38c3bbdc83fb1a46a033bf1026b5c460_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

38c3bbdc83fb1a46a033bf1026b5c460_NeikiAnalytics.exe
Size

157KB
MD5

38c3bbdc83fb1a46a033bf1026b5c460
SHA1

24a26d8a49ec1feda030674c7bd9a4d4bc480b3a
SHA256

74a53c88c8f15ab0c3d12846fff3f1ed1909afe0dbb446ed77dcfed2c4f5f730
SHA512

2dddd4ab80fc74a9f37445047c21b02c5290a0cbcf3ac4fdae79d4d4290a72333c924c7cb7c8f7edd2195f39ed3d515a62383121b0e7b418d30b0d7a23a37535
SSDEEP

3072:TMdLZAIi6d0c52/AHSRIFBWSp/iI1uR9f3brbttQhZhIO4n0MAIQhxBlLgNB:qo6SON09UhZhIO4n0MAIQhxPA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38c3bbdc83fb1a46a033bf1026b5c460_NeikiAnalytics.exe

Files

38c3bbdc83fb1a46a033bf1026b5c460_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

dfa264221da71cbf1252eb9b4520dad2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\buildsvn\clients2\sc\sda\Release\PGPsda.pdb

Imports

comctl32

ord17

kernel32

HeapFree
SetEndOfFile
GetLocaleInfoA
LCMapStringW
LCMapStringA
CreateFileA
CreateFileW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSection
Sleep
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
GetStringTypeA
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
RtlUnwind
ExitProcess
GetModuleHandleA
HeapSize
FlushFileBuffers
GetConsoleMode
GetConsoleCP
WriteFile
SetStdHandle
GetFileType
GetStdHandle
IsDBCSLeadByteEx
MulDiv
WideCharToMultiByte
MultiByteToWideChar
GetFileAttributesA
CreateSemaphoreA
WaitForSingleObject
CloseHandle
CreateThread
lstrcpyA
ReleaseSemaphore
GetProcAddress
FreeLibrary
lstrlenA
LoadLibraryA
GetVersionExA
SetHandleCount
VirtualAlloc
GetModuleFileNameA
GetACP
GetModuleFileNameW
lstrcmpiA
DeleteCriticalSection
VirtualFree
HeapCreate
HeapDestroy
GetLastError
SetFilePointer
HeapAlloc
HeapReAlloc
CreateDirectoryW
CreateDirectoryA
DeleteFileW
DeleteFileA
RemoveDirectoryW
RemoveDirectoryA
GetSystemTimeAsFileTime
GetCommandLineA
GetProcessHeap
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ReadFile
EnterCriticalSection
LeaveCriticalSection

user32

UpdateWindow
ShowWindow
CreateWindowExA
LoadStringA
MessageBoxW
MessageBoxA
LoadStringW
SetWindowPos
GetSystemMetrics
GetWindowRect
SetWindowLongW
GetFocus
GetClientRect
CallWindowProcW
SetCaretPos
DestroyCaret
CreateCaret
ShowCaret
GetWindow
FillRect
GetParent
KillTimer
IsDlgButtonChecked
CheckDlgButton
LoadIconA
SetFocus
GetKeyState
GetKeyboardLayout
DialogBoxParamA
EndDialog
IsWindowEnabled
SetForegroundWindow
SetTimer
GetDlgItem
MapWindowPoints
SetWindowTextA
SendDlgItemMessageA
ActivateKeyboardLayout
SendMessageA
GetDC
ReleaseDC
SetWindowLongA
SystemParametersInfoA
GetWindowTextA
GetWindowLongA
CallWindowProcA
IsWindowVisible
BeginPaint
DrawIcon
GetSysColor
EndPaint
InvalidateRect
RegisterClassA
DefWindowProcA

gdi32

DeleteDC
GetTextMetricsA
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
GetObjectA
GetDeviceCaps
GetTextExtentPoint32W
ExtTextOutW
BitBlt
SetBkMode
TextOutW
TranslateCharsetInfo
DeleteObject
CreateSolidBrush
CreatePen
CreateFontIndirectA
SelectObject
SetTextColor
SetBkColor
Rectangle
ExtTextOutA

comdlg32

GetSaveFileNameA
GetSaveFileNameW

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfa264221da71cbf1252eb9b4520dad2

Headers

File Characteristics

PDB Paths

Imports

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 31KB - Virtual size: 31KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 31KB - Virtual size: 31KB