d48d467793a629b1fc6a7af1b3399e70_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

d48d467793a629b1fc6a7af1b3399e70_NeikiAnalytics
Size

2.1MB
MD5

d48d467793a629b1fc6a7af1b3399e70
SHA1

e3b1575dcbadeceaa2363f4d51c9b46f97ab23c4
SHA256

4c970f3fb267d0155c2dceb545ec4b0f52194ec773fa33cffd6295fb3bed4479
SHA512

eb142fc1ad9beecddac534f7e746489fc47a533a0d4ced9c448e0a7a8c54c7ac270a18fa565ed459d0f777131cefafd297b4d75a64b356133fc8602dab8019a2
SSDEEP

49152:l28rERtJFF4ogoe+9gdxK5f3FZISmvHm/BGzXLrM5:TrEbFZgoT9ge5fnISgm5uLrM5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d48d467793a629b1fc6a7af1b3399e70_NeikiAnalytics

Files

d48d467793a629b1fc6a7af1b3399e70_NeikiAnalytics
.dll windows:5 windows x86 arch:x86

e591abdc32e8d0f7c761e58baf8219dd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

ResizePalette
DeleteMetaFile

user32

InSendMessage
ChangeClipboardChain
DrawCaption
IsCharAlphaA
RegisterHotKey

kernel32

IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
WaitForSingleObjectEx
GetModuleHandleW
GetModuleFileNameA
GetUserDefaultLangID
LoadLibraryExW
SetUserGeoID
TlsFree
FindVolumeClose
GetCommConfig
EraseTape

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 102B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 396KB - Virtual size: 395KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 124KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 924KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Y
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CRT
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IaL-C6Z
Size: 540KB - Virtual size: 536KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

O|6pf
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e591abdc32e8d0f7c761e58baf8219dd

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 36KB - Virtual size: 32KB

.idata Size: 4KB - Virtual size: 102B

.rdata Size: 396KB - Virtual size: 395KB

.data Size: 124KB - Virtual size: 125KB

CODE Size: 924KB - Virtual size: 920KB

Y Size: 32KB - Virtual size: 29KB

CRT Size: 8KB - Virtual size: 4KB

IaL-C6Z Size: 540KB - Virtual size: 536KB

.CRT Size: 4KB - Virtual size: 4B

.rsrc Size: 4KB - Virtual size: 1KB

O|6pf Size: 64KB - Virtual size: 63KB

.text
Size: 36KB - Virtual size: 32KB

.idata
Size: 4KB - Virtual size: 102B

.rdata
Size: 396KB - Virtual size: 395KB

.data
Size: 124KB - Virtual size: 125KB

CODE
Size: 924KB - Virtual size: 920KB

Y
Size: 32KB - Virtual size: 29KB

CRT
Size: 8KB - Virtual size: 4KB

IaL-C6Z
Size: 540KB - Virtual size: 536KB

.CRT
Size: 4KB - Virtual size: 4B

.rsrc
Size: 4KB - Virtual size: 1KB

O|6pf
Size: 64KB - Virtual size: 63KB