251dd29c9295e8ed609d6ffb4f7c97e0_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

251dd29c9295e8ed609d6ffb4f7c97e0_NeikiAnalytics
Size

1.6MB
MD5

251dd29c9295e8ed609d6ffb4f7c97e0
SHA1

671b1d71df355c0e9e1b14a6fb044fbb1edda459
SHA256

86a120c521052a79c79c8342740d684ad253275d20b5d2907df3325d89fc83a9
SHA512

81190f4facefbc2bc093ca3dfca9d7852fff96d35a8531f5c2d8a6875e9845048257bd058352182239430422a85bf58aa9c9892582b2f2906311cc7014bcc84f
SSDEEP

24576:+b7KFij7y5u4Laq+hlrYqr7OeTYyrNig6XhSAfrkVVWMEXU8b8wOoWFwT:+MijoaPOeTzH6x5oVTEXwwODFwT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
251dd29c9295e8ed609d6ffb4f7c97e0_NeikiAnalytics

Files

251dd29c9295e8ed609d6ffb4f7c97e0_NeikiAnalytics
.dll windows:5 windows x86 arch:x86

5969e4475164c623616e10bf7bf869fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CreateCursor
TrackMouseEvent
GetFocus
SetForegroundWindow
GetKeyState
SetCapture
IsChild
RegisterClassExA
GetSystemMenu
GetUpdateRgn
EnumDisplayMonitors
SetCursor
DestroyWindow
EndPaint
TranslateMessage
GetMessageA
SetClipboardData
OpenClipboard
EmptyClipboard
GetClipboardData
MessageBeep
CloseClipboard
InvalidateRect
SetCursorPos
UnregisterClassA
CreateWindowExA
GetWindowInfo
ReleaseDC
EnableMenuItem
DefWindowProcA
DestroyCursor
GetDesktopWindow
GetCursorPos
ShowWindow
GetActiveWindow
PostMessageA
DispatchMessageA
SystemParametersInfoA
ReleaseCapture
SetWindowTextA
LoadCursorA
DestroyIcon
GetMessageTime
GetMessagePos
AttachThreadInput
GetWindowThreadProcessId
GetSystemMetrics
WindowFromPoint
SetFocus
SendMessageA
BeginPaint
CreateIconIndirect
GetClassNameA
GetWindowRect
GetParent
SetParent
SetWindowLongA
GetWindowLongA
SetWindowPos
GetDC
GetCapture
GetForegroundWindow
GetWindowPlacement
PeekMessageA
MapVirtualKeyA

msvfw32

DrawDibOpen
DrawDibDraw

winmm

timeBeginPeriod

kernel32

GlobalLock
GlobalAlloc
GlobalUnlock
GetModuleFileNameA
GetModuleHandleA
GetCurrentProcessId
QueryPerformanceCounter
GetTickCount
IsProcessorFeaturePresent
GetSystemInfo
QueryPerformanceFrequency
OutputDebugStringA
GetVersionExA
CreateFileA
GetFileSize
SetFilePointer
WriteFile
GetFileAttributesA
ReadFile
FlushFileBuffers
GetCurrentDirectoryA
HeapFree
HeapAlloc
HeapReAlloc
GlobalSize
ExitThread
CreateThread
WideCharToMultiByte
GetTimeZoneInformation
GetSystemTimeAsFileTime
MultiByteToWideChar
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlUnwind
TerminateProcess
IsDebuggerPresent
GetStdHandle
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
RaiseException
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
HeapSize
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
LCMapStringA
GetLocaleInfoA
CompareStringA
CloseHandle
SetEnvironmentVariableA
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetThreadAffinityMask
GetCurrentThreadId
DeleteCriticalSection
LoadLibraryA
EnterCriticalSection
GetProcAddress
GetLastError
SetThreadPriority
LeaveCriticalSection
CreateEventA
Sleep
TerminateThread
InitializeCriticalSection
GetCurrentThread
SetEvent
WaitForSingleObject
GetCurrentProcess
ExitProcess
GetCommandLineA
CompareStringW

gdi32

RestoreDC
GetGlyphOutlineA
GetOutlineTextMetricsA
CreateFontIndirectA
CreateRectRgn
SetStretchBltMode
SelectPalette
StretchDIBits
RealizePalette
SaveDC
CreateCompatibleBitmap
SetMapMode
CombineRgn
CreateRectRgnIndirect
CreateCompatibleDC
SelectObject
DeleteObject
GetRegionData
CreateBitmap
SetPixel
CreateHalftonePalette
ExcludeClipRect
GetDeviceCaps
CreateDIBSection
DeleteDC
GetTextMetricsA
SetMapperFlags
GetKerningPairsA

advapi32

RegOpenKeyExA
RegCloseKey

shell32

DragAcceptFiles
DragQueryFileA
DragQueryPoint
DragFinish
ExtractAssociatedIconA
Shell_NotifyIconA

ole32

OleInitialize
OleUninitialize

Exports

Exports

VSTPluginMain
main

Sections

.text
Size: 698KB - Virtual size: 698KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 879KB - Virtual size: 879KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5969e4475164c623616e10bf7bf869fb

Headers

File Characteristics

Imports

user32

msvfw32

winmm

kernel32

gdi32

advapi32

shell32

ole32

Exports

Exports

Sections

.text Size: 698KB - Virtual size: 698KB

.rdata Size: 879KB - Virtual size: 879KB

.data Size: 13KB - Virtual size: 21KB

.reloc Size: 43KB - Virtual size: 43KB

.text
Size: 698KB - Virtual size: 698KB

.rdata
Size: 879KB - Virtual size: 879KB

.data
Size: 13KB - Virtual size: 21KB

.reloc
Size: 43KB - Virtual size: 43KB