c993bd3c4996c41f5fc36c324d965120_NeikiAnalytics

General

Target

c993bd3c4996c41f5fc36c324d965120_NeikiAnalytics
Size

280KB
MD5

c993bd3c4996c41f5fc36c324d965120
SHA1

9f294967d7ecb004180ad52d60f4e9c05cb18ef0
SHA256

38fbc2e38ca307a802703627d6d3fc8b77e3d6596b3ea62190972f7e9e9589cf
SHA512

84ed9cd74e4a4fb5d008ebb546e273da836f580cf924172ae24652f88588bc0aff6467fc37032e384be66815880c25a788d8304a2db2b49159648626360e20bc
SSDEEP

6144:e8EeZomkGCGxmLsn1qVMS+QdlBph4DKrjCLgFPCTJYylZCmmr9eKZhZik:e8Tkyos1qN+Qd3b5akFPCvizY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c993bd3c4996c41f5fc36c324d965120_NeikiAnalytics

Files

c993bd3c4996c41f5fc36c324d965120_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

440616582ee57713d8eaf847396e684f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

CreateNamedPipeW
CreateThread
EnterCriticalSection
EnumSystemCodePagesW
ExitProcess
FreeConsole
GetCompressedFileSizeW
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesExA
GetLocaleInfoA
GetModuleHandleW
GetOEMCP
GetProcessHeap
GetStringTypeExA
GetVolumeInformationA
HeapCreate
LCMapStringA
LockResource
SetConsoleCursorInfo
SetConsoleMode
SetProcessShutdownParameters
SetSystemTime
SetThreadPriority
SetWaitableTimer
UnmapViewOfFile
WaitForMultipleObjects
lstrcmpA
lstrcmpiA

user32

CreatePopupMenu
DdeInitializeW
DialogBoxParamW
EnumThreadWindows
GetAsyncKeyState
GetCaretPos
GetInputDesktop
GetProcessDefaultLayout
GetScrollRange
GetWindow
IsCharAlphaW
IsWindow
PostMessageW
SendIMEMessageExW
SendNotifyMessageA
ShowOwnedPopups
ToAscii
ToUnicodeEx
TrackMouseEvent
TranslateMDISysAccel
VkKeyScanExW

gdi32

AngleArc
CloseEnhMetaFile
CreateCompatibleDC
CreateDCA
CreateEnhMetaFileA
ExtTextOutW
FloodFill
GetBkMode
GetClipBox
GetEnhMetaFileA
GetMapMode
GetTextAlign
GetTextExtentPoint32W
GetTextFaceA
LPtoDP
LineDDA
OffsetClipRgn
PlayMetaFile
RestoreDC
SaveDC
SelectClipPath
StartPage
SwapBuffers

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 520KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

440616582ee57713d8eaf847396e684f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 268KB - Virtual size: 272KB

.xdata Size: 4KB - Virtual size: 8KB

.rsrc Size: 2KB - Virtual size: 520KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 268KB - Virtual size: 272KB

.xdata
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 2KB - Virtual size: 520KB