30f070311d3bd462c4f54f30579d8fe0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

30f070311d3bd462c4f54f30579d8fe0_NeikiAnalytics
Size

298KB
MD5

30f070311d3bd462c4f54f30579d8fe0
SHA1

27c80d628b4dc55350352dceee5244bbe131086a
SHA256

4293374d83dc3be1944b27871c0514af984ed362e8b6833a5b10b89dbe4b229d
SHA512

b57bb746d5dc18435410fea324f44f1d538f8228721e787e759922b366bd054e55b403ddc1870842a43066576bc4c8e3fbeaf1c9d8982ad7218592f450967a46
SSDEEP

6144:Xo59WqaamA9uxVqkP/LjJWczzt9g+aYSQRdSR00KSXDGCWl+XT/u7H6yi2c:4l18VrP/LjXzta+ukS201QUXT/uF5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
30f070311d3bd462c4f54f30579d8fe0_NeikiAnalytics

Files

30f070311d3bd462c4f54f30579d8fe0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

b408ac64785d4127864ae4725e01f9df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

OffsetClipRgn
SetBitmapBits
GetICMProfileA
CreateCompatibleBitmap
PolyTextOutW
DeviceCapabilitiesExA
AnimatePalette
EnumFontsW
DescribePixelFormat
GdiSetBatchLimit
FixBrushOrgEx
SetPolyFillMode
ScaleWindowExtEx
GetNearestColor
CreateBitmapIndirect

shell32

FindExecutableA
InternalExtractIconListW
SHFileOperationW
SHGetNewLinkInfo

comdlg32

GetFileTitleW
ChooseColorA
FindTextW
PrintDlgW
FindTextA
ChooseFontA
GetSaveFileNameW
ReplaceTextA
GetOpenFileNameA
ChooseColorW
ReplaceTextW
PrintDlgA
GetSaveFileNameA
PageSetupDlgW
ChooseFontW
LoadAlterBitmap

user32

MessageBoxA
LoadMenuW
SystemParametersInfoA

kernel32

GetEnvironmentStringsA
GetTimeFormatA
GetOEMCP
LCMapStringA
GetLocaleInfoW
GetCurrentThread
LCMapStringW
LeaveCriticalSection
IsValidCodePage
GetCommandLineW
GetTimeZoneInformation
GetPrivateProfileStringW
GetStringTypeW
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
VirtualAlloc
FillConsoleOutputCharacterA
TerminateProcess
GetACP
FreeEnvironmentStringsA
IsBadWritePtr
UnhandledExceptionFilter
GetStartupInfoA
GetVersionExA
WideCharToMultiByte
VirtualFree
ExitProcess
GetProcAddress
DeleteCriticalSection
lstrcat
GetStringTypeA
VirtualQuery
MultiByteToWideChar
TlsFree
GetEnvironmentStringsW
LoadLibraryA
RtlUnwind
HeapCreate
WriteFile
SetPriorityClass
GetCurrentThreadId
GetSystemDirectoryA
GetStdHandle
GetModuleFileNameA
GetLocaleInfoA
GetCPInfo
SetLastError
GetCommandLineA
GetSystemInfo
FoldStringW
HeapDestroy
TlsGetValue
GetPrivateProfileStringA
GetCurrentProcessId
LoadResource
QueryPerformanceCounter
TlsAlloc
CompareStringA
EnterCriticalSection
InitializeCriticalSection
CompareStringW
lstrcpy
GetFileType
IsValidLocale
HeapReAlloc
HeapFree
HeapAlloc
GetModuleFileNameW
VirtualProtect
SetEnvironmentVariableA
GetCurrentProcess
GetDateFormatA
GetLastError
GetUserDefaultLCID
HeapSize
GetEnvironmentStrings
InterlockedExchange
SetHandleCount
GetModuleHandleA
GetTickCount
TlsSetValue
GetStartupInfoW
EnumSystemLocalesA

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b408ac64785d4127864ae4725e01f9df

Headers

File Characteristics

Imports

gdi32

shell32

comdlg32

user32

kernel32

Sections

.text Size: 175KB - Virtual size: 174KB

.data Size: 112KB - Virtual size: 112KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 175KB - Virtual size: 174KB

.data
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 10KB - Virtual size: 9KB