29f04d504a39d5d6aabdc33870645f2a35a31758a90bdd5b83ce0a1e97695943_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

29f04d504a39d5d6aabdc33870645f2a35a31758a90bdd5b83ce0a1e97695943_NeikiAnalytics
Size

248KB
MD5

cf9d87c50a6de8d1ad70fef6b78b65b0
SHA1

d29652f0e3996e802659707d80c29b5ab13d7b66
SHA256

29f04d504a39d5d6aabdc33870645f2a35a31758a90bdd5b83ce0a1e97695943
SHA512

7908099f1b9bb554c37ce1917de76208997e88bb6b76f7d83fb43a987c0f29965122c4b6e49c9e7c466e60f41733a58463a60f7930f926a8310ea7a1bb8fd05f
SSDEEP

3072:9QF/xw3OCZHg2tBTbZ0VYFBfqp5R8IU3vC17/lklaATlpG8sqFZGS:eF/xwsoIiq17/GTGq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29f04d504a39d5d6aabdc33870645f2a35a31758a90bdd5b83ce0a1e97695943_NeikiAnalytics

Files

29f04d504a39d5d6aabdc33870645f2a35a31758a90bdd5b83ce0a1e97695943_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

e15f6911bd55ccd1c36739ded62c01ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
ReadFile
WriteFile
GetFileAttributesA
IsDBCSLeadByte
SetFilePointer
lstrcpyA
CreateFileA
GetPrivateProfileStringA
WritePrivateProfileStringA
Sleep
SetPriorityClass
GetCurrentProcess
GetLocalTime
GlobalLock
GlobalUnlock
GlobalFree
GetPrivateProfileIntA
GetTickCount
CloseHandle
GetCPInfo
SetStdHandle
LoadLibraryA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
VirtualAlloc
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetOEMCP
GetACP
GetCommandLineA
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
HeapSize
HeapAlloc
HeapReAlloc
RaiseException
GetProcAddress
WaitForMultipleObjects
HeapFree
GetVersion
GlobalAlloc
WaitForSingleObject
TerminateThread
CreateEventA
CreateThread
FlushFileBuffers
GetModuleHandleA
TerminateProcess
ExitProcess
GetStartupInfoA

user32

DrawMenuBar
GetClientRect
GetWindowRect
EnableMenuItem
CheckMenuItem
MoveWindow
SetWindowLongA
FindWindowA
ShowWindow
SetForegroundWindow
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
UpdateWindow
InsertMenuA
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
BeginPaint
LoadBitmapA
EndPaint
DefWindowProcA
PostQuitMessage
GetSystemMetrics
GetAsyncKeyState
MessageBoxA
SystemParametersInfoA
DialogBoxParamA
GetCursorPos
ShowCursor
SetCursorPos
ClipCursor
GetSystemMenu
CharNextA
SendDlgItemMessageA
GetDlgCtrlID
GetDlgItem
GetWindowTextA
SendMessageA
EnableWindow
wsprintfA
SetWindowTextA
EndDialog
PostMessageA
SetDlgItemTextA
ClientToScreen
SetRect
GetDC
ReleaseDC
GetMenu
GetWindowLongA

gdi32

CreateCompatibleDC
GetSystemPaletteEntries
DeleteObject
DeleteDC
BitBlt
SelectObject
GetObjectA
GetStockObject

ddraw

DirectDrawCreate

dsound

ord1

winmm

joyGetNumDevs
timeBeginPeriod
timeEndPeriod
joyGetPos

shell32

DragAcceptFiles
DragQueryFileA
DragFinish

comdlg32

GetOpenFileNameA
GetSaveFileNameA

Sections

.text
Size: 184KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e15f6911bd55ccd1c36739ded62c01ae

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ddraw

dsound

winmm

shell32

comdlg32

Sections

.text Size: 184KB - Virtual size: 181KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 32KB - Virtual size: 1.7MB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 184KB - Virtual size: 181KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 32KB - Virtual size: 1.7MB

.rsrc
Size: 16KB - Virtual size: 13KB