_CoreGFX
_CoreSFX
_Init
Static task
static1
Behavioral task
behavioral1
Sample
86e7709cf35d1e5cca1301db1860d010_NeikiAnalytics.dll
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
86e7709cf35d1e5cca1301db1860d010_NeikiAnalytics.dll
Resource
win10v2004-20240426-en
Target
86e7709cf35d1e5cca1301db1860d010_NeikiAnalytics.exe
Size
71KB
MD5
86e7709cf35d1e5cca1301db1860d010
SHA1
fcc2537d7c373fdcb590f704a207f3d8d2133b36
SHA256
c720ecb88bfde7f362226e72d4c5a753c687a65572ace3681413b3707652024a
SHA512
a7598225296cc40ddadda63bed16b040ae4fc6c27f6cf2ad56025bb2167abdc27aba9061a97b05b8ba8ad04479d82324e065ab50571e4f8faa23e332e69788e3
SSDEEP
768:NVT8tob5+bN0UI/udBN2MoLKvDWytlQTzRhM9kkJ67EEFmnjEDA4/nilYTFAj4xw:X86V+bVIIBRoKbkzvM9kByjHI0
Checks for missing Authenticode signature.
Processes:
resource |
---|
86e7709cf35d1e5cca1301db1860d010_NeikiAnalytics.exe |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
NS_CStringContainerFinish
NS_CStringContainerInit
NS_CStringSetData
NS_NewNativeLocalFile
NS_InitXPCOM2
NS_GetServiceManager
DeleteFileW
WriteFile
GetEnvironmentVariableW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
GetCurrentProcessId
GetCurrentProcess
GetLastError
CreateDirectoryW
MultiByteToWideChar
SetStdHandle
LoadLibraryW
HeapReAlloc
HeapSize
CloseHandle
ReadFile
HeapAlloc
GetFileSize
CreateFileW
GetProcessHeap
HeapFree
GetFileAttributesW
GetPrivateProfileStringW
WriteConsoleW
LCMapStringW
FlushFileBuffers
GetOEMCP
IsValidCodePage
GetModuleFileNameW
WideCharToMultiByte
GetACP
RtlUnwind
GetCurrentThreadId
DecodePointer
GetCommandLineA
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
IsProcessorFeaturePresent
GetStringTypeW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
GetModuleHandleW
SetLastError
InterlockedDecrement
GetProcAddress
Sleep
ExitProcess
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
GetConsoleMode
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
UnhookWindowsHookEx
SendMessageW
SetWindowsHookExW
GetWindowThreadProcessId
RegisterWindowMessageW
FindWindowW
CallNextHookEx
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
_CoreGFX
_CoreSFX
_Init
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ