5f132ef3b00ccff386070e1d97144500_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

5f132ef3b00ccff386070e1d97144500_NeikiAnalytics.exe
Size

1.2MB
MD5

5f132ef3b00ccff386070e1d97144500
SHA1

5bacaec1a270f6be9b767f47b870caa7cb9eff65
SHA256

955d7d5b29ae0df15a0aef86629a8a57da9d10fe0fc8927368e329fb91b22e2f
SHA512

53fbb5da84c57c66fffa88b08b3954041cee3124b171bf03845b31fde1fe5873aa2de0198bc171edf5b8cf0d6d82185c06f6edab1c056fbd2be9947977e62e13
SSDEEP

24576:wuxJMSjh9iCMq9/coC5jQDNPrUrGSyMQzV2oWTlVIhropgT9yZ9xbEYVj/G:VxHjh9iCMy/cj5jQDNPAmHzvWTbIhMpQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f132ef3b00ccff386070e1d97144500_NeikiAnalytics.exe

Files

5f132ef3b00ccff386070e1d97144500_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

9700e460f41913b46d80e3d8d6f443db

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
SetFilePointer
GetFileSize
SetFileTime
FreeLibrary
GetEnvironmentVariableA
WriteProfileStringA
GetFileTime
GlobalDeleteAtom
GlobalAddAtomA
GetTickCount
GetExitCodeProcess
CompareFileTime
FreeResource
CloseHandle
LoadResource
SizeofResource
FindResourceA
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
LoadLibraryA
GetCurrentThreadId
GetCommandLineA
GetCommandLineW
GetUserDefaultLangID
GetVersionExA
ReadFile
WriteFile
GetModuleHandleA
GetProcAddress
CopyFileA
GetTempPathA
SetLastError
GetModuleFileNameA
CreateProcessA
lstrlenA
GetStartupInfoA
lstrcpynA
SearchPathA
GetVolumeInformationA
LocalAlloc
LocalFree
CreateFileA
GetFileAttributesA
GetSystemDirectoryA
DeleteFileA
SetFileAttributesA
CreateDirectoryA
GetCurrentDirectoryA
GetWindowsDirectoryA
GetShortPathNameA
lstrlenW
CompareStringA
lstrcpyA
WideCharToMultiByte
LockResource
MultiByteToWideChar

user32

PackDDElParam
IsWindowUnicode
SetTimer
LoadIconA
GetSystemMetrics
SetFocus
CheckDlgButton
KillTimer
FreeDDElParam
EndPaint
DrawIcon
BeginPaint
IsIconic
DestroyIcon
GetDlgItem
EnableWindow
MoveWindow
FindWindowA
WaitForInputIdle
TranslateMessage
CharUpperA
CharLowerA
EndDialog
UnhookWindowsHookEx
CallNextHookEx
GetWindowRect
GetDesktopWindow
GetDC
ReleaseDC
CharNextA
DialogBoxIndirectParamA
MessageBoxA
PostMessageA
SendMessageA
GetWindowLongA
SendDlgItemMessageA
SetWindowsHookExA
GetClassInfoA
PeekMessageA
IsDialogMessageA
DispatchMessageA
SetWindowTextA
SetDlgItemTextA
GetDlgItemTextA
SystemParametersInfoA

gdi32

GetMapMode
SetMapMode
GetStockObject
GetDeviceCaps
GetObjectA

comdlg32

GetOpenFileNameA

advapi32

RegSetValueA
RegCreateKeyExA
RegCreateKeyA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegQueryValueA
RegOpenKeyExA
RegSetValueExA

crtdll

_global_unwind2
_fmode_dll
_commode_dll
_local_unwind2
memset
memcpy
exit
swprintf
_exit
_XcptFilter
_acmdln_dll
_initterm
__GetMainArgs

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 309B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9700e460f41913b46d80e3d8d6f443db

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

crtdll

Sections

.text Size: 33KB - Virtual size: 32KB

.rdata Size: 512B - Virtual size: 309B

.data Size: 4KB - Virtual size: 44KB

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 8B

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 33KB - Virtual size: 32KB

.rdata
Size: 512B - Virtual size: 309B

.data
Size: 4KB - Virtual size: 44KB

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 8B

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 3KB