ca6848a764816fc67ec863e1018ad650_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

ca6848a764816fc67ec863e1018ad650_NeikiAnalytics
Size

3.5MB
MD5

ca6848a764816fc67ec863e1018ad650
SHA1

c3a97cb8394fa95400d8604dc1172ee3922cc8f7
SHA256

99dc821a768e9215c19c400e952e5ce599f307f878bf925f835a8a7ccf87f989
SHA512

377c059793a1f4d4fd04823b1bec8eb9c0d5e4c0067370467667c0b04da29407a8ca210ba037e072d77338fa5d71266e0c300b7341b4a58d03422448de15106b
SSDEEP

49152:w/T8PSU0F074Z3iLfdIO2f4wNGKMAT17DIK074U6Q+/3/i5n:w/T8PqF07AMC4Orp7DIK074U6pa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ca6848a764816fc67ec863e1018ad650_NeikiAnalytics

Files

ca6848a764816fc67ec863e1018ad650_NeikiAnalytics
.exe windows:5 windows x86 arch:x86

b08c9907596ead38d09eee90d39a399c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\Project\Git\Snes9x\win32\Win32\Release Unicode\snes9x.pdb

Imports

libpng16

png_read_update_info
png_set_sig_bytes
png_get_tRNS
png_destroy_read_struct
png_create_read_struct
png_get_PLTE
png_create_info_struct
png_get_rowbytes
png_destroy_write_struct
png_set_shift
png_set_longjmp_fn
png_create_write_struct
png_write_info
png_write_row
png_set_sBIT
png_sig_cmp
png_read_info
png_set_strip_16
png_set_packing
png_init_io
png_get_IHDR
png_read_row
png_get_color_type
png_get_image_height
png_get_rows
png_get_image_width
png_read_png
png_write_end
png_set_IHDR

comctl32

InitCommonControlsEx
ImageList_Add
ImageList_Create

winmm

joyGetDevCapsW
timeGetTime
timeKillEvent
timeSetEvent
joyGetPosEx
timeGetDevCaps
timeEndPeriod
timeBeginPeriod

opengl32

glTexSubImage2D
wglDeleteContext
glFlush
glOrtho
glViewport
glEnableClientState
glClear
glBindTexture
glLoadIdentity
wglCreateContext
glMatrixMode
glEnable
glVertexPointer
glGetString
wglMakeCurrent
glPixelStorei
glGenTextures
wglGetProcAddress
glTexParameteri
glDeleteTextures
glTexCoordPointer
glClearColor
glDrawArrays
glTexImage2D

wsock32

ioctlsocket
gethostname
WSAGetLastError
htons
recv
connect
socket
send
accept
WSAStartup
select
gethostbyname
closesocket
__WSAFDIsSet
setsockopt
htonl
inet_addr
gethostbyaddr
listen
bind

ddraw

DirectDrawCreate

dsound

ord1

avifil32

AVISaveOptions
AVIMakeCompressedStream
AVIFileCreateStreamW
AVIFileRelease
AVIFileInit
AVIFileExit
AVIStreamWrite
AVIFileOpenW
AVIStreamRelease
AVIStreamSetFormat

zlib1

ord14
ord57
ord50
ord55
ord47
ord49
ord37
ord43
ord38
ord33
ord45
ord31
ord39

shlwapi

PathFindExtensionW
PathFindFileNameW

kernel32

GetStdHandle
GetModuleFileNameA
HeapFree
HeapReAlloc
HeapAlloc
DeleteFileW
DecodePointer
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
GetProcessHeap
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
SetEndOfFile
SetFilePointerEx
FlushFileBuffers
SetStdHandle
ReadConsoleW
GetTimeZoneInformation
IsValidLocale
GetConsoleMode
GetUserDefaultLCID
MultiByteToWideChar
GetDriveTypeW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
CreateDirectoryW
GetFileAttributesExW
GetFullPathNameW
ExitProcess
GetTempPathW
GetModuleHandleExW
FreeLibraryAndExitThread
ResumeThread
ExitThread
LoadLibraryExW
RtlUnwind
RaiseException
InitializeSListHead
GetCurrentThreadId
EnumSystemLocalesW
GetConsoleCP
GetACP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
HeapSize
VirtualProtect
VirtualQuery
LoadLibraryExA
GetCurrentProcessId
GetStartupInfoW
IsDebuggerPresent
WaitForSingleObjectEx
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetStringTypeW
GetLocaleInfoW
LCMapStringW
CompareStringW
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
lstrcmpW
QueryPerformanceCounter
GetCurrentDirectoryW
ReleaseSemaphore
WaitForSingleObject
CreateEventW
Sleep
ResetEvent
CreateSemaphoreW
ReadFile
WriteFile
CreateFileW
GetLastError
CloseHandle
lstrcpynW
lstrcpyW
SetCurrentDirectoryW
lstrlenW
lstrcmpiW
GetTickCount
EnterCriticalSection
LeaveCriticalSection
SetEvent
LoadLibraryW
GetProcAddress
FreeLibrary
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetModuleHandleW
WaitForMultipleObjects
GetSystemInfo
CreateThread
CreateMutexW
ReleaseMutex
CopyFileA
MoveFileExA
CreateFileA
LocalFree
GetModuleFileNameW
InitializeCriticalSection
DeleteCriticalSection
GetFileSize
GetLogicalDrives
FindFirstFileW
GetCommandLineW
FindNextFileW
SetErrorMode
FindClose
SetFileAttributesW
lstrcatW
QueryPerformanceFrequency
EncodePointer

user32

GetKeyState
DrawMenuBar
SetMenu
SetWindowPlacement
GetMonitorInfoW
GetWindowPlacement
MonitorFromWindow
SetWindowPos
GetMenu
EnableWindow
GetCursorPos
SetCursorPos
LoadImageW
DialogBoxParamW
GetParent
PostQuitMessage
CheckDlgButton
GetDlgItem
RemoveMenu
wsprintfW
SetCursor
SendMessageA
SetDlgItemTextA
SendDlgItemMessageA
LoadIconW
TranslateMessage
DestroyCursor
TranslateAcceleratorW
IsDlgButtonChecked
SendDlgItemMessageW
GetDlgItemTextW
ValidateRect
MapWindowPoints
SetDlgItemTextW
PeekMessageW
SetMenuItemInfoW
GetDlgCtrlID
RedrawWindow
DispatchMessageW
GetDlgItemTextA
ShowWindow
GetActiveWindow
GetSubMenu
LoadAcceleratorsW
UnregisterClassW
EndDialog
ScreenToClient
GetMenuItemCount
SetActiveWindow
GetCaretPos
DestroyWindow
InsertMenuItemW
GetWindowRect
CallWindowProcW
LoadMenuW
AdjustWindowRectEx
GetMenuItemInfoW
CreateDialogParamW
GetMessageW
DestroyAcceleratorTable
GetSystemMetrics
GetWindowLongW
DefWindowProcW
CreateWindowExW
SendMessageW
SetWindowTextW
RegisterClassExW
GetAsyncKeyState
SetTimer
GetSysColor
IsWindowEnabled
SetFocus
LoadCursorW
SetWindowLongW
GetSysColorBrush
UpdateWindow
InvalidateRect
BeginPaint
EndPaint
GetWindowTextW
GetForegroundWindow
GetDC
ChangeDisplaySettingsW
EnumDisplayDevicesW
EnumDisplaySettingsW
ReleaseDC
OffsetRect
ClientToScreen
GetClientRect
MessageBoxW
MessageBoxA
PostMessageW

gdi32

SetPixelFormat
ChoosePixelFormat
ExtTextOutW
SetBkColor
SetTextColor
GetTextExtentPoint32W
GetStockObject
SelectObject
DeleteObject
SwapBuffers

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegCreateKeyExW
RegCloseKey
RegSetValueExW

shell32

CommandLineToArgvW
SHGetMalloc
DragAcceptFiles
DragFinish
SHBrowseForFolderW
SHGetPathFromIDListW
DragQueryFileW

ole32

CoInitializeEx
CoUninitialize
CoCreateInstance

oleaut32

SysFreeString
SysAllocString

d3d9

Direct3DCreate9

d3dx9_43

D3DXMatrixTranspose
D3DXCreateTextureFromFileExW
D3DXCreateTextureFromFileW
D3DXMatrixOrthoOffCenterLH
D3DXCreateEffect
D3DXMatrixMultiply

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 231KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 290KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b08c9907596ead38d09eee90d39a399c

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

libpng16

comctl32

winmm

opengl32

wsock32

ddraw

dsound

avifil32

zlib1

shlwapi

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

d3d9

d3dx9_43

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.rdata Size: 231KB - Virtual size: 230KB

.data Size: 68KB - Virtual size: 2.6MB

.gfids Size: 1024B - Virtual size: 520B

.tls Size: 512B - Virtual size: 9B

_RDATA Size: 2KB - Virtual size: 2KB

.rsrc Size: 73KB - Virtual size: 72KB

.reloc Size: 290KB - Virtual size: 289KB

.text
Size: 2.8MB - Virtual size: 2.8MB

.rdata
Size: 231KB - Virtual size: 230KB

.data
Size: 68KB - Virtual size: 2.6MB

.gfids
Size: 1024B - Virtual size: 520B

.tls
Size: 512B - Virtual size: 9B

_RDATA
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 73KB - Virtual size: 72KB

.reloc
Size: 290KB - Virtual size: 289KB