4c7d6ffd02ef7c58ed54c4ed5559a790_NeikiAnalytics | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4c7d6ffd02ef7c58ed54c4ed5559a790_NeikiAnalytics
Size

14KB
MD5

4c7d6ffd02ef7c58ed54c4ed5559a790
SHA1

2b879ee1675c4d963787308d709fc8c700057a9c
SHA256

7c3137ae8d69d26a0e2e376377e1ac2aac87c8c3715208f7c51e102b6e8fca07
SHA512

9d58934dcb58f1837d253a01f0f9eacaebc2a6a7b0d0c11a1a473778459e38a28f4055d876059f56d250583a1d8fa1146f57047a8a8f0dc0c201ae7b3a11061d
SSDEEP

192:LE0QuOk/kCAY3eZR0V+Pgs2/D/Fxx6lpIWtUsmnoCyYSeYxUETW8:LE/MtVwg1FjSltfmoCTSf6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c7d6ffd02ef7c58ed54c4ed5559a790_NeikiAnalytics

Files

4c7d6ffd02ef7c58ed54c4ed5559a790_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

78fd2dfe5ed13d179cb5ae64b9c24dde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
SetWindowPos
GetWindowRect
GetSystemMetrics

kernel32

CloseHandle
CreateToolhelp32Snapshot
ExitProcess
GetConsoleCursorInfo
GetConsoleWindow
GetCurrentProcess
GetStdHandle
GetSystemInfo
GlobalAlloc
GlobalFree
GlobalReAlloc
IsWow64Process
Module32FirstW
Module32NextW
MultiByteToWideChar
OpenProcess
Process32FirstW
Process32NextW
ReadProcessMemory
RtlFillMemory
SetConsoleCursorInfo
SetConsoleCursorPosition
SetConsoleTextAttribute
SetConsoleTitleA
Thread32First
Thread32Next
VirtualAllocEx
VirtualFreeEx
VirtualProtectEx
VirtualQueryEx
WriteProcessMemory
lstrcmpW
lstrcpyW

msvcrt

printf
scanf
system

psapi

GetModuleBaseNameA
EnumProcessModules
EnumProcesses
GetModuleInformation

advapi32

OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE