98828c63ec9a68a4f12fbfc40b1b17e0_NeikiAnalytics[.]exe

General

Target

98828c63ec9a68a4f12fbfc40b1b17e0_NeikiAnalytics.exe
Size

9KB
MD5

98828c63ec9a68a4f12fbfc40b1b17e0
SHA1

141886c7c1969d49fd8bc6ad61b90ae516f62be5
SHA256

0e06bce09d80b0a2ae7b81aae6483eda282e4ddd2cf6c85a8bb80ac479caaf73
SHA512

7e7b41b3f9479f283d7001543667cb329616dcfbbd14074af0b33588d4c356713561e5dccf4893414fb827ba191862f24842feed84bea7d46f1934d9111afbf3
SSDEEP

192:+16pOpOR9esbU5DNFIJO3zHyaSEZhywUe1J:w6pOIR95RsDzScZ1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
98828c63ec9a68a4f12fbfc40b1b17e0_NeikiAnalytics.exe

Files

98828c63ec9a68a4f12fbfc40b1b17e0_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

2f4c5286c92b4f7d5a0249cce7375fd0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

BitBlt
PatBlt
GetStockObject

kernel32

LoadLibraryA
FreeLibrary
GetProcAddress
Sleep
GetVersionExA
UnhandledExceptionFilter
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetTickCount
GetCommandLineA

2001b

ord9

user32

GetMessageA
IsWindow
SetForegroundWindow
CreateWindowExA
RegisterClassA
PostQuitMessage
DispatchMessageA
LoadIconA
DialogBoxParamA
SendMessageA
PeekMessageA
CharNextA
SetCursor
GetParent
PostMessageA
GetCursorPos
DefWindowProcA
SystemParametersInfoA
GetForegroundWindow
GetDC
EndDialog
ReleaseDC
GetClientRect
SetTimer
KillTimer
GetSystemMetrics
FindWindowA
TranslateMessage

msvcrt

rand
srand
_except_handler3

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f4c5286c92b4f7d5a0249cce7375fd0

Headers

File Characteristics

Imports

gdi32

kernel32

2001b

user32

msvcrt

advapi32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 512B - Virtual size: 140B

.data Size: 512B - Virtual size: 200B

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 512B - Virtual size: 140B

.data
Size: 512B - Virtual size: 200B

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB