62e7c573997e6aa040f4b6996b4fd7b0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

62e7c573997e6aa040f4b6996b4fd7b0_NeikiAnalytics.exe
Size

232KB
MD5

62e7c573997e6aa040f4b6996b4fd7b0
SHA1

949a35d272bad4f5d7e0d7b3ca2ee4757e86046f
SHA256

609b40b141dc0dec9dd2b81632e7f0666697d1012e81158b2a9c3cde6c558530
SHA512

86f0cb7730e2a9986c9abaa4a9ad8bf97253791f3e8c28100bbe934bfd08e509b774f9c8fd9e34db8b462062a91f507a305d24ac626a015ec1ce9c9090e8051d
SSDEEP

3072:BWYBL6oeaCIPiyphTqc7Q0XHa8vZrvKgfPe81DA296fpbvs/K:BWYB+/Oi8UcUfKrPzA29kpvsS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62e7c573997e6aa040f4b6996b4fd7b0_NeikiAnalytics.exe

Files

62e7c573997e6aa040f4b6996b4fd7b0_NeikiAnalytics.exe
.exe windows:6 windows x86 arch:x86

ce0b664030b37ba230b23e9e88c6c364

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\src\libusb-win32\trunk\libusb\ddk_make\output\i386\install-filter.pdb

Imports

advapi32

FreeSid
CheckTokenMembership
AllocateAndInitializeSid
RegCloseKey
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA

kernel32

LoadLibraryA
GetLastError
Sleep
GetCurrentProcess
GetModuleHandleA
WriteFile
LockResource
LoadResource
GetProcAddress
FindResourceA
GetStdHandle
GetFullPathNameA
LocalFree
InterlockedIncrement
GetVersion
FormatMessageA
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
RtlUnwind
InterlockedCompareExchange
InterlockedExchange
FreeLibrary
WaitForSingleObject
CloseHandle
CreateSemaphoreA
GetVersionExA
GetCommandLineW
SizeofResource
UnhandledExceptionFilter

msvcrt

wcstombs
sscanf
_controlfp
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
__setusermatherr
_amsg_exit
_initterm
exit
_XcptFilter
_exit
_cexit
__getmainargs
_vsnprintf
strncpy
_iob
fprintf
strerror
memmove
memcpy
_stricmp
_getch
_beginthread
_endthread
_strlwr
strncmp
_snprintf
_wcsnicmp
_wcsicmp
malloc
printf
strstr
_strdup
sprintf
free
memset

setupapi

SetupDiGetClassDevsA
SetupFindFirstLineA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupCloseInfFile
SetupFindNextLine
SetupDiSetDeviceRegistryPropertyA
CM_Get_DevNode_Status
SetupDiRemoveDevice
SetupDiGetDeviceRegistryPropertyA
SetupOpenInfFileA
SetupDiOpenDevRegKey
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
CM_Get_Device_IDA
SetupGetStringFieldA

user32

SetWindowTextA
GetWindowLongA
SetWindowLongA
RedrawWindow
InvalidateRect
DefWindowProcA
PostMessageA
CreateWindowExA
GetSysColor
EnableWindow
GetClientRect
OffsetRect
InflateRect
GetDlgItem
GetWindowTextLengthA
SendMessageA
GetDesktopWindow
GetWindowRect
SetWindowPos
GetSysColorBrush
FillRect
DrawEdge
SetTimer
GetParent
DestroyWindow
PostQuitMessage
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
RegisterClassExA
LoadCursorA
LoadIconA
GetClassInfoExA
MessageBoxA
GetSystemMetrics

gdi32

BitBlt
CreateSolidBrush
DeleteObject
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 187KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ce0b664030b37ba230b23e9e88c6c364

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

advapi32

kernel32

msvcrt

setupapi

user32

gdi32

Sections

.text Size: 34KB - Virtual size: 33KB

.data Size: 1KB - Virtual size: 3KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 3KB - Virtual size: 2KB

.text Size: 187KB - Virtual size: 188KB

.text
Size: 34KB - Virtual size: 33KB

.data
Size: 1KB - Virtual size: 3KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 3KB - Virtual size: 2KB

.text
Size: 187KB - Virtual size: 188KB