2dd6cc5eacccb7502f56c3bbd936c2c0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

2dd6cc5eacccb7502f56c3bbd936c2c0_NeikiAnalytics
Size

272KB
MD5

2dd6cc5eacccb7502f56c3bbd936c2c0
SHA1

8cddf55228b5d39414ce4aeb16bead3d8f7cfeb5
SHA256

6852933e439f94f48c13c4825fc0c79883bd3679d24c31e0d1e13aed35a76556
SHA512

c59d16124595fcf345c156e9a7cf7a47edacfd2ba623672c30fa4f7e74b72cb99624218eeac977bffba2e254ed1a2bdbf25f61d79adda50697d0f2cf7eea222a
SSDEEP

6144:EpzCPmcaqJq/VVWfvG+W4QOiiH+5mUjgcp+UqKN8v:Ep+P9i/DWfv7WIVe5mUjZ+RKY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2dd6cc5eacccb7502f56c3bbd936c2c0_NeikiAnalytics

Files

2dd6cc5eacccb7502f56c3bbd936c2c0_NeikiAnalytics
.exe windows:5 windows x86 arch:x86

f5c0d2c3767cb6b8b503e199f21489f4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
GetFontUnicodeRanges
GetPixelFormat
GetTextColor
SetTextJustification
SetTextAlign
GetObjectType
GetCurrentObject
GetNearestColor
GetMetaRgn
GetClipRgn
GetMapMode
GetTextAlign
GetRandomRgn
GetDCPenColor
GetBkColor
SetPixel
SetTextColor
SetSystemPaletteUse
GetDCBrushColor
GetNearestPaletteIndex
GetStretchBltMode
SetTextCharacterExtra

user32

GetMenuItemID
IsWindowUnicode
CallWindowProcA
EnableWindow
PostMessageA
GetWindowDC
GetDialogBaseUnits
RemovePropA
GetWindowContextHelpId
GetInputState
GetMenu
SendMessageA
LoadIconA
SetDlgItemTextA
GetMenuCheckMarkDimensions
IsWindowEnabled
GetDlgItemInt
GetScrollPos
GetMenuContextHelpId
CheckDlgButton
DrawTextA
GetMenuItemCount
EndPaint
GetMenuState
GetPropA
BeginPaint
GetDlgItem
GetForegroundWindow
GetCursor
SetWindowTextA
EndDialog
ShowWindow
WindowFromDC
GetDC
SetFocus
GetQueueStatus
GetWindowLongA

kernel32

GetFileTime
GetLastError
LoadResource
DeleteFileA
WriteFile
FindResourceA
IsDebuggerPresent
GetCurrentThreadId
GetTickCount
GetVersion
GetCurrentProcess
MoveFileA
GetCurrentProcessId
LockResource
QueryPerformanceCounter
GetDriveTypeA
FlushFileBuffers
FindClose
GetFileType
GlobalFlags
IsProcessorFeaturePresent
SetFilePointer
GlobalSize
GetModuleHandleA
GetProcAddress
LocalFlags
GlobalHandle
CloseHandle
GetStdHandle
HeapAlloc
GetProcessHeap

Sections

.text
Size: 211KB - Virtual size: 211KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f5c0d2c3767cb6b8b503e199f21489f4

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 211KB - Virtual size: 211KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 512B - Virtual size: 354KB

.reloc Size: 40KB - Virtual size: 39KB

.text
Size: 211KB - Virtual size: 211KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 512B - Virtual size: 354KB

.reloc
Size: 40KB - Virtual size: 39KB