077ad1091d8a38f2440eac6d81bf8dd0_NeikiAnalytics

General

Target

077ad1091d8a38f2440eac6d81bf8dd0_NeikiAnalytics
Size

413KB
MD5

077ad1091d8a38f2440eac6d81bf8dd0
SHA1

a037fbcea65a24362dae0131e85360cbefce1691
SHA256

d621d170b3a8e35c97934914a0908d04cd2f0d111312a590733ff5dddec6917e
SHA512

a15a9de057f8ee6632e985717b00769ebb63fadea490dcc980467066f5c6ab610e93c189dd78ef79e4c218c030efd5fcb979875e993704abdb568fc6d0740b48
SSDEEP

12288:EU2kKIes95c0DEy+sh4DepIid+iNf3Jc:pBEy+chPfZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
077ad1091d8a38f2440eac6d81bf8dd0_NeikiAnalytics

Files

077ad1091d8a38f2440eac6d81bf8dd0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

2f9bc559aa72a224a031c42a29e0d9ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
GetCurrentThread
GetCommandLineA
GetACP
RtlUnwind
TlsSetValue
FreeEnvironmentStringsW
GetCurrentProcess
SetHandleCount
VirtualAlloc
GetEnvironmentStrings
InitializeCriticalSection
HeapReAlloc
LCMapStringA
RtlZeroMemory
IsBadWritePtr
GetOEMCP
InterlockedExchange
GetModuleFileNameA
GetStringTypeA
TlsGetValue
ExitProcess
HeapCreate
TlsFree
WideCharToMultiByte
LoadLibraryA
GetTickCount
GetSystemTimeAsFileTime
SetLastError
GetLastError
GetPrivateProfileSectionA
QueryPerformanceCounter
SetThreadPriority
WriteFile
DeleteCriticalSection
VirtualQuery
GetCurrentThreadId
GetFileType
HeapAlloc
LeaveCriticalSection
HeapFree
ReadConsoleOutputCharacterW
TerminateProcess
GetCurrentProcessId
FreeEnvironmentStringsA
UnhandledExceptionFilter
TlsAlloc
GlobalUnlock
GetStdHandle
GetEnvironmentStringsW
HeapDestroy
VirtualFree
GetStartupInfoA
GetProcAddress
LCMapStringW
GetExitCodeProcess
GetCPInfo
GetModuleHandleA
ConnectNamedPipe
GetVersion
EnterCriticalSection
GetLogicalDrives
MultiByteToWideChar

gdi32

ResetDCA
GetTextExtentExPointW
DrawEscape
GetGlyphOutlineA
SetLayout
CreateColorSpaceA
FlattenPath
RectInRegion
GetPaletteEntries

user32

SetScrollInfo
ActivateKeyboardLayout
GetCursorPos
DdeNameService
GetWindowModuleFileNameA

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 302KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f9bc559aa72a224a031c42a29e0d9ce

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 98KB - Virtual size: 98KB

.data Size: 302KB - Virtual size: 302KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 98KB - Virtual size: 98KB

.data
Size: 302KB - Virtual size: 302KB

.rsrc
Size: 11KB - Virtual size: 10KB