884e3ca2656a4e3537fe67a14c94ac70_NeikiAnalytics[.]exe

General

Target

884e3ca2656a4e3537fe67a14c94ac70_NeikiAnalytics.exe
Size

120KB
MD5

884e3ca2656a4e3537fe67a14c94ac70
SHA1

22af195fb32821139259ee02cfe4d7d553b40128
SHA256

f4939bd71f1e23fdd0a11ce5067641a30f5e5ce963a344ae6bbca38bd1ea08f5
SHA512

830ca9470530f93fa57549a5094b27a14ffe24c0f49625545f5dddc2dd01f262f6a84dfd2e2fffca9b39ec93ae4127595aeaf38a34b6d12840060c4b53b3b8e3
SSDEEP

3072:k7iwifrhzQ5cMDgHFZqTTeTTTfqTTTJTTTTTnTTTTTThqTTTTTTfLTTTTTTTKTTs:k8flzQ5cM8HFZlxb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
884e3ca2656a4e3537fe67a14c94ac70_NeikiAnalytics.exe

Files

884e3ca2656a4e3537fe67a14c94ac70_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

19c764ff53c94b6501431de8336ef4ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetPrivateProfileStringA
OpenProcess
Sleep
CreateProcessA
GetModuleFileNameA
GetModuleHandleA
GetStartupInfoA
CloseHandle

user32

DialogBoxParamA
SetWindowTextA
GetDesktopWindow
GetWindowRect
CopyRect
OffsetRect
SetWindowPos
GetDlgItem
SystemParametersInfoA
LoadIconA
SendMessageA
SetTimer
SendDlgItemMessageA
EndDialog

gdi32

CreateFontIndirectA
DeleteObject

wsock32

ntohl

comctl32

InitCommonControlsEx

msvcrt

_close
_write
_fstat
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_stat
_fdopen
_stricmp
_adjust_fdiv
__setusermatherr
_read
_errno
strrchr
_access
vfprintf
remove
_snprintf
_mkdir
_purecall
free
??3@YAXPAX@Z
malloc
_beginthreadex
atoi
fprintf
_iob
fopen
fclose
_chdir
_putenv
strlen
??2@YAPAXI@Z
strcmp
__p___argc
__p___argv
memcmp
_open
fwrite
memset
strcpy
_ftol
fseek
fread
memcpy
exit
__dllonexit
_onexit
_exit
_XcptFilter
_acmdln
__getmainargs
_initterm

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

19c764ff53c94b6501431de8336ef4ed

Headers

File Characteristics

Imports

kernel32

user32

gdi32

wsock32

comctl32

msvcrt

Sections

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 6KB - Virtual size: 5KB

.rsrc Size: 92KB - Virtual size: 91KB

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 92KB - Virtual size: 91KB