d86609174d132b966e6898da949db370_NeikiAnalytics

Sharing

Copy URL

Twitter E-mail

General

Target

d86609174d132b966e6898da949db370_NeikiAnalytics
Size

352KB
MD5

d86609174d132b966e6898da949db370
SHA1

27fb0d464a4bbd34486f7c6c1b4c1de63aeffa6a
SHA256

a633fabdf8613e4dfe7579492b83ac8b587423c7b944c6b6b28f221faba8deba
SHA512

e86614decfc5b6d3100b188ffc81b0fce58d24b8fb648d23d655f9a012d453f1aa67074a0e02abcd2e2eff19fb78dd2a8b6171fafd614e56f9b069c7a22ff1db
SSDEEP

3072:DFv5NhI5V4MAiTNzE0f3o46Y5VWDt79DdyBTO3svINdlrTi458x9RrVpq2ocU1PJ:DMkiTz44DWDHps68Efo9Rq7cAPgan/x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d86609174d132b966e6898da949db370_NeikiAnalytics

Files

d86609174d132b966e6898da949db370_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f62d9fe40291068e216c27c0cbca015e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
WriteFile
FlushFileBuffers
UnmapViewOfFile
SetFilePointer
SetEndOfFile
MapViewOfFile
CreateFileMappingW
SetErrorMode
TerminateProcess
FormatMessageW
GetEnvironmentVariableW
GetModuleFileNameW
GetModuleFileNameA
SetUnhandledExceptionFilter
GetThreadSelectorEntry
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCurrentProcessId
GetVersionExA
LocalAlloc
LockResource
SizeofResource
LoadResource
FindResourceExW
MulDiv
GetComputerNameW
GetCommandLineW
CreateEventW
DeleteFileW
SetEvent
ResetEvent
WaitForMultipleObjectsEx
GetVersionExW
QueryPerformanceCounter
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetVolumeInformationW
GetSystemTime
GetLocalTime
GetSystemDefaultLangID
GetUserDefaultLangID
lstrlenA
RtlUnwind
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
HeapReAlloc
RaiseException
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
MoveFileW
SetFileAttributesW
CreateDirectoryW
GetTempPathW
GetCurrentDirectoryW
ExpandEnvironmentStringsW
GetWindowsDirectoryW
FindFirstFileW
FindClose
GetFileSize
CreateFileW
LocalFree
GetProcAddress
FreeLibrary
LoadLibraryW
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
GetThreadLocale
GetStringTypeExW
MultiByteToWideChar
GetLastError
GetCurrentProcess
GetCurrentThreadId
GetTickCount
lstrlenW
TerminateThread
CreateThread
CloseHandle
GetAtomNameW
DeleteAtom
AddAtomW
Sleep

user32

DrawEdge
BeginPaint
MessageBoxIndirectW
GetDlgCtrlID
DrawFocusRect
DrawTextW
FillRect
ReleaseDC
GetDC
GetSysColorBrush
InvalidateRect
RegisterWindowMessageW
SetWindowRgn
LoadBitmapW
AdjustWindowRectEx
MsgWaitForMultipleObjects
DispatchMessageW
TranslateMessage
WindowFromPoint
MapDialogRect
GetForegroundWindow
BringWindowToTop
SetForegroundWindow
keybd_event
SetActiveWindow
SystemParametersInfoW
MessageBoxW
PeekMessageW
PostQuitMessage
GetParent
IsDlgButtonChecked
CheckDlgButton
EnableWindow
EndPaint
GetDlgItemTextW
SetDlgItemTextW
LoadCursorW
SetCursor
LoadIconW
GetWindowThreadProcessId
AttachThreadInput
SetWindowPos
ShowWindow
DestroyIcon
CallWindowProcW
SendMessageW
GetClientRect
PostMessageW
SetTimer
KillTimer
GetPropW
SetPropW
PtInRect
MapWindowPoints
GetKeyState
GetDoubleClickTime
GetWindowTextW
GetCapture
ReleaseCapture
DestroyWindow
InflateRect
CreateWindowExW
SetWindowTextW
SetCapture
GetFocus
GetWindowRect
GetCursorPos
ScreenToClient
UpdateWindow
SetFocus
LoadImageW
GetSystemMetrics
GetWindowLongW
RemovePropW
SetWindowLongW
FindWindowExW
GetDesktopWindow
EndDialog
CreateDialogIndirectParamW
CreateDialogParamW
DialogBoxIndirectParamW
DialogBoxParamW
CharNextW
GetDlgItem
GetSysColor

ole32

OleInitialize
CoInitialize
OleUninitialize
OleRun
CLSIDFromProgID
CoCreateInstance
CoUninitialize

comctl32

ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_GetImageCount
ImageList_DrawEx
ImageList_Draw
ImageList_Create
ImageList_Destroy
ord17
ImageList_SetBkColor

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

winmm

timeGetTime

gdi32

SetBkColor
GetBkColor
ExtCreateRegion
EnumFontFamiliesExW
CreateICW
GetDIBits
SelectClipRgn
GetPixel
GetTextMetricsW
GetTextColor
CreateFontW
GetTextExtentPoint32W
DeleteObject
GetObjectW
CreateFontIndirectW
SelectObject
SetBkMode
SetTextColor
GetDeviceCaps
SaveDC
RestoreDC
CreateCompatibleDC
SetStretchBltMode
StretchBlt
BitBlt
CreateDIBSection
CreatePolygonRgn
GetStockObject
DeleteDC

comdlg32

GetSaveFileNameW
GetOpenFileNameW
CommDlgExtendedError

advapi32

RegCloseKey
RegSetValueExW
RegCreateKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

ShellExecuteExW
SHGetDesktopFolder
SHBrowseForFolderW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW

oleaut32

SysFreeString
SysAllocString
VariantClear
VariantInit
SafeArrayUnaccessData
SafeArrayDestroy
SafeArrayAccessData
SafeArrayCreate

Sections

.text
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f62d9fe40291068e216c27c0cbca015e

Headers

File Characteristics

Imports

kernel32

user32

ole32

comctl32

version

winmm

gdi32

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 168KB - Virtual size: 165KB

.rdata Size: 36KB - Virtual size: 33KB

.data Size: 32KB - Virtual size: 41KB

.rsrc Size: 112KB - Virtual size: 110KB

.text
Size: 168KB - Virtual size: 165KB

.rdata
Size: 36KB - Virtual size: 33KB

.data
Size: 32KB - Virtual size: 41KB

.rsrc
Size: 112KB - Virtual size: 110KB