2cfbba7962bb2a94e2b74e9be03ed190_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

2cfbba7962bb2a94e2b74e9be03ed190_NeikiAnalytics
Size

480KB
MD5

2cfbba7962bb2a94e2b74e9be03ed190
SHA1

b3026d9f6b2a8a97afd6c1a0fa4874f8dcc6136c
SHA256

df5fbbe87d66467c63f6d2c409069ea2b214bbe869bae7b8e2d24e1e78979ed2
SHA512

f550b5591f05fafe22a9077c2b479ec91bd57a82516a1f879c25840cb68fefcaf3b170c5ebc68cdd990aed73bfc58e389b170e111e0aa2ea2e7feaf2c9e13b0d
SSDEEP

12288:mAk1aCXrVzsV8fVOiSzA9LiS154jeob+K:zk1aCbGVwOiSzARis54jeo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cfbba7962bb2a94e2b74e9be03ed190_NeikiAnalytics

Files

2cfbba7962bb2a94e2b74e9be03ed190_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

2ab460fd3fef568be2685281b6927718

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
HeapAlloc
GetStartupInfoA
GetCommandLineA
HeapFree
TerminateProcess
HeapSize
HeapReAlloc
RaiseException
CreateThread
ExitThread
GetACP
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GlobalLock
GlobalUnlock
GetTickCount
FindResourceA
LoadResource
LockResource
SizeofResource
CreateFileA
CreateFileMappingA
MapViewOfFile
GetFileSize
UnmapViewOfFile
DeleteFileA
GetModuleFileNameA
SetFilePointer
FlushFileBuffers
GetCurrentProcess
WriteFile
GetOEMCP
SetErrorMode
GlobalFlags
GetCPInfo
GetProcessVersion
TlsSetValue
TlsGetValue
LocalReAlloc
TlsAlloc
TlsFree
GlobalHandle
LocalAlloc
GetCurrentThread
SetThreadPriority
CreateEventA
SuspendThread
GetPrivateProfileIntA
ResumeThread
WaitForSingleObject
GetVersion
InterlockedIncrement
SetLastError
GlobalAddAtomA
GetCurrentThreadId
GlobalGetAtomNameA
InterlockedDecrement
GlobalFindAtomA
GlobalDeleteAtom
WideCharToMultiByte
GetModuleHandleA
GetTempPathA
lstrcmpA
MultiByteToWideChar
IsBadWritePtr
GetVersionExA
LocalFree
FormatMessageA
LCMapStringA
LoadLibraryA
GlobalReAlloc
GetFileTime
LCMapStringW
WritePrivateProfileStringA
GetProcAddress
FindNextFileA
FindFirstFileA
lstrcmpiA
EnterCriticalSection
FindClose
lstrcpynA
OutputDebugStringA
LoadLibraryExA
LeaveCriticalSection
MoveFileA
DeleteCriticalSection
InitializeCriticalSection
GlobalFree
GetFileAttributesA
GetTempFileNameA
SetUnhandledExceptionFilter
GlobalAlloc
GetStringTypeA
GetEnvironmentStrings
GetEnvironmentStringsW
FreeLibrary
Sleep
SetCurrentDirectoryA
lstrcatA
lstrcpyA
lstrlenA
GetCurrentDirectoryA
GetProfileStringA
GetFullPathNameA
MulDiv
GetLastError
CreateMutexA
CloseHandle
SetEvent

user32

GetPropA
SetPropA
GetMessageTime
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
GetDlgCtrlID
RemovePropA
GetClassLongA
GetWindowTextLengthA
GetMenu
GetClassInfoA
IsChild
GetTopWindow
SetScrollInfo
ScrollWindow
GetMenuItemID
EndDeferWindowPos
DeferWindowPos
AdjustWindowRectEx
SetFocus
SetActiveWindow
GetFocus
GetDlgItemInt
SetDlgItemInt
MoveWindow
IsWindowEnabled
GetNextDlgTabItem
EnableMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
GetWindowDC
TabbedTextOutA
DrawTextA
BeginDeferWindowPos
CreateDialogIndirectParamA
GetActiveWindow
GrayStringA
ValidateRect
GetMessageA
ShowOwnedPopups
LoadAcceleratorsA
TranslateAcceleratorA
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
UnionRect
GetClassNameA
GetDCEx
LockWindowUpdate
SetParent
GetWindowTextA
CharNextA
PeekMessageA
ClientToScreen
WindowFromPoint
IsWindow
GetDesktopWindow
IsIconic
SetWindowPos
GetWindowPlacement
CallWindowProcA
GetMenuItemCount
AppendMenuA
CreateMenu
wvsprintfA
LoadBitmapA
CopyRect
MapVirtualKeyA
GetKeyNameTextA
GetLastActivePopup
GetMessagePos
CreateDialogParamA
ShowWindow
DestroyWindow
CharUpperA
SetDlgItemTextA
GetDlgItemTextA
SendDlgItemMessageA
IsDlgButtonChecked
EndDialog
DestroyIcon
SetWindowTextA
DialogBoxParamA
GetDlgItem
SetWindowLongA
GetSubMenu
CheckMenuItem
TrackPopupMenu
DestroyMenu
LoadMenuA
SetMenu
LoadStringA
SetRect
AdjustWindowRect
IsZoomed
IsWindowVisible
GetParent
PostMessageA
ShowScrollBar
SetScrollPos
ClipCursor
SetScrollRange
SetForegroundWindow
WinHelpA
GetWindowRect
MapWindowPoints
MessageBeep
LoadIconA
EnableWindow
ScreenToClient
KillTimer
SendMessageA
SetCapture
SetTimer
SetCursor
GetUpdateRect
BeginPaint
FillRect
EndPaint
GetWindowLongA
LoadCursorA
PtInRect
IsRectEmpty
OffsetRect
GetDC
DrawFocusRect
ReleaseDC
GetCursorPos
SetCursorPos
UpdateWindow
GetCapture
ReleaseCapture
GetClientRect
GetSystemMetrics
InvalidateRect
GetSysColor
SetRectEmpty
PostQuitMessage
MessageBoxA
IsDialogMessageA
DdeConnect
DdeGetLastError
wsprintfA
DdeClientTransaction
DdeFreeDataHandle
TranslateMessage
DispatchMessageA
RegisterClassA
DefWindowProcA
GetSysColorBrush
GetMenuStringA
DeleteMenu
ScrollWindowEx
InvalidateRgn
GetForegroundWindow
GetWindow
RegisterWindowMessageA
UnhookWindowsHookEx
GetKeyState
IntersectRect
EqualRect
CopyAcceleratorTableA
SystemParametersInfoA
DrawStateA
SetMenuItemInfoA
DdeDisconnect
DdeCmpStringHandles
DdeAccessData
DdeUnaccessData
DdeFreeStringHandle
DdeUninitialize
DdeInitializeA
DdeCreateStringHandleA
DdeNameService
InflateRect
GetMenuItemInfoA
DrawEdge
IsWindowUnicode
ExcludeUpdateRgn
ShowCaret
UnregisterClassA
HideCaret
DefDlgProcA

gdi32

DeleteObject
SetDIBitsToDevice
RealizePalette
SetStretchBltMode
SelectClipRgn
CombineRgn
SelectPalette
Arc
Rectangle
CreateRectRgn
CreatePen
SelectObject
SetBkColor
DeleteDC
SetDIBColorTable
GetStockObject
GetDIBColorTable
CreateCompatibleDC
GetObjectA
CreatePalette
DeleteEnhMetaFile
CreateSolidBrush
CreateFontIndirectA
PlayEnhMetaFile
PatBlt
BitBlt
Ellipse
CreateCompatibleBitmap
GetDeviceCaps
CreateBitmap
GetTextMetricsA
GetTextExtentPoint32A
GetClipBox
SetTextColor
SaveDC
RestoreDC
SetROP2
SetBkMode
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
ExcludeClipRect
PtVisible
CreatePatternBrush
TextOutA
ExtTextOutA
RectVisible
CreateRectRgnIndirect
GetCharWidthA
Escape
SetRectRgn
CreateFontA
CreateDIBitmap
CreateBrushIndirect
StretchDIBits
GetTextExtentPointA
CreateDIBSection

comdlg32

ChooseColorA
GetFileTitleA
GetSaveFileNameA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCreateKeyA
RegOpenKeyA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA

shell32

DragFinish
ExtractIconExA
SHFileOperationA
SHGetFileInfoA
DragQueryFileA

comctl32

ImageList_Destroy
ord17
ImageList_GetImageInfo
ImageList_Create
ImageList_GetImageCount
ImageList_AddMasked
ImageList_GetIcon
ImageList_Draw

ole32

CoCreateInstance

Sections

.text
Size: 360KB - Virtual size: 359KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ab460fd3fef568be2685281b6927718

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

Sections

.text Size: 360KB - Virtual size: 359KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 24KB - Virtual size: 42KB

.tls Size: 4KB - Virtual size: 3KB

.rsrc Size: 36KB - Virtual size: 36KB

.text
Size: 360KB - Virtual size: 359KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 24KB - Virtual size: 42KB

.tls
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 36KB - Virtual size: 36KB