38d09e12b5a15e4096a6ec1a6434cc3b5744e21fabf6717007ff60a027ec7d66_NeikiAnalytics

Sharing

Copy URL Twitter E-mail

General

Target

38d09e12b5a15e4096a6ec1a6434cc3b5744e21fabf6717007ff60a027ec7d66_NeikiAnalytics
Size

1.1MB
MD5

a02ef1b49fd97ef35cb303afab98f620
SHA1

e4866e6f50121b07a2d3b467db1d251c462111e3
SHA256

38d09e12b5a15e4096a6ec1a6434cc3b5744e21fabf6717007ff60a027ec7d66
SHA512

30b7d21d90dd0bb0eae39c6ca7105225303539a7139de607dc1c4fe52969ea6635aa02b847750e78a7884c8914ebf96d04cff90fb06189a352a910045f3bdf9a
SSDEEP

24576:JAiRsnQs78SVZobjZLRwMQjyclDnZJRtT8q6BP7ZzRgqcfMXOY5wXo9Bew+8itQT:gQsXVZobj5Gd6rRgqOE15wXo9B+RtQT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38d09e12b5a15e4096a6ec1a6434cc3b5744e21fabf6717007ff60a027ec7d66_NeikiAnalytics

Files

38d09e12b5a15e4096a6ec1a6434cc3b5744e21fabf6717007ff60a027ec7d66_NeikiAnalytics
.exe windows:4 windows x86 arch:x86

62f440dab5aa3319c43c550fb9566037

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetUserNameA

winmm

waveOutOpen
waveOutWrite
joyGetDevCapsA
joyGetPosEx
joyGetNumDevs
midiInStart
midiInOpen
midiInGetDevCapsA
midiInGetNumDevs
midiInClose
timeEndPeriod
timeGetTime
timeBeginPeriod
waveOutReset
waveOutPrepareHeader
waveOutClose
waveOutUnprepareHeader

wsock32

ioctlsocket
WSAGetLastError
gethostbyname
recvfrom
sendto
closesocket
bind
htons
setsockopt
inet_ntoa
WSAStartup
WSACleanup
socket
recv
send
connect
ntohl
gethostname

kernel32

SetEnvironmentVariableA
GetOEMCP
GetACP
SetStdHandle
CompareStringW
CompareStringA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
GetStringTypeW
GetStringTypeA
HeapSize
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
FlushFileBuffers
ReadFile
SetConsoleCtrlHandler
SetEnvironmentVariableW
GetStdHandle
IsBadCodePtr
SetUnhandledExceptionFilter
IsBadReadPtr
WaitForSingleObject
CloseHandle
CreateProcessA
OpenProcess
GetCurrentProcessId
CreateFileA
CopyFileA
GetTempFileNameA
GetTempPathA
GetModuleFileNameA
GetCurrentDirectoryA
GetDriveTypeA
GlobalUnlock
GlobalSize
GlobalLock
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
Sleep
SetErrorMode
GlobalFree
GlobalAlloc
MulDiv
SetEndOfFile
GetLocaleInfoW
SetHandleCount
GlobalMemoryStatus
WriteFile
GetFileType
GetCurrentThread
FormatMessageA
GetLastError
TlsFree
TlsAlloc
SetLastError
GetCurrentThreadId
LCMapStringW
TlsSetValue
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
HeapReAlloc
FatalAppExitA
TlsGetValue
SetFilePointer
VirtualFree
IsBadWritePtr
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapCreate
HeapDestroy
RaiseException
RtlUnwind
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindNextFileA
FindFirstFileA
GetFullPathNameA
CreateDirectoryA
GetCurrentProcess
TerminateProcess
ExitProcess
DeleteFileA
MoveFileA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapAlloc
InterlockedIncrement
InterlockedDecrement
GetSystemDirectoryA
VirtualAlloc
ResetEvent
HeapFree
CreateThread
CreateEventA
SetEvent

user32

CallWindowProcA
ShowCursor
ClipCursor
SetCapture
SetCursorPos
GetWindowRect
GetSystemMetrics
UnregisterHotKey
RegisterHotKey
SystemParametersInfoA
GetWindowLongA
RegisterWindowMessageA
ReleaseCapture
DestroyWindow
SetWindowPos
PostQuitMessage
SetTimer
DefWindowProcA
InvalidateRect
LoadIconA
LoadCursorA
RegisterClassA
AdjustWindowRect
GetDesktopWindow
GetDC
ReleaseDC
CreateWindowExA
SendMessageA
SetWindowLongA
ShowWindow
UpdateWindow
SetForegroundWindow
PeekMessageA
MessageBoxA
SetFocus
GetClipboardData
MessageBoxExA
OpenClipboard
TranslateMessage
CloseClipboard
GetMessageA
GetCursorPos
DispatchMessageA
wsprintfA
SetWindowTextA
GetWindowTextA
CloseWindow
ChangeDisplaySettingsA
EnumDisplaySettingsA

gdi32

CreateFontA
SetDeviceGammaRamp
GetDeviceGammaRamp
DescribePixelFormat
SetPixelFormat
SwapBuffers
SetTextColor
SetBkColor
CreateSolidBrush
GetDeviceCaps

Sections

.text
Size: 852KB - Virtual size: 850KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 124KB - Virtual size: 13.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jgd
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

62f440dab5aa3319c43c550fb9566037

Headers

File Characteristics

Imports

advapi32

winmm

wsock32

kernel32

user32

gdi32

Sections

.text Size: 852KB - Virtual size: 850KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 124KB - Virtual size: 13.1MB

.rsrc Size: 4KB - Virtual size: 2KB

.jgd Size: 4KB - Virtual size: 4KB

.text
Size: 852KB - Virtual size: 850KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 124KB - Virtual size: 13.1MB

.rsrc
Size: 4KB - Virtual size: 2KB

.jgd
Size: 4KB - Virtual size: 4KB