51c667d26e8230b83674869ca284ddb0_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

51c667d26e8230b83674869ca284ddb0_NeikiAnalytics
Size

661KB
MD5

51c667d26e8230b83674869ca284ddb0
SHA1

b413670dd99931063fb017c4eeccc508eb8cfb52
SHA256

df72030f7a75ffcf20c418b7a14f556e75972eae3bfb172c76155ddddce8efbc
SHA512

854586895e4cf7f3f59b5cf77c7642c9fdefdd266ec763feef6cb3f6a0afe5b2809aa27cd30c88b130851d78c475f51a917a2f1d75f4750d565d437ae5ba5062
SSDEEP

12288:0YCdihe7w88l2sIznXWRkwk05FnAKsA5B7Zbmwfjz+hgTPMquHl6R5:3Sm08wsyGRv5Fd7ZbX/+gTPM2R5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51c667d26e8230b83674869ca284ddb0_NeikiAnalytics

Files

51c667d26e8230b83674869ca284ddb0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

8a9cdbc159f38a1807c0ad237feca2de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDBCSLeadByte
RaiseException
WriteFile
GetSystemTime
GetVersion
lstrcmpA
Sleep
CloseHandle
WaitForSingleObject
CreateProcessA
SetCurrentDirectoryA
GetCurrentDirectoryA
lstrcpynA
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
FindFirstFileA
LocalFree
SetFileTime
GetLastError
SystemTimeToFileTime
LocalAlloc
GetVolumeInformationA
SetFilePointer
CreateFileA
GetFileAttributesA
ExpandEnvironmentStringsA
GetVersionExA
GetModuleFileNameA
CreateDirectoryA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetStringTypeW
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
GetCommandLineA
GetSystemDirectoryA
GetTempPathA
GetWindowsDirectoryA
GetShortPathNameA
lstrlenA
lstrcatA
lstrcpyA
ReadFile
RtlUnwind
GetModuleHandleA
GetStartupInfoA

user32

CreateDialogParamA
DestroyWindow
CloseWindow
OpenIcon
GetWindowLongA
SetDlgItemTextA
SendDlgItemMessageA
SetWindowLongA
LoadIconA
SetWindowTextA
GetSystemMetrics
GetWindowRect
MoveWindow
DestroyIcon
BeginPaint
DrawIcon
EndPaint
WaitForInputIdle
EnumWindows
GetClassNameA
SendMessageA
PeekMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
wsprintfA
MessageBoxA
CharPrevA
CharNextA
LoadStringA
IsIconic

gdi32

SetMapMode
GetMapMode

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

comctl32

ord17

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a9cdbc159f38a1807c0ad237feca2de

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 10KB - Virtual size: 108KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 10KB - Virtual size: 108KB

.rsrc
Size: 3KB - Virtual size: 3KB