters@Device@SoapySDR@@UBE?AV?$vector@IV?$allocator@I@std@@@std@@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@4@II@Z
?readSensor@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV34@@Z
?readSensor@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HIABV34@@Z
?readSetting@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV34@@Z
?readSetting@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HIABV34@@Z
?readStreamStatus@Device@SoapySDR@@UAEHPAVStream@2@AAIAAHAA_JJ@Z
?readUART@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV34@J@Z
?releaseReadBuffer@Device@SoapySDR@@UAEXPAVStream@2@I@Z
?releaseWriteBuffer@Device@SoapySDR@@UAEXPAVStream@2@IIAAH_J@Z
?setAntenna@Device@SoapySDR@@UAEXHIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?hasGainMode@Device@SoapySDR@@UBE_NHI@Z
?setClockSource@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?setCommandTime@Device@SoapySDR@@UAEX_JABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?setDCOffset@Device@SoapySDR@@UAEXHIABV?$complex@N@std@@@Z
?setDCOffsetMode@Device@SoapySDR@@UAEXHI_N@Z
?setFrequency@Device@SoapySDR@@UAEXHINABV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@@Z
?setFrequencyCorrection@Device@SoapySDR@@UAEXHIN@Z
?setFrontendMapping@Device@SoapySDR@@UAEXHABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?setGain@Device@SoapySDR@@UAEXHIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@N@Z
?setGain@Device@SoapySDR@@UAEXHIN@Z
?setGainMode@Device@SoapySDR@@UAEXHI_N@Z
?setHardwareTime@Device@SoapySDR@@UAEX_JABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?setIQBalance@Device@SoapySDR@@UAEXHIABV?$complex@N@std@@@Z
?setMasterClockRate@Device@SoapySDR@@UAEXN@Z
?setTimeSource@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?transactSPI@Device@SoapySDR@@UAEIHII@Z
?writeGPIO@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I@Z
?writeGPIO@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@II@Z
?writeGPIODir@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I@Z
?writeGPIODir@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@II@Z
?writeI2C@Device@SoapySDR@@UAEXHABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?writeRegister@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@II@Z
?writeRegister@Device@SoapySDR@@UAEXII@Z
?writeRegisters@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IABV?$vector@IV?$allocator@I@std@@@4@@Z
?writeSetting@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?writeSetting@Device@SoapySDR@@UAEXHIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?writeUART@Device@SoapySDR@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
??0ModuleVersion@SoapySDR@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?getDCOffset@Device@SoapySDR@@UBE?AV?$complex@N@std@@HI@Z
?hasFrequencyCorrection@Device@SoapySDR@@UBE_NHI@Z
?hasDCOffsetMode@Device@SoapySDR@@UBE_NHI@Z
?hasDCOffset@Device@SoapySDR@@UBE_NHI@Z
?getTimeSource@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?getStreamMTU@Device@SoapySDR@@UBEIPAVStream@2@@Z
?getStreamArgsInfo@Device@SoapySDR@@UBE?AV?$vector@VArgInfo@SoapySDR@@V?$allocator@VArgInfo@SoapySDR@@@std@@@std@@HI@Z
?getSettingInfo@Device@SoapySDR@@UBE?AV?$vector@VArgInfo@SoapySDR@@V?$allocator@VArgInfo@SoapySDR@@@std@@@std@@XZ
?getSettingInfo@Device@SoapySDR@@UBE?AV?$vector@VArgInfo@SoapySDR@@V?$allocator@VArgInfo@SoapySDR@@@std@@@std@@HI@Z
?getSensorInfo@Device@SoapySDR@@UBE?AVArgInfo@2@HIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?getSensorInfo@Device@SoapySDR@@UBE?AVArgInfo@2@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?getSampleRateRange@Device@SoapySDR@@UBE?AV?$vector@VRange@SoapySDR@@V?$allocator@VRange@SoapySDR@@@std@@@std@@HI@Z
?getNumDirectAccessBuffers@Device@SoapySDR@@UAEIPAVStream@2@@Z
?getMasterClockRates@Device@SoapySDR@@UBE?AV?$vector@VRange@SoapySDR@@V?$allocator@VRange@SoapySDR@@@std@@@std@@XZ
?getMasterClockRate@Device@SoapySDR@@UBENXZ
?getIQBalance@Device@SoapySDR@@UBE?AV?$complex@N@std@@HI@Z
?getHardwareTime@Device@SoapySDR@@UBE_JABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?getHardwareInfo@Device@SoapySDR@@UBE?AV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@XZ
?getGainRange@Device@SoapySDR@@UBE?AVRange@2@HIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?getGainRange@Device@SoapySDR@@UBE?AVRange@2@HI@Z
?getGainMode@Device@SoapySDR@@UBE_NHI@Z
?getGain@Device@SoapySDR@@UBENHIABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?getGain@Device@SoapySDR@@UBENHI@Z
?getFullDuplex@Device@SoapySDR@@UBE_NHI@Z
?getFrontendMapping@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
?getFrequencyRange@Device@SoapySDR@@UBE?AV?$vector@VRange@SoapySDR@@V?$allocator@VRange@SoapySDR@@@std@@@std@@HI@Z
?getFrequencyCorrection@Device@SoapySDR@@UBENHI@Z
?getFrequencyArgsInfo@Device@SoapySDR@@UBE?AV?$vector@VArgInfo@SoapySDR@@V?$allocator@VArgInfo@SoapySDR@@@std@@@std@@HI@Z
?getFrequency@Device@SoapySDR@@UBENHI@Z
?getDCOffsetMode@Device@SoapySDR@@UBE_NHI@Z
?getDirectAccessBufferAddrs@Device@SoapySDR@@UAEHPAVStream@2@IPAPAX@Z
?getClockSource@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?getChannelInfo@Device@SoapySDR@@UBE?AV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@HI@Z
?getBandwidthRange@Device@SoapySDR@@UBE?AV?$vector@VRange@SoapySDR@@V?$allocator@VRange@SoapySDR@@@std@@@std@@HI@Z
?getBandwidth@Device@SoapySDR@@UBENHI@Z
?getAntenna@Device@SoapySDR@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@HI@Z
?acquireWriteBuffer@Device@SoapySDR@@UAEHPAVStream@2@AAIPAPAXJ@Z
?acquireReadBuffer@Device@SoapySDR@@UAEHPAVStream@2@AAIPAPBXAAHAA_JJ@Z
??1Registry@SoapySDR@@QAE@XZ
??0Registry@SoapySDR@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABQ6A?AV?$vector@V?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@V?$allocator@V?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@@2@@3@ABV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@3@@ZABQ6APAVDevice@1@1@Z0@Z
??0Device@SoapySDR@@QAE@XZ
?getNumChannels@Device@SoapySDR@@UBEIH@Z
??1Device@SoapySDR@@UAE@XZ
?setBandwidth@Device@SoapySDR@@UAEXHIN@Z
??0Range@SoapySDR@@QAE@NNN@Z
msvcp140
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?uncaught_exception@std@@YA_NXZ
ws2_32
WSACleanup
send
closesocket
connect
ioctlsocket
htons
recv
select
WSAStartup
socket
inet_pton
vcruntime140
__CxxFrameHandler3
memcpy
__std_exception_destroy
memset
_except_handler4_common
__std_type_info_destroy_list
memmove
_CxxThrowException
__std_terminate
__std_exception_copy
api-ms-win-crt-runtime-l1-1-0
_seh_filter_dll
_initterm_e
_initterm
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_invalid_parameter_noinfo_noreturn
api-ms-win-crt-math-l1-1-0
floor
api-ms-win-crt-heap-l1-1-0
free
malloc
_callnewh
kernel32
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
Sections
.text Size: 23KB - Virtual size: 22KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ