89ccf47012f90a4ff035fe64235de130_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

89ccf47012f90a4ff035fe64235de130_NeikiAnalytics
Size

1.2MB
MD5

89ccf47012f90a4ff035fe64235de130
SHA1

69d119f0043c98bc9ab4584d81dce542a52fb52e
SHA256

77ad7a8575d4931c1e4393dc3c899d8ef4795e23feb40ae9b5399812015251e4
SHA512

ad12f8faf10e75fabd8910f0681884130b9a77e6e227a143f82dfe804dccf890ed5cb05c7c4e9442598c91663c8b830db00ec46fa8ef4587c6d5dda7398ccc38
SSDEEP

24576:pCItspRHqva9BZ1lzFAn4neIII8A3IRopTC37:QIWzAn4edA4RopT4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89ccf47012f90a4ff035fe64235de130_NeikiAnalytics

Files

89ccf47012f90a4ff035fe64235de130_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

bd0d7073a9b5c8c89812661786cabd1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
CompareStringA
CompareStringW
LCMapStringA
LCMapStringW
GetCurrentDirectoryA
SetUnhandledExceptionFilter
GetEnvironmentStrings
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
CreateFileA
GetACP
GetOEMCP
SetEnvironmentVariableA
GetDriveTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
FindResourceA
GlobalAddAtomA
GetProfileStringA
InterlockedExchange
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
SetStdHandle
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapSize
ExitThread
HeapReAlloc
RaiseException
HeapFree
HeapAlloc
RtlUnwind
GetStartupInfoW
SetErrorMode
GetFileTime
GetFileAttributesW
GetCurrentDirectoryW
FindResourceExW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetThreadLocale
GetStringTypeExW
GetFullPathNameW
GetVolumeInformationW
UnlockFile
LockFile
DuplicateHandle
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetProcessVersion
GlobalFlags
lstrcmpiW
FindNextFileW
GetTickCount
SuspendThread
lstrcmpA
lstrcmpiA
GetCurrentThread
GlobalFree
LoadLibraryA
FindResourceW
GetVersion
lstrcatW
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrcpyW
InterlockedDecrement
InterlockedIncrement
MulDiv
GetModuleHandleA
SetLastError
ExitProcess
SizeofResource
LoadResource
LockResource
GlobalAlloc
GlobalLock
GlobalUnlock
CreateProcessW
TerminateProcess
GetExitCodeProcess
GetTempFileNameW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetPrivateProfileStringW
lstrlenA
TerminateThread
FlushFileBuffers
WriteFile
ReadFile
SetFilePointer
SetEndOfFile
GetFileSize
CreateFileW
GetTempPathW
CreateDirectoryW
FindFirstFileW
FindClose
GetCurrentProcess
GetLocaleInfoW
GetNumberFormatW
GetLastError
LocalFree
MoveFileW
DeleteFileW
Sleep
MultiByteToWideChar
WideCharToMultiByte
GetWindowsDirectoryW
CloseHandle
CreateEventW
CreateThread
WaitForMultipleObjects
SetEvent
GetDriveTypeW
WaitForSingleObject
GetModuleHandleW
lstrlenW
GetVersionExW
lstrcpynW
LoadLibraryW
GetProcAddress
FreeLibrary
lstrcmpW
EnterCriticalSection
LeaveCriticalSection
SetThreadPriority
ResumeThread
GetModuleFileNameW
DeleteCriticalSection
IsBadReadPtr
InitializeCriticalSection

user32

GetTopWindow
MessageBoxW
IsChild
WinHelpW
GetClassInfoW
RegisterClassW
TrackPopupMenu
GetDlgItem
GetWindowTextLengthW
GetWindowTextW
DestroyWindow
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
DefWindowProcW
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
IntersectRect
SystemParametersInfoW
GetWindowPlacement
wsprintfW
UnhookWindowsHookEx
EndPaint
BeginPaint
GetWindowDC
ExitWindowsEx
PeekMessageW
IsWindowUnicode
GetMessageW
TranslateMessage
DispatchMessageW
GetMenuStringW
InsertMenuW
SetTimer
KillTimer
DrawIconEx
FrameRect
FillRect
RemovePropW
GetPropW
CallWindowProcW
SetPropW
GetMenuDefaultItem
AppendMenuW
CreatePopupMenu
GetCursorPos
GetSystemMenu
FindWindowW
GetWindowLongW
SetWindowLongW
ScreenToClient
GetWindow
DrawFrameControl
IsWindowEnabled
SetFocus
RegisterWindowMessageW
GetDlgCtrlID
SetWindowPos
CheckDlgButton
GetMenuItemCount
GetMenuItemID
IsIconic
LoadCursorW
LoadBitmapW
UnregisterClassW
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawIcon
LoadIconW
LoadImageW
DestroyIcon
DrawFocusRect
GetCapture
LoadMenuW
LoadAcceleratorsW
BeginDeferWindowPos
IsWindowVisible
EndDeferWindowPos
GetKeyState
SetForegroundWindow
DeleteMenu
SetMenuDefaultItem
IsWindow
SetWindowTextW
GetDlgItemInt
SetDlgItemTextW
IsDlgButtonChecked
SetParent
LockWindowUpdate
GetDCEx
SetClassLongW
GetSystemMetrics
PostMessageW
TranslateAcceleratorW
GetSubMenu
TrackPopupMenuEx
GetWindowRect
EnableWindow
GrayStringW
DrawTextW
TabbedTextOutW
InvalidateRect
GetDC
ReleaseDC
GetParent
ReleaseCapture
ClientToScreen
GetClientRect
UpdateWindow
SetCapture
PtInRect
OffsetRect
InflateRect
GetFocus
CopyRect
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
DestroyCursor
GetSysColor
SendMessageW
SetCursor
DeferWindowPos
EqualRect
AdjustWindowRectEx
SetActiveWindow
MapWindowPoints
SendDlgItemMessageA
GetWindowTextLengthA
SendDlgItemMessageW
PostThreadMessageW
CharUpperW
GetSysColorBrush
GetDesktopWindow
GetClassNameW
SetRect
WindowFromPoint
DestroyMenu
SetRectEmpty
RegisterClipboardFormatW
ValidateRect
PostQuitMessage
EndDialog
CreateDialogIndirectParamW
MapDialogRect
GetActiveWindow
GetAsyncKeyState
LoadStringW
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
ShowWindow
IsDialogMessageW
GetMenu
MoveWindow

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
GetDeviceCaps
CreatePatternBrush
SetRectRgn
GetCharWidthW
CreateFontW
GetTextMetricsW
EnumFontFamiliesExW
CreateRectRgn
CombineRgn
SetTextColor
SetBkMode
CreateBitmap
SetBkColor
SaveDC
GetClipBox
CreateRectRgnIndirect
ExtSelectClipRgn
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice
RestoreDC
CreateDIBSection
DeleteDC
PatBlt
DeleteObject
GetStockObject
GetBkMode
CreateSolidBrush
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetTextExtentPoint32W
GetBkColor
GetTextColor
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectW
CreateDIBitmap
ExtTextOutA
GetTextExtentPointA
CreateFontIndirectW

comdlg32

GetOpenFileNameW
GetSaveFileNameW
GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegCloseKey
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegDeleteKeyW
RegDeleteValueW
RegOpenKeyExW

shell32

DragAcceptFiles
SHGetSpecialFolderPathW
SHFileOperationW
SHGetSpecialFolderLocation
SHGetFileInfoW
SHGetDesktopFolder
SHGetMalloc
SHBrowseForFolderW
SHGetPathFromIDListW
DragQueryFileW
ShellExecuteW
DragFinish

comctl32

ImageList_GetImageCount
ImageList_EndDrag
ImageList_DragMove
ImageList_GetImageInfo
ImageList_DragEnter
ImageList_BeginDrag
ImageList_Draw
ImageList_AddMasked
_TrackMouseEvent
ImageList_Destroy
ImageList_Create
ord17
ImageList_DrawIndirect
PropertySheetW
DestroyPropertySheetPage
ImageList_DragLeave
CreatePropertySheetPageW

oledlg

OleUIBusyW

ole32

OleIsCurrentClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoInitialize
CoCreateInstance
CoUninitialize
OleFlushClipboard

oleaut32

SysAllocString
SysFreeString

winmm

timeSetEvent
timeKillEvent

shlwapi

PathFileExistsW
PathIsDirectoryW
PathFindExtensionW
PathMakePrettyW
PathRemoveFileSpecW
PathFindFileNameW

wininet

InternetCrackUrlW
HttpQueryInfoW
InternetReadFile
InternetCloseHandle
HttpSendRequestW
HttpOpenRequestW
InternetConnectW
InternetOpenW
InternetSetOptionW

Sections

.text
Size: 688KB - Virtual size: 687KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 280KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd0d7073a9b5c8c89812661786cabd1a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

oleaut32

winmm

shlwapi

wininet

Sections

.text Size: 688KB - Virtual size: 687KB

.rdata Size: 112KB - Virtual size: 111KB

.data Size: 280KB - Virtual size: 297KB

.rsrc Size: 108KB - Virtual size: 104KB

.text
Size: 688KB - Virtual size: 687KB

.rdata
Size: 112KB - Virtual size: 111KB

.data
Size: 280KB - Virtual size: 297KB

.rsrc
Size: 108KB - Virtual size: 104KB