b1526b18b5328fd409218aeab59b05e0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

b1526b18b5328fd409218aeab59b05e0_NeikiAnalytics.exe
Size

4.7MB
MD5

b1526b18b5328fd409218aeab59b05e0
SHA1

4d2377829adf89343c97f3236ee5b9cf69be4e01
SHA256

a330d7ea46d35062478da864c58bc8b2db9d632172e7c767761a925334ae3ddd
SHA512

88a51c11a91d8264000cd9869d99651a3e4b75adc7ed9f532a39ad2e598a5b815cb54308855b130ee72ff399a8b70ff9793cec5959b521a53cff1302a2e2ecc1
SSDEEP

49152:gDxVSwAn0T0XHoIM3IASFKKql+KSS5IMMf3x1bbaRCGtHuX3vbQ:kCM3d7l+KSS5IMMf3x1bbaRCGFuX3DQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b1526b18b5328fd409218aeab59b05e0_NeikiAnalytics.exe

Files

b1526b18b5328fd409218aeab59b05e0_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

9438c0090df63d9d663076257d5d420c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadCursorA
RegisterClassA
LoadIconA
FindWindowA
SetTimer
SetCursor
EnumDisplayDevicesA
ChangeDisplaySettingsExA
LockWindowUpdate
SetWindowRgn
GetMenu
wvsprintfW
CreateWindowExA
ExitWindowsEx
GetSystemMetrics
CreateDialogParamA
SetRect
GetSystemMenu
ShowWindow
UpdateWindow
PeekMessageA
TranslateMessage
DispatchMessageA
EnumDisplayMonitors
GetMonitorInfoA
IsDlgButtonChecked
EnableWindow
GetWindowTextA
GetForegroundWindow
LoadBitmapA
PostQuitMessage
ReleaseCapture
KillTimer
SetFocus
GetDlgItem
DeleteMenu
EndDialog
ReleaseDC
MsgWaitForMultipleObjects
wvsprintfA
PostThreadMessageA
RegisterWindowMessageA
GetQueueStatus
GetClassNameA
CheckDlgButton
CheckRadioButton
ShowCursor
EnumDisplaySettingsA
EnableMenuItem
GetWindow
DrawTextA
SendDlgItemMessageA
GetDlgItemInt
SetDlgItemInt
GetClientRect
SetClipboardData
MessageBeep
SetCursorPos
mouse_event
MoveWindow
LoadStringA
GetMessageA
UnregisterClassA
OpenClipboard
IsClipboardFormatAvailable
GetClipboardData
CloseClipboard
EmptyClipboard
GetCapture
SetCapture
GetCursorPos
WindowFromPoint
ToAscii
MapVirtualKeyA
keybd_event
LoadMenuA
SetDlgItemTextA
MessageBoxA
GetDlgItemTextA
DestroyMenu
ChangeDisplaySettingsA
SetClassLongA
FindWindowExA
SystemParametersInfoA
GetSysColor
SetSysColors
SetParent
GetWindowLongA
SetWindowLongA
BringWindowToTop
GetDesktopWindow
DefWindowProcA
CheckMenuItem
WinHelpA
wsprintfA
GetSubMenu
TrackPopupMenu
SendMessageA
IsWindow
PostMessageA
InvalidateRect
SetWindowPos
SetForegroundWindow
SetWindowTextA
BeginPaint
EndPaint
DialogBoxParamA
GetWindowRect
ClientToScreen
GetDC
DestroyWindow

gdi32

GetStockObject
DeleteObject
DeleteDC
CreateCompatibleDC
BitBlt
SelectObject
GdiFlush
SetBkColor
SetBkMode
SetTextColor
StretchBlt
CreateCompatibleBitmap
CreateDCA
SetDIBits
Rectangle
CreateSolidBrush
CreatePen
GetDIBits
GetTextMetricsA
OffsetRgn
CombineRgn
CreateRectRgn
LineTo
MoveToEx
RealizePalette
SelectPalette
CreatePalette
GetNearestPaletteIndex
StretchDIBits
SetDIBitsToDevice
SetROP2
CreateFontIndirectA
CreateFontA
GetDeviceCaps

kernel32

GetFileAttributesA
GetTimeZoneInformation
GetSystemTime
InterlockedDecrement
InterlockedIncrement
GetFileType
CreateDirectoryA
MoveFileA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
DeleteFileW
GetFileAttributesW
SetEnvironmentVariableA
FindFirstFileW
FindNextFileW
FindFirstFileA
FindNextFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
RemoveDirectoryW
RtlUnwind
FlushFileBuffers
FatalAppExitA
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
WaitForMultipleObjects
GetCurrentThread
GetThreadPriority
SetThreadPriority
GetCurrentThreadId
GetACP
CreateSemaphoreA
ResetEvent
SetEvent
LCMapStringA
LCMapStringW
SetStdHandle
SetHandleCount
GetStdHandle
TerminateProcess
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetOEMCP
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetConsoleCtrlHandler
CompareStringA
CompareStringW
GetLocaleInfoW
lstrlenW
WinExec
Sleep
GetLocalTime
GetTickCount
WritePrivateProfileStringA
GetModuleFileNameA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetCurrentDirectoryA
GetWindowsDirectoryA
GetVersionExA
GetLastError
CopyFileA
GlobalUnlock
GlobalLock
CloseHandle
WaitForSingleObject
CreateEventA
GlobalAlloc
WriteProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalHandle
_lclose
_lwrite
OpenFile
GetVolumeInformationA
MultiByteToWideChar
WideCharToMultiByte
GetShortPathNameA
GetSystemDirectoryA
WriteFile
CreateFileA
GetCurrentProcess
LocalFree
LocalAlloc
HeapFree
HeapAlloc
GetProcessHeap
SetCurrentDirectoryA
GetSystemPowerStatus
SetEndOfFile
SetFilePointer
RemoveDirectoryA
CreateFileW
lstrcmpiW
lstrcpyW
GetModuleFileNameW
DeleteFileA
ReadFile
GetFileSize
SetFileAttributesA
CreateThread
GetProcAddress
LoadLibraryA
FreeLibrary
GetSystemDefaultLangID
_lread
_llseek
_lopen
_hread
LocalUnlock
LocalLock
MulDiv
GetDiskFreeSpaceA
GetFullPathNameA
GetDriveTypeA
GetCurrentProcessId
GetOverlappedResult
DeviceIoControl
GetModuleHandleA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
InitializeCriticalSection
DeleteCriticalSection
InterlockedExchange
LeaveCriticalSection
EnterCriticalSection

comdlg32

GetOpenFileNameA
ChooseColorA
GetSaveFileNameA

winmm

timeGetTime
mixerClose
mixerSetControlDetails
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerGetDevCapsA
mixerOpen
timeSetEvent

msvfw32

ICGetInfo
ICOpen
ICInfo
ICClose
ICSendMessage
DrawDibDraw
MCIWndCreateA
DrawDibClose
DrawDibOpen

avicap32

capGetDriverDescriptionA

avifil32

AVIFileInit
AVIFileOpenA
AVIFileInfoA
AVIFileGetStream
AVIStreamInfoA
AVIStreamReadFormat
AVIStreamRelease
AVIFileRelease
AVIFileExit

msacm32

acmMetrics

ole32

CoCreateInstance
StgCreateDocfile
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
GetRunningObjectTable
CreateItemMoniker
CoUninitialize

oleaut32

SysFreeString
SysAllocString
OleCreatePropertyFrame

shell32

ShellExecuteExA
ShellExecuteA

advapi32

RegOpenKeyExA
RegDeleteValueA
RegEnumValueA
RegEnumKeyA
RegSetValueExA
RegCreateKeyExA
AllocateAndInitializeSid
GetLengthSid
RegSetKeySecurity
FreeSid
InitializeSecurityDescriptor
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
SetFileSecurityA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegDeleteKeyA
RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegEnumKeyExA

Sections

.text
Size: 1000KB - Virtual size: 999KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 248KB - Virtual size: 9.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9438c0090df63d9d663076257d5d420c

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comdlg32

winmm

msvfw32

avicap32

avifil32

msacm32

ole32

oleaut32

shell32

advapi32

Sections

.text Size: 1000KB - Virtual size: 999KB

.rdata Size: 48KB - Virtual size: 45KB

.data Size: 248KB - Virtual size: 9.2MB

.data1 Size: 8KB - Virtual size: 6KB

.rsrc Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 1000KB - Virtual size: 999KB

.rdata
Size: 48KB - Virtual size: 45KB

.data
Size: 248KB - Virtual size: 9.2MB

.data1
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 3.4MB - Virtual size: 3.4MB