c283fa4e627dacfa4d6ca9cc3f096680_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

c283fa4e627dacfa4d6ca9cc3f096680_NeikiAnalytics
Size

44KB
MD5

c283fa4e627dacfa4d6ca9cc3f096680
SHA1

3834b06b1e26aec177ee3fcc9e7504d51c098f55
SHA256

c2c768da451670793378c56f4d14300a7d983107ee400f5b708ba90842444ce1
SHA512

60913d26d04de9762380bb6a4f0f0889efca4afdfe9518c338f24693609de8fa48a08b032687628d99ebdba7ddb32c44c6fa83b2e4e9525fd12c951b5085befa
SSDEEP

768:V1DEhtkmMuAYaIUiB3TOssDUFU/s5AOgEC+kR6kHl/O7Dy9xSoDXtCXtcZo/Hx:VhmUufaIrVOssDpcAbECVIk0UxSobA+2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c283fa4e627dacfa4d6ca9cc3f096680_NeikiAnalytics

Files

c283fa4e627dacfa4d6ca9cc3f096680_NeikiAnalytics
.dll windows:4 windows x86 arch:x86

7521c09dc684170747914df1e4615066

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

tcdll.tclock

HookStart
HookEnd
GetTClockVersion

winmm

mixerGetLineControlsA
mixerClose
mixerOpen
mixerGetDevCapsA
mciGetErrorStringA
waveOutReset
mmioOpenA
mmioDescend
mixerGetLineInfoA
mmioRead
waveOutOpen
mmioAscend
waveOutPrepareHeader
waveOutClose
waveOutWrite
waveOutUnprepareHeader
mciSendCommandA
mixerGetControlDetailsA
mixerSetControlDetails
mmioClose

kernel32

FreeLibrary
GetProcAddress
GetFileSize
ReadFile
GetLocalTime
GetVersionExA
LoadLibraryA
CreateThread
DisableThreadLibraryCalls
WaitForSingleObject
GetUserDefaultLangID
GetDriveTypeA
lstrcmpiA
HeapFree
HeapAlloc
GetProcessHeap
WriteProfileStringA
FindClose
FindFirstFileA
GetCurrentThreadId
CloseHandle
CreateFileA
GetModuleFileNameA
WideCharToMultiByte
WritePrivateProfileStringA
WritePrivateProfileSectionA
GetPrivateProfileStringA
MultiByteToWideChar
GetPrivateProfileIntA
IsValidCodePage
GetLocaleInfoW
GetLocaleInfoA
GetVersion
GetTickCount

user32

RegisterWindowMessageA
DefWindowProcA
ClientToScreen
GetDoubleClickTime
GetAsyncKeyState
PostQuitMessage
SetFocus
wsprintfA
MessageBoxA
CharNextA
FindWindowA
FindWindowExA
SendMessageA
IsWindow
AttachThreadInput
GetWindowThreadProcessId
GetForegroundWindow
SetForegroundWindow
MoveWindow
GetSystemMetrics
GetWindowRect
GetSysColorBrush
GetDlgItem
GetWindowLongA
SetWindowLongA
SendDlgItemMessageA
CreateDialogParamA
SetCursor
DestroyWindow
GetDlgItemTextA
GetDlgCtrlID
LoadCursorA
CallWindowProcA
PostMessageA
KillTimer
SetTimer
GetDesktopWindow
MapVirtualKeyA
EnumWindows
IsZoomed
keybd_event
GetMessagePos
IsWindowVisible
LoadIconA
GetMessageA
RegisterClassA
DispatchMessageA
ShowWindow
CreateWindowExA
UnregisterClassA
IsDialogMessageA
GetClientRect
TrackPopupMenu
DestroyMenu
AppendMenuA
CreatePopupMenu
EnableMenuItem

gdi32

SetTextColor
DeleteObject
CreateFontIndirectA
SetBkMode
GetObjectA

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA
RegCloseKey
RegSetValueExA

shell32

DragFinish
SHFileOperationA
SHAddToRecentDocs
ShellExecuteA
ShellExecuteExA
DragQueryFileA

Exports

Exports

TTBEvent_FreePluginInfo
TTBEvent_Init
TTBEvent_InitPluginInfo
TTBEvent_Unload

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7521c09dc684170747914df1e4615066

Headers

DLL Characteristics

File Characteristics

Imports

version

tcdll.tclock

winmm

kernel32

user32

gdi32

advapi32

shell32

Exports

Exports

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 3KB - Virtual size: 3KB