0435d06e2be03723fe88a49ae874c480_NeikiAnalytics

General

Target

0435d06e2be03723fe88a49ae874c480_NeikiAnalytics
Size

1.3MB
MD5

0435d06e2be03723fe88a49ae874c480
SHA1

f5cd4b14121244617076276389837dd761c21d21
SHA256

08181f0c748e92a8884e941d341825c417d1ded95e788b4c510421300d44d388
SHA512

d484ffabf1225cdccb34dc6a9efbfabd99a3a8675add0571ddbd9a4b4c0482368875428e436be25c9bece51facee5d60839c40e0073f0c1e5f50bf4da576dea6
SSDEEP

24576:A0Sv+nagQU4jkkRJyDuP9k7fvweR6eUARFyZDyMpCA7Bh8NpKySoscze/jmCzHd:A0Sv+nA4kRKM9k7nweR6eUARSjpCA7cM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0435d06e2be03723fe88a49ae874c480_NeikiAnalytics

Files

0435d06e2be03723fe88a49ae874c480_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

f9157fe737c7bdbe2a50ea91b1b59001

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsFree
TlsSetValue
InitializeCriticalSection
FreeEnvironmentStringsA
GetProcAddress
GetEnvironmentStrings
HeapReAlloc
LeaveCriticalSection
FreeEnvironmentStringsW
SetLastError
GetCurrentProcessId
HeapAlloc
GetLogicalDrives
GetStartupInfoW
TlsAlloc
GetModuleHandleA
OpenSemaphoreA
OpenSemaphoreW
GetWindowsDirectoryA
InterlockedExchange
HeapDestroy
VirtualFree
GetCommandLineW
UnhandledExceptionFilter
EnterCriticalSection
lstrcpynA
MultiByteToWideChar
ExpandEnvironmentStringsW
GetStdHandle
ExitProcess
GetTickCount
GetTimeFormatA
WriteFile
HeapFree
GetFileType
GetModuleFileNameA
TlsGetValue
LoadLibraryA
QueryPerformanceCounter
GetEnvironmentStringsW
VirtualAlloc
SetThreadPriority
GetCommandLineA
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetLastError
GetVersion
IsBadWritePtr
SetHandleCount
IsValidLocale
WriteConsoleOutputAttribute
GetCurrentThread
GetSystemTimeAsFileTime
GetModuleFileNameW
DeleteCriticalSection
GetModuleHandleW
GetStartupInfoA
HeapCreate
ReadConsoleA
Sleep

user32

SendNotifyMessageW
EnumDisplaySettingsExW
InsertMenuItemW
UnhookWindowsHook
EnumDisplayMonitors
GetGUIThreadInfo
IsCharAlphaNumericW
DdeFreeStringHandle
ShowWindowAsync
InsertMenuA
SetMenuInfo

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.1MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9157fe737c7bdbe2a50ea91b1b59001

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 115KB - Virtual size: 114KB

.data Size: 1.1MB - Virtual size: 1.0MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 115KB - Virtual size: 114KB

.data
Size: 1.1MB - Virtual size: 1.0MB

.rsrc
Size: 4KB - Virtual size: 3KB