3b20406ddd0c99d5d30b98ace4cfb420_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

3b20406ddd0c99d5d30b98ace4cfb420_NeikiAnalytics.exe
Size

92KB
MD5

3b20406ddd0c99d5d30b98ace4cfb420
SHA1

17a0a2992119eef6f100f9634bbd7326551b227d
SHA256

fe722a7aea3b7badc22d80cf2056d09cd8248a9ed1c63ca9417e2a40bf0d7dfa
SHA512

963ea03d4a4604d6fe2628173c5db46ee40b327d63bcf548d83b440784c3fd1677ed7ea8f702c5bddc5d5afb7c553bfbbc602387f20edf387d48d756168fc510
SSDEEP

1536:Ow0BdeTxqaLb+J0wonDsIy39L3DkmsmL8Faj2:OJd4cae+lA/x3DkmXkK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b20406ddd0c99d5d30b98ace4cfb420_NeikiAnalytics.exe

Files

3b20406ddd0c99d5d30b98ace4cfb420_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

c58a040723c5935b2744838baa3cf1f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
LockResource
GetDiskFreeSpaceA
DeleteFileA
ExitThread
RaiseException
FreeResource
GetSystemDefaultLangID
MoveFileA
VirtualAlloc
GetStringTypeA
GetCPInfo
SetHandleCount
LocalAlloc
WideCharToMultiByte
HeapDestroy
GetLocalTime
lstrcpynA
GetDateFormatA
VirtualAllocEx
WaitForSingleObject
GetUserDefaultLCID
GetCurrentThread
ExitProcess
GetACP
GetVersionExA
SetFilePointer
MoveFileExA
LocalFree
GetFullPathNameA
GlobalAlloc
GetOEMCP
FindFirstFileA
SizeofResource
GetModuleHandleA
GetStartupInfoA
MulDiv
GlobalAddAtomA
GetProcessHeap
GetLocaleInfoA
InitializeCriticalSection
lstrcmpiA
GetCommandLineA
GetStringTypeW
CreateThread
LoadLibraryExA
EnumCalendarInfoA
LoadLibraryA
GetCurrentProcess
VirtualFree
GetThreadLocale
CreateFileA
GetCurrentProcessId
EnterCriticalSection
CloseHandle
FormatMessageA
LoadResource
ResetEvent
GetLastError
CompareStringA
FindResourceA
GetStdHandle
SetErrorMode
WriteFile
GetFileAttributesA
lstrcatA
GetCurrentThreadId
lstrcmpA
GetEnvironmentStrings
Sleep
LocalReAlloc
GetProcAddress
GetFileType
lstrcpyA
VirtualQuery
FreeLibrary
SetLastError
GlobalDeleteAtom
GetModuleFileNameA
SetEndOfFile
SetThreadLocale
GetVersion
SetEvent
GetTickCount
CreateEventA
GlobalFindAtomA
HeapAlloc
DeleteCriticalSection

msvcrt

memmove
cos
memcpy

version

VerInstallFileA

comctl32

ImageList_Create
ImageList_Remove
ImageList_Write
ImageList_DragShowNolock
ImageList_Destroy
ImageList_DrawEx
ImageList_Read
ImageList_Draw
ImageList_GetBkColor
ImageList_Add

oleaut32

OleLoadPicture
RegisterTypeLib
SysAllocStringLen
SysReAllocStringLen
SafeArrayPtrOfIndex
SafeArrayUnaccessData
VariantCopyInd

user32

SetCapture
UnregisterClassA
GetDlgItem
InsertMenuItemA
CharToOemA
IsWindowUnicode
GetWindowTextA
WindowFromPoint
DefFrameProcA
ShowScrollBar
MoveWindow
GetWindowLongA
UnhookWindowsHookEx
GetClipboardData
IsDialogMessageA
GetDCEx
EnableMenuItem
FindWindowA
GetWindowPlacement
SetMenuItemInfoA
IsZoomed
EndPaint
GetDesktopWindow
SetScrollRange
DefWindowProcA
GetScrollInfo
DrawIcon
IsWindow
GetCursor
DrawIconEx
IsIconic
CreateWindowExA
IsWindowEnabled
GetFocus
ChildWindowFromPoint
GetActiveWindow
ClientToScreen
DeleteMenu
DrawEdge
LoadCursorA
IsRectEmpty
KillTimer
DispatchMessageW
GetMenuItemInfoA
GetMessagePos
GetLastActivePopup
EmptyClipboard
EqualRect
MessageBeep
IsDialogMessageW
GetWindowThreadProcessId
EnableWindow
GetSysColor
GetTopWindow
GetForegroundWindow
ShowWindow
GetKeyboardType
OffsetRect
SendMessageW
GetClientRect
MapWindowPoints
CharNextW
SetClassLongA
CharLowerA
InflateRect
TranslateMDISysAccel
PtInRect
MessageBoxA
RemovePropA
UpdateWindow
FillRect
SendMessageA
SetRect
GetCursorPos
SystemParametersInfoA
WaitMessage
GetScrollPos
GetMenuStringA
DefMDIChildProcA
ActivateKeyboardLayout
wsprintfA
RegisterWindowMessageA
GetWindowLongW
SetCursor
MapVirtualKeyA
ReleaseCapture
OemToCharA
IsChild
RemoveMenu
RedrawWindow
InsertMenuA
PeekMessageW
DestroyWindow
BeginPaint
GetDC
GetMenuItemCount
GetSystemMenu
SetScrollInfo
GetSystemMetrics
GetSubMenu
OpenClipboard
RegisterClassA
DrawFrameControl
GetClassNameA
GetIconInfo
EnumChildWindows
SetWindowLongA
GetMenu
DispatchMessageA
CreateIcon
CreatePopupMenu
GetSysColorBrush
TrackPopupMenu
DestroyIcon
RegisterClipboardFormatA
CharUpperBuffA
SetWindowsHookExA
GetMenuState
PostQuitMessage
GetWindowRect
DrawAnimatedRects
EnableScrollBar
SetWindowPlacement
SetScrollPos
SetMenu
GetWindowDC
LoadKeyboardLayoutA
LoadStringA
CharLowerBuffA
InvalidateRect
ScrollWindow
DrawMenuBar
FrameRect
SetTimer
DestroyMenu
SetPropA
GetParent
PostMessageA
GetKeyboardState
ShowOwnedPopups
DestroyCursor
CallNextHookEx
CallWindowProcA
TranslateMessage
GetKeyNameTextA
MsgWaitForMultipleObjects
GetWindow
SetParent
SetWindowLongW
EnumWindows
GetKeyboardLayoutList
GetKeyState
IntersectRect
AdjustWindowRectEx
SetClipboardData
SetWindowPos
ScreenToClient
GetCapture
ReleaseDC
GetScrollRange
LoadIconA
SetFocus
CreateMenu
GetClassLongA
GetKeyboardLayout
DrawTextA
CloseClipboard
SetWindowTextA
GetClassInfoA
LoadBitmapA
PeekMessageA
EnumThreadWindows
CharNextA
GetKeyboardLayoutNameA
SetForegroundWindow
GetMenuItemID
IsWindowVisible
SetActiveWindow
GetPropA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 413B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c58a040723c5935b2744838baa3cf1f7

Headers

File Characteristics

Imports

kernel32

msvcrt

version

comctl32

oleaut32

user32

Sections

.text Size: 33KB - Virtual size: 33KB

.tls Size: 512B - Virtual size: 413B

.bss Size: 57KB - Virtual size: 56KB

.text
Size: 33KB - Virtual size: 33KB

.tls
Size: 512B - Virtual size: 413B

.bss
Size: 57KB - Virtual size: 56KB