e0b027b3d0759d00792a6cb4b69692c0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

e0b027b3d0759d00792a6cb4b69692c0_NeikiAnalytics
Size

2.3MB
MD5

e0b027b3d0759d00792a6cb4b69692c0
SHA1

130f0dea27852a62a0b46991f7cfe79c719d584d
SHA256

4b0c807250281fd3a21eebae3b2ab97a6995f2096ace1e1c43a92c30a79d85f0
SHA512

766bdf3581e44cdee2cf979b07fce7e336fdbd4a09d55252af236373fe593ced81ba0b37059234c2960a3fb2cf3ec156d7b6973a5f1365c4bafd52d301c224e9
SSDEEP

49152:JY2qXM0lyaG+orCDRAtqOfo/oJ1G0B0im8wld:q2qXwfXCSUOfb9m8Wd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0b027b3d0759d00792a6cb4b69692c0_NeikiAnalytics

Files

e0b027b3d0759d00792a6cb4b69692c0_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

2114ba616ff8ddd44e6ae041cf4ac6cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_onexit
_controlfp
__dllonexit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_exit
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
strcmp
??2@YAPAXI@Z
??3@YAXPAX@Z
vsprintf
memmove
memcpy
_rmdir
strlen
strcat
_access
remove
strcpy
strrchr
_splitpath
_makepath
memset
strncpy

kernel32

GlobalUnlock
CreateDirectoryA
GetModuleHandleA
GetStartupInfoA
_lclose
_lcreat
GetTempFileNameA
_lwrite
_llseek
_lopen
lstrlenA
OpenFile
Sleep
FreeLibrary
LoadLibraryA
GetModuleFileNameA
_lread
SetErrorMode
GlobalFree
FindClose
GlobalLock
GlobalAlloc
GlobalSize
GlobalReAlloc
GetProcAddress
GetTempPathA
GetShortPathNameA
RemoveDirectoryA
FindNextFileA
DeleteFileA
FindFirstFileA
WinExec

user32

GetKeyState
MessageBoxA
WaitMessage
DispatchMessageA
wsprintfA
LoadIconA
SetWindowTextA
GetDlgItem
EndDialog
DialogBoxParamA
ExitWindowsEx
SetWindowPos
GetWindowRect
DestroyWindow
CreateWindowExA
ShowWindow
RegisterClassA
GetClassInfoA
GetWindowTextLengthA
SetFocus
MoveWindow
SendMessageA
CallWindowProcA
DrawTextA
IsDlgButtonChecked
PeekMessageA
TranslateMessage
DefWindowProcA
LoadStringA

gdi32

GetStockObject

advapi32

RegCreateKeyExA
RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA

Exports

Exports

MsgDisplayString
_FindEmbeddedMovie
_GetCurrentEmbeddedMovie
_HandleWaitingMessages

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2114ba616ff8ddd44e6ae041cf4ac6cc

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 6KB - Virtual size: 8KB

.rsrc Size: 52KB - Virtual size: 52KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 6KB - Virtual size: 8KB

.rsrc
Size: 52KB - Virtual size: 52KB