d15587326ad19a73e525fe09d66354e0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

d15587326ad19a73e525fe09d66354e0_NeikiAnalytics
Size

4.6MB
MD5

d15587326ad19a73e525fe09d66354e0
SHA1

bf6501fd15215c4af600bc724ca896e57bcde93f
SHA256

d037fc980d06f5c5326baece2ecad3ebb741c8c6128e1b9fc6fa90a5ad93b254
SHA512

ef83ae4fd8a67828b3734c9b7080b683b8bbef8e3f5b539a30f2e995d48ebf9517271b2c810046d6d1749184d036e1818a25907a1a17eda9098f7c4f2ccd855f
SSDEEP

98304:kH/+PNVdnErEVQ0CRqlDwJ+cahZZizUsk87orMj:ky/n6EVhlD4ahZkEM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d15587326ad19a73e525fe09d66354e0_NeikiAnalytics

Files

d15587326ad19a73e525fe09d66354e0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

56330809dc76efaf455a6dcab75d8de1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

avifil32

AVIFileExit
AVIFileRelease
AVIStreamRelease
AVIStreamWrite
AVISaveOptions
AVISaveOptionsFree
AVIMakeCompressedStream
AVIStreamSetFormat
AVIFileCreateStreamA
AVIFileInit
AVIFileOpenA

msvfw32

MCIWndCreateA
ord2

mpgenclib

?MPEGENClibSetCallback@@YAXP6GHHHH@Z@Z
?MPEGENClibStart@@YAHPADHHHNHHH@Z
?MPEGENClibAbort@@YAXXZ
?MPEGENClibSetBuffer@@YAXPAE@Z

winmm

PlaySoundA

libmcl-4.2.1

MclVideoShowCodecDlg
MclSourceFinished
MclVideoSetFileName
MclVideoSetFormat
MclVideoSetFileFormat
MclVideoSetFrameRate
MclFree
MclRegister
MclCreate
MclVideoSetAspectRatio
MclSourceSetPixels
MclGetError
MclConvert
MclVideoSetBitRate
MclVideoSetQuality
MclVideoSetKeepDuration
MclVideoSetCodec
MclAssignError
MclAssignProgress
MclAssignAudioFunc
MclAssignAudioSource
MclAssignVideoFunc
MclAssignVideoSource
MclEnableMPEG2

mview

?MPEGDisplayFlag@@YAHH@Z
?MPEGViewOpenVideoFile@@YAHPADH@Z
?MPEGViewRedrawFrame@@YAXXZ
?MPEGViewIninitialize@@YAXXZ
?MPEGViewSetWindowSize@@YAXHH@Z
?MPEGViewSetWindow@@YAXPAUHWND__@@@Z
?MPEGViewSetTrack@@YAXPAUHWND__@@@Z
?MPEGViewSetMessageWindow@@YAXPAUHWND__@@@Z
?MPEGViewSetDisplayTimecode@@YAXH@Z
?MPEGViewScenePos@@YA_JXZ
?MPEGViewGetFileSize@@YANXZ
?MPEGViewStop@@YAXXZ
?MPEGViewGetTimecodeGOP@@YAHXZ
?MPEGViewScroll@@YAXH@Z
?MPEGGetPictureWidth@@YAHXZ
?MPEGViewGetAspectRatio@@YAHXZ
?MPEGViewNextScene@@YAXN@Z
?MPEGViewGetFilePosition@@YANXZ
?MPEGViewLStep@@YAXXZ
?MPEGViewRStep@@YAXXZ
?MPEGViewPlayI@@YAXXZ
?MPEGViewStartSceneDetection@@YAXNH@Z
?MPEGViewPaint@@YAXXZ
?MPEGViewCleanUp@@YAXXZ
?MPEGViewPlay@@YAXXZ
?MPEGViewLocateFrame01@@YAHM@Z
?MPEGGetPictureHeight@@YAHXZ
?MPEGViewOpenAndLocateFrame@@YAHPADM@Z
?MPEGViewSetCallback@@YAXP6AHPAEHH_J@Z@Z
?MPEGViewGetFrameRGB24@@YAPAEXZ
?MPEGViewGetFrameInGop@@YAHXZ

kernel32

GlobalFlags
SizeofResource
GetCPInfo
GetOEMCP
lstrlenW
RtlUnwind
RaiseException
GetACP
GetTimeZoneInformation
GetSystemTime
SetErrorMode
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapReAlloc
SetStdHandle
HeapSize
SetHandleCount
GetStdHandle
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalReAlloc
GlobalHandle
FileTimeToSystemTime
GetProcessVersion
GetDiskFreeSpaceA
GetTempFileNameA
FindNextFileA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
lstrcmpA
MulDiv
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
MoveFileA
UnlockFile
LockFile
DuplicateHandle
SetLastError
InterlockedIncrement
HeapFree
GetProcessHeap
HeapAlloc
FlushFileBuffers
GetFileType
GlobalSize
FindResourceA
LoadResource
LockResource
TlsFree
TlsAlloc
InitializeCriticalSection
GlobalReAlloc
IsBadReadPtr
DeleteCriticalSection
TlsGetValue
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
CopyFileA
MultiByteToWideChar
WideCharToMultiByte
GetProfileIntA
CreateDirectoryA
SetEndOfFile
WriteFile
GetCurrentThread
IsBadWritePtr
VirtualQuery
GetCurrentProcess
SetFilePointer
SetUnhandledExceptionFilter
WaitForSingleObject
ReleaseMutex
CreateMutexA
ExitProcess
GetVolumeInformationA
lstrcatA
WinExec
lstrcpyA
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
GetDriveTypeA
GlobalMemoryStatus
GetCurrentDirectoryA
lstrlenA
Sleep
GetWindowsDirectoryA
GetModuleHandleA
lstrcpynA
GetFileAttributesA
GetTempPathA
OutputDebugStringA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CreateFileA
CloseHandle
ReadFile
GetFileSize
GetTickCount
FindFirstFileA
FindClose
GetDiskFreeSpaceExA
CreateProcessA
SetFileAttributesA
DeleteFileA
GetLastError
FormatMessageA
InterlockedDecrement
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
LoadLibraryA
GetProcAddress
FreeLibrary
GetModuleFileNameA
LocalAlloc
LocalLock
LocalUnlock
LocalFree
PeekNamedPipe
GetFileInformationByHandle
FindResourceExA
GetProfileStringA
GetLocalTime

user32

GetDCEx
LockWindowUpdate
FindWindowA
SetParent
GetSystemMenu
PostThreadMessageA
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
InvertRect
UnpackDDElParam
ReuseDDElParam
SetMenu
TranslateAcceleratorA
LoadAcceleratorsA
GetWindowDC
MoveWindow
IsDialogMessageA
SetDlgItemTextA
MapWindowPoints
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
GetTopWindow
IsChild
WinHelpA
GetClassInfoA
RegisterClassA
GetMenuItemID
SetWindowPlacement
GetWindowTextLengthA
GetDlgCtrlID
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetForegroundWindow
SetWindowPos
RegisterWindowMessageA
IsIconic
GetWindowPlacement
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
CharUpperA
DrawTextExW
GetIconInfo
SetWindowRgn
DrawIconEx
GetFocus
DrawTextExA
ClipCursor
GetMessageA
GetScrollPos
TrackPopupMenu
GetSysColorBrush
SetWindowTextA
ShowWindow
CreateWindowExA
SetWindowLongA
GetDlgItem
EndDialog
SetFocus
wvsprintfA
BeginPaint
EndPaint
LoadIconA
CopyIcon
SetScrollRange
SetScrollPos
EnableScrollBar
WindowFromPoint
ShowScrollBar
GetMenu
DestroyMenu
EqualRect
RedrawWindow
SetForegroundWindow
IsClipboardFormatAvailable
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
wsprintfA
InsertMenuA
MessageBeep
RegisterClipboardFormatA
UpdateWindow
IntersectRect
FillRect
IsRectEmpty
LoadMenuA
ClientToScreen
DrawFocusRect
UnionRect
GetKeyState
ScreenToClient
DrawFrameControl
SetRectEmpty
GetWindowTextA
DestroyIcon
LoadImageA
WaitForInputIdle
EnumWindows
GetWindowThreadProcessId
GetSysColor
DrawEdge
GetMessagePos
GetCapture
SystemParametersInfoA
CopyRect
GetCursorPos
SetCursor
PtInRect
DestroyCursor
LoadCursorA
GetSystemMetrics
UnregisterClassA
CreateMenu
GetAsyncKeyState
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
CreateAcceleratorTableA
DestroyAcceleratorTable
CreateIconIndirect
DragDetect
IsWindowVisible
GetWindow
IsZoomed
GetDesktopWindow
GrayStringA
DrawTextA
TabbedTextOutA
SetCapture
ReleaseCapture
PostMessageA
IsWindow
PeekMessageA
TranslateMessage
DispatchMessageA
SetRect
MessageBoxA
LoadStringA
GetClassNameA
GetTabbedTextExtentA
DeleteMenu
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
ValidateRect
SetCursorPos
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
InflateRect
OffsetRect
GetMenuItemCount
GetMenuStringA
GetSubMenu
RemoveMenu
AppendMenuA
GetDC
GetClientRect
ReleaseDC
CreatePopupMenu
GetParent
GetWindowRect
LoadBitmapA
EnableWindow
KillTimer
InvalidateRect
SetTimer
SendMessageA
SetMenuDefaultItem
CloseWindow
keybd_event
InsertMenuItemA
SetMenuItemInfoA
TrackPopupMenuEx
GetMenuItemInfoA
IsMenu
DrawStateA
GetCursor
DefFrameProcA
BringWindowToTop
SendDlgItemMessageA

gdi32

Rectangle
PatBlt
CreatePatternBrush
CreateBitmap
CreateSolidBrush
Pie
CreateHatchBrush
StretchDIBits
SetPixel
DPtoLP
SetDIBitsToDevice
GetTextMetricsA
SetPixelV
FillRgn
CreateEllipticRgnIndirect
StrokeAndFillPath
RestoreDC
StrokePath
SaveDC
SetBkMode
RealizePalette
GetTextExtentPoint32A
GetStockObject
SetTextColor
SetBkColor
FrameRgn
CombineRgn
CreateRectRgn
CreatePolygonRgn
CreateRoundRectRgn
GetSystemPaletteEntries
SelectPalette
CreateDIBSection
GdiFlush
SetMapMode
GetMapMode
DeleteEnhMetaFile
GetEnhMetaFileHeader
CreatePalette
CloseEnhMetaFile
SetViewportExtEx
SetWindowExtEx
CreateEnhMetaFileA
GetWinMetaFileBits
GetClipBox
CreateRectRgnIndirect
StartDocA
SetPolyFillMode
SetROP2
SetViewportOrgEx
OffsetViewportOrgEx
ScaleViewportExtEx
SetWindowOrgEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
GetViewportExtEx
GetWindowExtEx
SetRectRgn
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
GetCharWidthA
LPtoDP
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
CopyMetaFileA
GetDeviceCaps
GetPixel
CreateDCA
BeginPath
CloseFigure
EndPath
FillPath
Ellipse
CreateDIBitmap
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
Polygon
CreateCompatibleBitmap
SetStretchBltMode
StretchBlt
GetDIBits
CreateFontA
SetGraphicsMode
GetGraphicsMode
EnumFontFamiliesExA
FloodFill
GetTextExtentPointA
CreatePen
CreateFontIndirectA
DeleteObject
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetEnhMetaFileBits
GetObjectA

comdlg32

CommDlgExtendedError
FindTextA
ReplaceTextA
PrintDlgA
GetFileTitleA
ChooseFontA
GetOpenFileNameA
ChooseColorA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegQueryValueA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA

shell32

ExtractIconA
DragAcceptFiles
SHGetDesktopFolder
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetFileInfoA
DragFinish
DragQueryFileA
SHFileOperationA
ShellExecuteA

comctl32

ImageList_DragMove
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_SetBkColor
ImageList_Draw
ImageList_AddMasked
ImageList_GetIcon
ImageList_EndDrag
ImageList_DragLeave
InitCommonControlsEx
ImageList_ReplaceIcon
_TrackMouseEvent
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_GetImageCount
ord17
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_BeginDrag

oledlg

ord8

ole32

OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CLSIDFromProgID
CLSIDFromString
OleDuplicateData
CoTaskMemAlloc
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRevokeClassObject
CoGetClassObject
CoRegisterMessageFilter
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleGetClipboard
ReleaseStgMedium
CoTaskMemFree
CoLockObjectExternal
RegisterDragDrop
OleLockRunning
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CreateStreamOnHGlobal
RevokeDragDrop

olepro32

ord253

oleaut32

VariantCopy
VariantChangeType
SysAllocString
SysStringLen
SysAllocStringByteLen
SysFreeString
VariantTimeToSystemTime
VariantClear
SysAllocStringLen

Exports

Exports

_EXECryptor_GetDate@0

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 528KB - Virtual size: 528KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 216KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 968KB - Virtual size: 966KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56330809dc76efaf455a6dcab75d8de1

Headers

File Characteristics

Imports

avifil32

msvfw32

mpgenclib

winmm

libmcl-4.2.1

mview

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Exports

Exports

Sections

.text Size: 3.0MB - Virtual size: 3.0MB

.rdata Size: 528KB - Virtual size: 528KB

.data Size: 216KB - Virtual size: 320KB

.rsrc Size: 968KB - Virtual size: 966KB

.text
Size: 3.0MB - Virtual size: 3.0MB

.rdata
Size: 528KB - Virtual size: 528KB

.data
Size: 216KB - Virtual size: 320KB

.rsrc
Size: 968KB - Virtual size: 966KB