cbd8e1b6f4f6c89eed832dcd739e6260_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

cbd8e1b6f4f6c89eed832dcd739e6260_NeikiAnalytics
Size

214KB
MD5

cbd8e1b6f4f6c89eed832dcd739e6260
SHA1

0a0163401f3154091ba68702fdbb90267cfcd945
SHA256

57344401d494bc9edbc02a57e70ad317682f83cad09ba79684a8db2033e1e529
SHA512

0d2b028c3bf381a8171f31b92170d59166976c75e6497d937e581e0c6ad6c686a4c57cf172ec36f65dc6089ab84e431fbbafd4f8c489b6a945fbf2cc7918d381
SSDEEP

6144:x/zHfGsMQN0TsFzePngwaph0vJgH6NfNHfz:xLGuXzeZ+myO1z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cbd8e1b6f4f6c89eed832dcd739e6260_NeikiAnalytics

Files

cbd8e1b6f4f6c89eed832dcd739e6260_NeikiAnalytics
.exe windows:5 windows x86 arch:x86

f0d4e1aedd2cc937555dc77d567a6507

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LockResource
MulDiv
MultiByteToWideChar
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
RaiseException
SetCurrentDirectoryW
SetLastError
SetProcessWorkingSetSize
InterlockedDecrement
SizeofResource
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualFree
VirtualProtect
VirtualQuery
WriteFile
lstrcmpW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW
InitializeCriticalSection
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalFree
GlobalAlloc
GetWindowsDirectoryW
GetVersionExW
GetVersionExA
GetVersion
GetUserDefaultUILanguage
GetSystemTimeAsFileTime
GetSystemInfo
GetSystemDirectoryW
GetStartupInfoW
GetProcessHeap
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetLongPathNameW
GetLocaleInfoW
GetLastError
GetFullPathNameW
GetFileTime
GetFileSize
GetFileAttributesW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetCommandLineW
GetAtomNameW
FreeLibrary
FormatMessageW
FlushInstructionCache
FindResourceW
FindNextFileW
FindFirstFileW
FindClose
FindAtomW
ExpandEnvironmentStringsW
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
DeleteAtom
CreateProcessW
CreateFileW
CreateDirectoryW
CompareStringW
CloseHandle
AddAtomW
VirtualAlloc
GetTickCount
lstrcatA
ReadFile
GetSystemDirectoryA
CreateFileA
SetUnhandledExceptionFilter

user32

GetMenuItemInfoW
GetMenuState
GetMenuStringW
GetMessagePos
GetMessageTime
GetMonitorInfoW
GetNextDlgTabItem
GetParent
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindow
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
GrayStringW
InflateRect
InsertMenuW
IntersectRect
InvalidateRect
InvalidateRgn
IsChild
IsIconic
IsMenu
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsW
LoadCursorW
LoadImageW
LoadMenuW
LoadStringW
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
MonitorFromPoint
MoveWindow
NotifyWinEvent
OffsetRect
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassExW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
ScreenToClient
SendMessageA
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClipboardViewer
SetCursor
SetFocus
SetForegroundWindow
SetMenu
SetMenuDefaultItem
SetMenuItemInfoW
SetParent
SetRect
SetRectEmpty
SetTimer
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextW
SetWindowsHookExW
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutW
TrackPopupMenuEx
TranslateAcceleratorW
UnhookWindowsHookEx
UnionRect
UpdateWindow
WinHelpW
wsprintfW
GetMenuItemID
GetMenuItemCount
GetMenu
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetCapture
FindWindowExW
FillRect
EqualRect
EnumThreadWindows
EnumChildWindows
EndPaint
EndDeferWindowPos
EnableWindow
EnableMenuItem
DrawTextW
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DestroyWindow
DestroyMenu
DestroyIcon
DestroyAcceleratorTable
DeleteMenu
DeferWindowPos
DefWindowProcW
DefWindowProcA
CreateWindowExW
CreatePopupMenu
CreateIconIndirect
CreateAcceleratorTableW
CopyRect
CopyImage
CopyIcon
ClientToScreen
ChildWindowFromPointEx
CharUpperW
CharNextW
CharLowerW
ChangeClipboardChain
CallWindowProcW
CallNextHookEx
BringWindowToTop
BeginPaint
BeginDeferWindowPos
AppendMenuW
AdjustWindowRectEx
LoadIconW
LoadCursorA
LoadIconA
GetKeyState

gdi32

ExtTextOutA
ExtTextOutW
FillRgn
GetBrushOrgEx
GetDIBits
GetDeviceCaps
GetLayout
GetObjectA
GetObjectW
GetPixel
GetStockObject
GetTextExtentPoint32W
GetTextMetricsW
LPtoDP
OffsetRgn
PatBlt
Escape
PtInRegion
PtVisible
RealizePalette
RectVisible
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetLayout
SetStretchBltMode
SetTextAlign
SetTextColor
StretchBlt
StretchDIBits
TextOutW
DeleteObject
DeleteEnhMetaFile
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePolygonRgn
CreatePatternBrush
CreateHalftonePalette
CreateFontIndirectW
CreateDIBSection
CreateDIBPatternBrushPt
CreateCompatibleDC
CreateCompatibleBitmap
PlayEnhMetaFile
BitBlt

advapi32

TraceEvent
RegisterTraceGuidsW
RegSetValueExW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegCloseKey
GetTraceLoggerHandle
GetTraceEnableLevel
GetTraceEnableFlags
RegOpenKeyA
UnregisterTraceGuids

msvcrt

_CxxThrowException
_XcptFilter
__CxxFrameHandler
__RTDynamicCast
__argc
__dllonexit
__p__commode
__p__fmode
__set_app_type
__setusermatherr
__wargv
__wgetmainargs
_adjust_fdiv
_c_exit
_callnewh
_cexit
_controlfp
_except_handler3
_exit
_initterm
_iob
_itow
_ltow
_mbslen
_mbsnbcnt
_onexit
_purecall
_snwprintf
_ultow
_vsnwprintf
_wcmdln
_wcsicmp
_wcsnicmp
_wtoi
atoi
exit
free
fwrite
iswspace
malloc
memmove
qsort
realloc
strtol
swprintf
swscanf
wcschr
wcscmp
wcscpy
wcslen
wcsncmp
wcsncpy
wcsrchr
wcsstr
wcstol
wcstoul

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 183KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.htext
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f0d4e1aedd2cc937555dc77d567a6507

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

Sections

.text Size: 24KB - Virtual size: 24KB

.data Size: 183KB - Virtual size: 182KB

.rsrc Size: 1024B - Virtual size: 144KB

.htext Size: 4KB - Virtual size: 4KB

.text
Size: 24KB - Virtual size: 24KB

.data
Size: 183KB - Virtual size: 182KB

.rsrc
Size: 1024B - Virtual size: 144KB

.htext
Size: 4KB - Virtual size: 4KB