4e642df7d7de14186319d99010470540_NeikiAnalytics[.]exe

General

Target

4e642df7d7de14186319d99010470540_NeikiAnalytics.exe
Size

140KB
MD5

4e642df7d7de14186319d99010470540
SHA1

ea1d8972a22bf36227a1fbade45110af899af5e1
SHA256

18d5b2208e5e8a4c6bfc4bad39e02a24e41d9585a9c8061e32fcae30854aab4f
SHA512

e7d50ee1ebe1a234fa9915f633df27f55d06cd6a62418307b83c133597b8b1d1cdd620333d7c808f0ce4d9ea7602c7a68dcd5911d132f891b5b8e4e6128969b4
SSDEEP

3072:GR2wbRtddwLVrt+nxgd9++oJZFSDvs9kgrMREoKeRkQ:GgibwLhtuxgKNAOkgr/ed

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4e642df7d7de14186319d99010470540_NeikiAnalytics.exe

Files

4e642df7d7de14186319d99010470540_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

0936eb160c3829baea98d58a1dd2ea6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

jmsgdll

_writej@4
_writejpidx@8

acessol

_ACL_INIACESSO@0
_ACLPROGR@8

sdeltaio

_SDELTA_LER@24

user32

MessageBoxA

kernel32

GetOEMCP
GetCPInfo
GetStringTypeW
GetStringTypeA
CloseHandle
WaitForSingleObject
CreateProcessA
SetFilePointer
CreateFileA
GetFileTime
FileTimeToSystemTime
GetCommandLineA
GetEnvironmentVariableA
FormatMessageA
GetLastError
GetTempPathA
GetFullPathNameA
QueryDosDeviceA
GetACP
GetVersion
SetHandleCount
GetFileInformationByHandle
GetFileAttributesA
DeleteFileA
GetModuleHandleA
GetStartupInfoA
ExitProcess
SetConsoleCtrlHandler
TerminateProcess
GetCurrentProcess
GetCurrentDirectoryA
GetDriveTypeA
CreateDirectoryA
SetEnvironmentVariableA
SetCurrentDirectoryA
MoveFileA
GetFileType
WriteFile
ReadFile
HeapAlloc
HeapFree
HeapReAlloc
GetStdHandle
GetModuleFileNameA
SetStdHandle
SetEndOfFile
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
GetProcAddress
RaiseException
FlushFileBuffers
HeapSize
MultiByteToWideChar
LCMapStringA
LCMapStringW
VirtualAlloc
LoadLibraryA

Sections

.text
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0936eb160c3829baea98d58a1dd2ea6d

Headers

File Characteristics

Imports

jmsgdll

acessol

sdeltaio

user32

kernel32

Sections

.text Size: 112KB - Virtual size: 110KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 20KB - Virtual size: 31KB

.text
Size: 112KB - Virtual size: 110KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 20KB - Virtual size: 31KB