22ea7730b4caef637271509c8dcb21d0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

22ea7730b4caef637271509c8dcb21d0_NeikiAnalytics.exe
Size

51KB
MD5

22ea7730b4caef637271509c8dcb21d0
SHA1

30b86a4f9006dc00934b18b31a17f9864ba8cab1
SHA256

ab1918c2f69a5931fee5d4eac06a325d176b5acbae57ca3e4fca3ed3b30730a0
SHA512

52ab0ab1aaec3f6693e8268fa19992665e3b91bf9d96f1fe8757d813ce6e1408521fffda4cd012ae1bd49c1b85d1de1d66516f1aa1a31570e17fb7829535816d
SSDEEP

768:diHPOEUz9FeV714dp3Oza3g4rB/k1VXnoXk6TI83:d2EPeV71IJW91NoXfj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22ea7730b4caef637271509c8dcb21d0_NeikiAnalytics.exe

Files

22ea7730b4caef637271509c8dcb21d0_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

ee4f6c2c80559e9f862e74feefda8b98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadPriority
CreateProcessA
_lclose
_lwrite
_lread
ResumeThread
GetCurrentThread
GetCurrentProcess
WritePrivateProfileStringA
lstrcatA
MoveFileExA
GetModuleFileNameA
GetShortPathNameA
GetVersionExA
SetPriorityClass
GetSystemDirectoryA
SetCurrentDirectoryA
GetWindowsDirectoryA
_llseek
_lopen
GetProcAddress
HeapCompact
HeapAlloc
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
GetOEMCP
GetACP
GetLastError
GetCPInfo
HeapReAlloc
LoadLibraryA
lstrlenA
FreeLibrary
CloseHandle
SetFilePointer
WriteFile
ReadFile
CreateFileA
SetFileAttributesA
RemoveDirectoryA
HeapDestroy
GetStringTypeW
GetStringTypeA
RtlUnwind
VirtualFree
VirtualAlloc
HeapCreate
HeapFree
GetVersion
GetFileAttributesA
ExitProcess
TerminateProcess
DeleteFileA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA

user32

DialogBoxParamA
GetSysColor
GetWindow
SendMessageA
MessageBoxA
wsprintfA
SetDlgItemTextA
DestroyWindow
GetMessageA
DispatchMessageA
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassA
PostQuitMessage
DefWindowProcA
SetWindowTextA
EndDialog

gdi32

GetObjectA
CreateSolidBrush
DeleteObject
GetStockObject
SetBkColor
RemoveFontResourceA
CreateFontIndirectA

advapi32

RegEnumKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegCloseKey

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

OleUninitialize
OleInitialize

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee4f6c2c80559e9f862e74feefda8b98

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 1KB