ccaac7b380bf7a3a9d02ee8e690b1900_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

ccaac7b380bf7a3a9d02ee8e690b1900_NeikiAnalytics
Size

283KB
MD5

ccaac7b380bf7a3a9d02ee8e690b1900
SHA1

a6310cb4eeb8f08975c6a059e2be07f0ba7c01f4
SHA256

7a683356fcdcdc2fc4dac69ea9624f5b2b117a46676e21faf7005dee75333402
SHA512

71db213e9624bef218546fbae3aa906807a83151fe2ded13b1d3ce2a484d50e43f1f2ebc5fec7808b9fa36088b3b58f5e7ff9d00a41b443b71fb7d9974d4ee50
SSDEEP

6144:Yi4ZiyIbvrJlM4tWSrv5McaVSWWggggggggggggoAIgggggggggggggz:HsiyIbvrJlMDSrvBJggggggggggggoAn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccaac7b380bf7a3a9d02ee8e690b1900_NeikiAnalytics

Files

ccaac7b380bf7a3a9d02ee8e690b1900_NeikiAnalytics
.dll windows:4 windows x86 arch:x86

08358ef9000f9ea9f63d9b4d7284f99f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetThreadLocale
GetProcAddress
GetModuleHandleA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
lstrcpynA
EnterCriticalSection
FormatMessageA

user32

SendMessageA
GetWindowRect
ScreenToClient
SetWindowPos
ShowWindow
GetDlgItem
GetWindowLongA
SetWindowLongA
SetDlgItemInt
CheckDlgButton
GetDlgItemTextA
IsDlgButtonChecked
SendDlgItemMessageA
InvalidateRect
GetParent
EnableWindow
GetDlgItemInt
RegisterWindowMessageA
RegisterClassA
GetFocus
BeginPaint
GetClientRect
FillRect
wsprintfA
DrawTextA
EndPaint
SetFocus
ReleaseCapture
GetAsyncKeyState
KillTimer
SetTimer
DestroyWindow
CreateDialogParamA
PostMessageA
GetCapture
SetCapture
LoadCursorA
SetCursor
GetCursorPos
UnregisterClassA
DefWindowProcA

gdi32

CreateFontIndirectA
DeleteObject
SelectObject
BitBlt
SetBkMode
SetTextColor
CreateFontA
Rectangle
GetStockObject
LineTo
MoveToEx
SetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
CreateSolidBrush
CreatePen
DeleteDC

msvcrt

memset
memcpy
_adjust_fdiv
_initterm
_onexit
__dllonexit
?terminate@@YAXXZ
_except_handler3
_snprintf
ceil
qsort
strstr
atoi
floor
??2@YAPAXI@Z
sprintf
memmove
??3@YAXPAX@Z
__CxxFrameHandler
realloc
malloc
free

Exports

Exports

main

Sections

.text
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08358ef9000f9ea9f63d9b4d7284f99f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 120KB - Virtual size: 120KB

.text1 Size: 2KB - Virtual size: 1KB

.rdata Size: 137KB - Virtual size: 137KB

.data Size: 3KB - Virtual size: 4KB

.data1 Size: 4KB - Virtual size: 3KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 120KB - Virtual size: 120KB

.text1
Size: 2KB - Virtual size: 1KB

.rdata
Size: 137KB - Virtual size: 137KB

.data
Size: 3KB - Virtual size: 4KB

.data1
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 12KB - Virtual size: 11KB