e0e92c3e38f25d595a5ae2cabe8343a0_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

e0e92c3e38f25d595a5ae2cabe8343a0_NeikiAnalytics
Size

4.7MB
MD5

e0e92c3e38f25d595a5ae2cabe8343a0
SHA1

73157f65be801f9d6ba57ae8b508776de97a50d1
SHA256

7a2df4c37d25924a5c1a1d5b705477ee5f9526d2b00d8a7e33008fce7af79aa3
SHA512

b49a8b041e9d38d47e5155c02ceb017bee2005e804bca9f268e7a5c14dad8418763d5d5f33dd71bc291de536014aaa0a933816bd9fd09da32a5224a3ef71c2a2
SSDEEP

98304:c8UXGmrbYkNkDfk9GryRsnA87X7j2iS2IXHGxPqnH:bCGm4h5ryROinH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0e92c3e38f25d595a5ae2cabe8343a0_NeikiAnalytics

Files

e0e92c3e38f25d595a5ae2cabe8343a0_NeikiAnalytics
.exe windows:5 windows x86 arch:x86

3c45d42b84b219573ac09b6341c4416d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetCloseEnum

comctl32

ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetImageCount
ImageList_SetOverlayImage
ImageList_Write
ord17
InitializeFlatSB
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
FlatSB_GetScrollPos
FlatSB_SetScrollInfo
FlatSB_SetScrollPos
FlatSB_SetScrollProp
ImageList_Add
ImageList_BeginDrag
ImageList_Copy
ImageList_Create
FlatSB_GetScrollInfo
ImageList_Destroy

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

kernel32

GetStartupInfoW
CloseHandle
CompareStringW
CopyFileW
CreateDirectoryW
CreateEventW
CreateFileA
CreateFileW
CreateMutexW
CreateProcessW
CreateThread
DeleteCriticalSection
DeleteFileW
EnumCalendarInfoW
EnumResourceNamesA
EnumResourceTypesA
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileW
FindNextFileW
FindResourceA
FindResourceW
FormatMessageW
FreeLibrary
FreeResource
GetACP
GetCommandLineW
GetComputerNameW
GetCPInfo
GetCurrentDirectoryW
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetDiskFreeSpaceW
GetDriveTypeW
GetEnvironmentVariableW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFileType
GetFullPathNameW
GetLastError
GetCommandLineA
GetLocalTime
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
GetStartupInfoA
GetStdHandle
InitializeCriticalSection
GetTempPathW
GetThreadPriority
GetTimeZoneInformation
GetUserDefaultLangID
GetUserDefaultLCID
GetVersion
GetVersionExW
GetVolumeInformationW
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAddAtomW
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomW
GlobalFree
GlobalHandle
GlobalLock
GlobalSize
GlobalUnlock
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchangeAdd
InterlockedIncrement
IsValidLocale
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LockResource
lstrcatA
lstrcmpiA
lstrcmpW
lstrcpynW
lstrcpyW
lstrlenA
MoveFileW
MulDiv
MultiByteToWideChar
OpenProcess
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadFile
ReadProcessMemory
ReleaseMutex
RemoveDirectoryW
ResetEvent
ResumeThread
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetLastError
SetThreadLocale
SetThreadPriority
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateThread
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualAllocEx
VirtualFree
VirtualFreeEx
VirtualQuery
VirtualQueryEx
WaitForMultipleObjectsEx
WaitForSingleObject
WideCharToMultiByte
WriteFile
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
lstrcmpiW
lstrlenW
GetThreadLocale
GetStringTypeExW
GetSystemInfo
GetLocaleInfoW
GetModuleHandleA

user32

CopyIcon
GetActiveWindow
GetAsyncKeyState
GetCapture
GetCaretPos
GetClassInfoW
GetClassLongW
GetClassNameW
GetClientRect
GetClipboardData
GetClipboardFormatNameW
GetCursorPos
GetDCEx
GetDesktopWindow
GetDlgCtrlID
GetDlgItemTextA
GetDlgItemTextW
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyboardLayoutList
GetKeyboardLayoutNameW
GetKeyboardState
GetKeyNameTextW
GetKeyState
GetLastActivePopup
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoW
GetMenuItemRect
GetMenuState
GetMenuStringW
GetMessageExtraInfo
GetMessagePos
GetMessageTime
GetMessageW
GetParent
GetPropW
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColorBrush
GetSystemMenu
GetTopWindow
GetWindowDC
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
HideCaret
InflateRect
InsertMenuItemW
InsertMenuW
IntersectRect
InvalidateRect
IsCharAlphaNumericW
IsCharAlphaW
IsChild
IsClipboardFormatAvailable
IsDialogMessageA
IsDialogMessageW
IsIconic
IsRectEmpty
IsWindowEnabled
IsWindowUnicode
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapW
LoadCursorW
LoadIconW
LoadImageA
LoadKeyboardLayoutW
LoadStringW
EndPaint
MapVirtualKeyW
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxIndirectW
MessageBoxW
MoveWindow
FindWindowW
OffsetRect
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageW
PtInRect
RedrawWindow
RegisterClassW
RegisterClipboardFormatW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropW
ScreenToClient
ScrollWindowEx
SendDlgItemMessageW
SendMessageA
SendMessageW
SetActiveWindow
SetCapture
SetCaretPos
SetClassLongW
SetClipboardData
SetCursorPos
SetFocus
SetForegroundWindow
SetKeyboardState
SetMenuItemInfoW
SetParent
SetPropW
SetRect
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowsHookExW
SetWindowTextW
ShowCaret
ShowOwnedPopups
ShowScrollBar
ShowWindow
SystemParametersInfoW
TrackPopupMenu
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnregisterClassW
UpdateWindow
ValidateRect
WaitForInputIdle
WaitMessage
WindowFromDC
WindowFromPoint
wvsprintfA
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
CloseClipboard
ClientToScreen
ChildWindowFromPoint
CheckMenuItem
CharUpperBuffW
CharNextW
CharLowerW
CharLowerBuffW
CallWindowProcW
CallNextHookEx
BeginPaint
GetSystemMetrics
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
FindWindowExW
FillRect
EqualRect
EnumWindows
EnumThreadWindows
EnumDisplaySettingsW
EnumClipboardFormats
MsgWaitForMultipleObjectsEx
EnumChildWindows
DestroyCursor
DestroyCaret
DeleteMenu
DefWindowProcW
DefMDIChildProcW
DefFrameProcW
CreateWindowExW
CreatePopupMenu
CreateMenu
CreateIconIndirect
CreateCaret
CreateAcceleratorTableW
CountClipboardFormats
CopyRect
LockWindowUpdate
CopyImage
FrameRect

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter
EnumPrintersW

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetSaveFileNameW
ChooseFontW
PrintDlgW
GetOpenFileNameW

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegEnumValueW
RegFlushKey
RegLoadKeyW
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegReplaceKeyW
RegRestoreKeyW
RegDeleteValueW
RegSaveKeyW
RegSetValueExW
RegUnLoadKeyW

shell32

SHFileOperationW
SHEmptyRecycleBinA
ShellExecuteW
Shell_NotifyIconW
ExtractIconW
DragQueryFileW
DragFinish
SHGetFileInfoW

ole32

CoInitialize
MkParseDisplayName
CoCreateInstance
CoTaskMemAlloc
OleDraw
OleInitialize
OleRegEnumVerbs
OleSetMenuDescriptor
CoTaskMemFree
CoUninitialize
CreateBindCtx
CreateStreamOnHGlobal
FreePropVariantArray
CoCreateGuid
IsAccelerator
StringFromCLSID
StgCreateDocfile
ProgIDFromCLSID
CoGetClassObject
OleUninitialize

oleaut32

VariantInit
VariantCopyInd
VariantClear
VariantChangeType
SysReAllocStringLen
SysFreeString
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
SafeArrayAccessData
SafeArrayCreate

msvcrt

_except_handler3
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 412KB - Virtual size: 409KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PING1
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3c45d42b84b219573ac09b6341c4416d

Headers

File Characteristics

Imports

mpr

comctl32

version

kernel32

user32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

msvcrt

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 4.0MB

.rsrc Size: 412KB - Virtual size: 409KB

.PING1 Size: 2.0MB - Virtual size: 2.0MB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 4.0MB

.rsrc
Size: 412KB - Virtual size: 409KB

.PING1
Size: 2.0MB - Virtual size: 2.0MB