1424a2ff092ebaf726cdd804aaa6e040_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

1424a2ff092ebaf726cdd804aaa6e040_NeikiAnalytics
Size

88KB
MD5

1424a2ff092ebaf726cdd804aaa6e040
SHA1

4a2d5d52ad4016f4659e7f720e8179dfd4ce7613
SHA256

4236888068054f743e23ad4b727814adc5f325f096ed6c037cc89f00f0303a15
SHA512

22fdf4923b1be7ec23a4daabd40ff187c30ac0f021ade92f5151c854be2e91e32b4a9fbc70f977512de8816f014bb68b1f7b1b95c9068bde2f212ef27ac6b6a9
SSDEEP

1536:Nc20yRzpich0DAjBWSfnh3tb2ql3VHDyp8Q3nyv/amSVoe1fvA4JrdZ:NbzpiPAjgSfnhE2pDi8Qiv/iLRvA4JJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1424a2ff092ebaf726cdd804aaa6e040_NeikiAnalytics

Files

1424a2ff092ebaf726cdd804aaa6e040_NeikiAnalytics
.dll windows:4 windows x86 arch:x86

6bb36b930e1dba727dc7e4b2931053dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LocalSize
GlobalReAlloc
SetConsoleScreenBufferSize
lstrcmpiA
CreateEventA
FlushFileBuffers
GetEnvironmentStringsW
IsValidLocale
LCMapStringA
EnumUILanguagesW
GetTimeFormatW
GetFileAttributesA
FlushViewOfFile
CreateWaitableTimerA
RaiseException
OpenEventW
GetCPInfo
GetLogicalDriveStringsW
InterlockedExchangeAdd
SetFileAttributesA
ExitProcess
GetShortPathNameW
UpdateResourceA
lstrcmpA
LocalLock
ReadFileEx
GetStartupInfoA
GlobalGetAtomNameW
GetCurrentThread
GlobalGetAtomNameA
WinExec
FillConsoleOutputAttribute
SetWaitableTimer
OpenThread
DeleteCriticalSection
ReadConsoleInputW
GetVolumeInformationW
AssignProcessToJobObject
SetProcessWorkingSetSize
SetCurrentDirectoryW
GetQueuedCompletionStatus
SetHandleCount
FindFirstVolumeMountPointW
Sleep
TerminateThread
CopyFileExW
SetComputerNameExW
GetFullPathNameW
SetErrorMode
VirtualAllocEx
LCMapStringW
SwitchToThread
VerLanguageNameW
GetTempFileNameW
GlobalMemoryStatusEx
GlobalAlloc
GetProfileIntA
VirtualAlloc
IsBadCodePtr
GetProcessAffinityMask
FindVolumeClose
TerminateJobObject
CompareStringW
InterlockedCompareExchange
EscapeCommFunction
ExpandEnvironmentStringsW
GetWindowsDirectoryW
SetFilePointerEx
GetConsoleOutputCP
GetFileSize
GetDriveTypeA
CompareStringA
GetCurrentDirectoryA
FreeConsole
GetExitCodeThread
FileTimeToDosDateTime
UnlockFileEx
TerminateProcess
ExpandEnvironmentStringsA
ProcessIdToSessionId
GetStartupInfoW
PostQueuedCompletionStatus
CreateSemaphoreA
FindResourceA
OpenSemaphoreW
GetComputerNameW
SetVolumeMountPointW
LockResource
FindNextVolumeW
GetProfileSectionA
MoveFileExW
GetLogicalDriveStringsA
GetCurrentDirectoryW
GlobalFlags
FreeEnvironmentStringsW
SetCurrentDirectoryA
FormatMessageA
SleepEx
SetConsoleCursorPosition
GetModuleHandleExW
ReadConsoleA
GetExitCodeProcess
SetStdHandle
GetFileInformationByHandle
GetNumberFormatA
IsValidLanguageGroup
IsBadStringPtrW
FillConsoleOutputCharacterW
GetLongPathNameW
SetConsoleWindowInfo
GetDateFormatW
GetFileAttributesExA
LocalFree
EnumResourceNamesA
WaitForSingleObjectEx
RegisterWaitForSingleObjectEx
InitializeCriticalSection
FindResourceW
LoadResource
CreateToolhelp32Snapshot
GetDriveTypeW
FreeLibraryAndExitThread
CreateProcessA
CreateMutexA
GetModuleHandleA
VirtualProtect
lstrlenW
CreateDirectoryA
UnmapViewOfFile
GetLastError
HeapValidate
GetProcessHeap
MapViewOfFile
lstrcatW
CreateFileMappingA
lstrlenA
GetProcAddress
CopyFileA
MoveFileExA
VirtualQuery
LeaveCriticalSection
WaitForSingleObject
lstrcpyW
LoadLibraryA
GetModuleFileNameA
CreateRemoteThread

ole32

StgOpenStorage
OleCreateLinkToFile
RegisterDragDrop
CoQueryProxyBlanket
OleSave
OleQueryCreateFromData
StgIsStorageILockBytes
OleTranslateAccelerator
CoTaskMemRealloc
CoReleaseMarshalData
CreateFileMoniker
RevokeDragDrop
ReadFmtUserTypeStg
StgOpenStorageEx
BindMoniker
CoFreeUnusedLibrariesEx
CoImpersonateClient
CoGetInterfaceAndReleaseStream
CoDisableCallCancellation
OleQueryLinkFromData
OleLoadFromStream
PropVariantCopy
CoGetObjectContext
CoRevertToSelf
StgCreateDocfileOnILockBytes
CoFreeUnusedLibraries
CoUnmarshalInterface
OleCreateFromData
CreatePointerMoniker
CoSetProxyBlanket
CreateItemMoniker
CoUninitialize
CoTaskMemFree

user32

MessageBoxA
FreeDDElParam
GetTopWindow
CharLowerBuffW
CheckMenuRadioItem
SetMenuItemInfoA
CharUpperBuffW
LoadBitmapA
UnhookWindowsHook
EndDialog
WindowFromDC
NotifyWinEvent
GetMenuStringW
GetWindowThreadProcessId
FrameRect
LoadMenuW
MessageBoxIndirectA
SetActiveWindow
EnableMenuItem
IsRectEmpty
CreateCursor
ReleaseCapture
GetUserObjectInformationW
ToAscii
MonitorFromRect
MoveWindow
TranslateMessage
GetScrollPos
VkKeyScanA
SetMenuDefaultItem
SendInput
CreateDialogIndirectParamW
DrawEdge
GetMenuItemInfoW
ChildWindowFromPoint
GetCaretPos
CloseWindowStation
SetMenuItemBitmaps
SendMessageW
MapVirtualKeyW
EnumThreadWindows
SetWindowLongW
CreateAcceleratorTableA
ReuseDDElParam
GetScrollBarInfo
CallWindowProcW
GetClassLongW
CreateIconIndirect
IsCharAlphaA
DrawStateA
IsWindowEnabled
ChildWindowFromPointEx
InsertMenuA
CharUpperW
AdjustWindowRectEx
FindWindowA
GetThreadDesktop
GetPropA
CopyRect
GetWindowTextW
SetCursorPos
GetDlgCtrlID
FlashWindow
CreateAcceleratorTableW
MsgWaitForMultipleObjects
AppendMenuW
DeleteMenu
CloseDesktop
InsertMenuW
CharToOemBuffA
AttachThreadInput
CheckDlgButton
InvertRect
GetMenuItemCount
SetWindowTextA
GetWindowWord
LoadIconA
ScreenToClient
GetActiveWindow
TabbedTextOutA
DefDlgProcW
GetDoubleClickTime
GetKeyNameTextA
DestroyAcceleratorTable
IsZoomed
UnregisterHotKey
SetForegroundWindow
GetUpdateRgn
SendMessageA
GetDialogBaseUnits
GetWindow
MonitorFromWindow
DialogBoxParamW
DrawAnimatedRects
DefMDIChildProcA
GetWindowLongA
SetScrollRange
ChangeDisplaySettingsA
GetDlgItemInt
SystemParametersInfoW
GetComboBoxInfo
GetProcessWindowStation
LockWindowUpdate
SetWindowsHookExW
DestroyIcon
GetClassNameW
PostMessageA
GetMenuStringA
SystemParametersInfoA
GetMenuItemInfoA
DrawTextW
GetMessageExtraInfo
GetMessageTime
GetDlgItemTextW
DrawIcon
OemToCharA
FindWindowExW
CreateDialogIndirectParamA
SetDlgItemTextA
SendNotifyMessageA
LoadStringW
GetAsyncKeyState
DeferWindowPos
OpenDesktopW
TabbedTextOutW
SetRectEmpty
GetClassInfoExA
PostThreadMessageA
GetSystemMetrics
PtInRect
DispatchMessageW
GetShellWindow
EnumDisplaySettingsA
ModifyMenuW
FindWindowW
ClientToScreen
MapVirtualKeyA
ShowCaret
DispatchMessageA
UnhookWindowsHookEx
KillTimer
CallNextHookEx
SetTimer
CharLowerA

advapi32

GetUserNameA
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegisterEventSourceA
SetEntriesInAclA
ReadEventLogA
RegisterServiceCtrlHandlerA
MakeAbsoluteSD
QueryServiceConfigW
ReportEventW
RegLoadKeyA
QueryServiceLockStatusW
OpenServiceW
ImpersonateNamedPipeClient
RegOpenKeyW
SetEntriesInAclW
ReadEventLogW
EnumDependentServicesW
ImpersonateSelf
RegEnumKeyW
CreateProcessAsUserA
QueryServiceConfig2W
NotifyChangeEventLog
NotifyBootConfigStatus
RegEnumValueA
ControlService
RegSaveKeyExW
DeregisterEventSource
EnumDependentServicesA
RegDeleteKeyW
IsTokenRestricted
RegCreateKeyA
RegEnumValueW
RegQueryInfoKeyW
RegEnumKeyA
EnumServicesStatusA
RegSetValueA
OpenEventLogW
RegOpenKeyExW
MapGenericMask
RegSetValueExW
MakeSelfRelativeSD

shell32

ShellExecuteW
SHBrowseForFolderA
SHGetFileInfoA
CommandLineToArgvW
SHSetLocalizedName
SHGetSettings
SHGetSpecialFolderLocation
ShellExecuteExA
SHGetInstanceExplorer
SHAppBarMessage
SHChangeNotify
SHGetSpecialFolderPathW
SHGetDesktopFolder
SHGetPathFromIDListA
SHFormatDrive
SHGetFileInfoW
SHGetFolderPathA
SHFileOperationA

gdi32

GetObjectA
ExtEscape
SetGraphicsMode
StrokeAndFillPath
ResizePalette
EnumFontFamiliesA
ExtTextOutA
InvertRgn
GetClipRgn
GetKerningPairsA
RemoveFontResourceA
GetTextExtentPointW
GetRegionData
SetBkMode
ExtCreateRegion
GetTextFaceW
SetDCBrushColor
LineTo
GetCharWidth32W
SetTextCharacterExtra
GetCurrentPositionEx
CreateDIBSection
SetPixel
GetTextFaceA
PlayMetaFileRecord
TextOutW
GetCharWidthW
CreateDCW
GetTextExtentPoint32W
EnumFontFamiliesW
OffsetWindowOrgEx
CreateICW
CreateRectRgn
SetArcDirection
PatBlt
RemoveFontResourceW
EnumEnhMetaFile
SetBitmapDimensionEx
GetBitmapDimensionEx
UpdateColors
GetWindowOrgEx
GetSystemPaletteUse
GetGlyphOutlineW
ScaleWindowExtEx
GetCharABCWidthsA
GetSystemPaletteEntries
GetTextExtentExPointA
PaintRgn
GetPaletteEntries
SetBrushOrgEx
CreateDIBPatternBrushPt
PlayEnhMetaFile
SetBitmapBits
GetROP2
StartDocW
GetFontResourceInfoW
GetLayout
SetWindowExtEx
FillPath
SetViewportExtEx
CreateEnhMetaFileW
ExtTextOutW
IntersectClipRect
StretchBlt
GetViewportOrgEx

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6bb36b930e1dba727dc7e4b2931053dc

Headers

File Characteristics

Imports

kernel32

ole32

user32

advapi32

shell32

gdi32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 964B

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 964B

.reloc
Size: 4KB - Virtual size: 2KB