8ef1ec5b267416644bfc0ed04a4fb3f0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

8ef1ec5b267416644bfc0ed04a4fb3f0_NeikiAnalytics
Size

180KB
MD5

8ef1ec5b267416644bfc0ed04a4fb3f0
SHA1

995bee9c34e51c9e45a498001c3fda888cb67175
SHA256

a5385e8aeab22cd527ca322d9f9983c1954d09e3d5f1e6037c993840ebc86fc1
SHA512

fa34e62dab967664d3e97915474818fdb99e181772429622c32feb5f2f4a57f40413497855e79228453a75074f29d1ceffea533670c000a94bd5443bca577384
SSDEEP

3072:3CJUUXstlE/W8R+ekcdOchAp26jVZVeojr8kHlCH1T8:cqleccMFdrlCH1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ef1ec5b267416644bfc0ed04a4fb3f0_NeikiAnalytics

Files

8ef1ec5b267416644bfc0ed04a4fb3f0_NeikiAnalytics
.dll regsvr32 windows:4 windows x86 arch:x86

9c41fa20287662e06df25e62aea37692

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateSemaphoreA
TerminateThread
ReleaseSemaphore
LeaveCriticalSection
ResumeThread
GetTickCount
DeleteCriticalSection
WaitForSingleObject
InitializeCriticalSection
EnterCriticalSection
OpenMutexA
WaitForMultipleObjects
FreeLibrary
SetFilePointer
CreateFileA
WriteFile
GetModuleHandleA
FormatMessageA
GetExitCodeThread
WideCharToMultiByte
CloseHandle
CreateMutexA
GlobalFree
OutputDebugStringA
MultiByteToWideChar
GetProcAddress
LoadLibraryA
CreateThread
GetEnvironmentVariableA
CompareStringW
GetModuleFileNameA
FlushFileBuffers
CompareStringA
GetStringTypeW
GetStringTypeA
InterlockedExchange
SetEnvironmentVariableA
GlobalUnlock
GlobalLock
GlobalAlloc
RtlUnwind
HeapAlloc
HeapFree
GetFileType
ReadFile
GetFileAttributesA
GetLastError
GetCurrentThreadId
TlsSetValue
TlsGetValue
ExitThread
InterlockedDecrement
InterlockedIncrement
RaiseException
GetCommandLineA
GetVersion
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
HeapReAlloc
HeapSize
GetTimeZoneInformation
GetSystemTimeAsFileTime
TlsAlloc
TlsFree
SetLastError
SetEndOfFile
GetStartupInfoA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
ExitProcess
TerminateProcess
GetCurrentProcess
SetStdHandle
SetHandleCount
GetStdHandle
GetEnvironmentStringsW
UnhandledExceptionFilter
Sleep
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr

user32

LoadStringA
DefWindowProcA
CreateWindowExA
TranslateMessage
RegisterClassA
DispatchMessageA
DestroyWindow
PeekMessageA
UnregisterClassA
wsprintfA
MsgWaitForMultipleObjects
MessageBoxA
IsWindow
SetForegroundWindow

advapi32

RegDeleteValueA
RegOpenKeyExA
RegCloseKey
RegOpenKeyA
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyA

Exports

Exports

DllAutodetectScanner
DllCanUnloadNow
DllGetClassObject
DllGetDriverCLSID
DllGetDriverInfo
DllIsScannerSupported
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SharedS
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c41fa20287662e06df25e62aea37692

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 120KB - Virtual size: 117KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 28KB - Virtual size: 33KB

.SharedS Size: 4KB - Virtual size: 4B

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 120KB - Virtual size: 117KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 28KB - Virtual size: 33KB

.SharedS
Size: 4KB - Virtual size: 4B

.reloc
Size: 12KB - Virtual size: 9KB