efd3776b3b94d15c1cdcbaed7b7c87d0_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

efd3776b3b94d15c1cdcbaed7b7c87d0_NeikiAnalytics.exe
Size

3.7MB
MD5

efd3776b3b94d15c1cdcbaed7b7c87d0
SHA1

a0a9cee1fa4b3bb9fb048858ad1d5c3f76c85b63
SHA256

3f970e53adc18a7b8fff8f11b7a01bdec273a127d0e1b7a5d7b228878f2c4487
SHA512

9386539d463efbde1426fc7b95cc92290c2157902dee127049b44bd8c928e13a0f89c5a7df2aef4ec864d1002aa7303ca48eae0ca434111e725f7e3bcb6df510
SSDEEP

98304:jXQcOyWJK46e0g3YF/a/TIARiFLOAkGkzdnEVomFHKnPYBG:7uyWsg/TIARiFLOyomFHKnPuG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
efd3776b3b94d15c1cdcbaed7b7c87d0_NeikiAnalytics.exe

Files

efd3776b3b94d15c1cdcbaed7b7c87d0_NeikiAnalytics.exe
.exe windows:6 windows x86 arch:x86

35febf431511c57b0369b0c7f7969e6f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\work\PokerGraphTool_Poker_V2\Release_폭풍전야\Poker_V2_천궁21.pdb

Imports

kernel32

WaitForSingleObject
SetThreadPriority
ResumeThread
GetCurrentThread
lstrcmpA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
SystemTimeToTzSpecificLocalTime
CompareStringA
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalFlags
GetACP
lstrcpyA
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetOEMCP
GetCPInfo
GetCurrentDirectoryA
VerSetConditionMask
VerifyVersionInfoA
DeleteFileA
CreateFileA
FlushFileBuffers
GetFileSize
GetFullPathNameA
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
lstrcmpiA
GetVolumeInformationA
GetFileAttributesA
Sleep
GetWindowsDirectoryA
FindResourceExW
SearchPathA
GetTickCount
GetProfileIntA
GetTempPathA
GetTempFileNameA
SetErrorMode
GetFileAttributesExA
GetFileSizeEx
GetFileTime
ResetEvent
WaitForSingleObjectEx
CreateEventW
SetEvent
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
OutputDebugStringW
RtlUnwind
GetSystemInfo
VirtualAlloc
VirtualQuery
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
HeapQueryInformation
QueryPerformanceFrequency
SetStdHandle
GetFileType
ExitProcess
GetStdHandle
GetStringTypeW
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleCP
LCMapStringW
GetDriveTypeW
GetTimeZoneInformation
FindFirstFileExA
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
CreateFileW
WriteConsoleW
GetCurrentDirectoryW
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
LoadLibraryW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
CloseHandle
GetVersionExA
UnhandledExceptionFilter
GetCurrentProcessId
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
RaiseException
DecodePointer
GetModuleFileNameA
CreateDirectoryA
WideCharToMultiByte
FindResourceW
SizeofResource
LockResource
FileTimeToSystemTime
LoadResource

user32

DestroyMenu
GetMenuItemInfoA
SystemParametersInfoA
GetAsyncKeyState
EnableScrollBar
MessageBeep
HideCaret
InvertRect
LoadCursorA
LoadCursorW
NotifyWinEvent
IsZoomed
RealChildWindowFromPoint
TrackMouseEvent
DestroyIcon
LoadImageW
CopyImage
MapDialogRect
CharUpperA
LoadMenuW
DeleteMenu
WindowFromPoint
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
UnionRect
MonitorFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
WaitMessage
SetParent
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
LoadImageA
SetCursorPos
BringWindowToTop
LockWindowUpdate
GetDoubleClickTime
GetIconInfo
CopyIcon
ModifyMenuA
DestroyAcceleratorTable
SetClassLongA
GetUpdateRect
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
GetComboBoxInfo
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
FrameRect
IsClipboardFormatAvailable
GetNextDlgGroupItem
RegisterClipboardFormatA
CharUpperBuffA
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
CopyAcceleratorTableA
PostThreadMessageA
SubtractRect
IsCharLowerA
MapVirtualKeyExA
DestroyCursor
CreateMenu
GetWindowRgn
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
IsWindowEnabled
CheckDlgButton
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
ShowOwnedPopups
DrawIconEx
EqualRect
CopyRect
MapWindowPoints
MessageBoxA
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
GetFocus
GetParent
OffsetRect
SetRectEmpty
SendDlgItemMessageA
FillRect
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
UnhookWindowsHookEx
RemoveMenu
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
SendMessageA
EnableWindow
InvalidateRect
GetSysColor
wsprintfA
GetWindowRect
MoveWindow
IsIconic
SetCapture
ReleaseCapture
GetClientRect
GetCursorPos
ScreenToClient
SetRect
PtInRect
IsWindow
SetTimer
KillTimer
GetSystemMetrics
GetSystemMenu
CreatePopupMenu
EnableMenuItem
AppendMenuA
DrawIcon
ClientToScreen
LoadIconW
UnregisterClassA
PostQuitMessage
TranslateMessage
GetMessageA
IsRectEmpty
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawFrameControl
DrawEdge
GetWindowLongA
SetCursor
IntersectRect
InflateRect
MapVirtualKeyA
GetKeyNameTextA
DrawStateA
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
SetWindowLongA
EndDialog

gdi32

ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CombineRgn
CreateDCA
GetDeviceCaps
CreateBitmap
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
DeleteObject
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
OffsetWindowOrgEx
SaveDC
SelectClipRgn
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontA
GetStockObject
Rectangle
SelectObject
DeleteDC
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutA
TextOutA
MoveToEx
GetObjectA
RestoreDC
CopyMetaFileA
GetTextFaceA
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
CreateFontIndirectA
SetRectRgn
DPtoLP
SetPaletteEntries
ExtFloodFill
CreateEllipticRgn
Ellipse
GetBkColor
GetTextColor
GetTextExtentPoint32A
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsA
CreateRoundRectRgn
CreateDIBSection
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
GetRgnBox
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
EnumFontFamiliesExA

shell32

SHGetSpecialFolderLocation
SHGetMalloc
SHBrowseForFolderA
SHGetDesktopFolder
SHGetFileInfoA
SHAppBarMessage
ShellExecuteA
DragFinish
DragQueryFileA
SHGetPathFromIDListA

oleaut32

SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringLen
SysAllocStringByteLen
VariantChangeType
VariantClear
VariantInit
SysFreeString
VariantCopy
VarBstrFromDate
SysAllocString
LoadTypeLi

msimg32

TransparentBlt
AlphaBlend

shlwapi

PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathFindFileNameA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeText
DrawThemeParentBackground
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetWindowTheme
IsAppThemed
OpenThemeData

gdiplus

GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipBitmapUnlockBits
GdipSetInterpolationMode
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipGetImagePalette
GdipCreateFromHDC
GdipAlloc
GdiplusShutdown
GdipGetImagePixelFormat
GdipDrawImageRectI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegEnumKeyA
RegQueryValueA
RegEnumValueA
RegEnumKeyExA

ole32

OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoTaskMemFree
CoTaskMemAlloc
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoDisconnectObject
CoInitialize
CoCreateGuid
CoCreateInstance
CoInitializeEx
CoUninitialize
ReleaseStgMedium
OleDuplicateData

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 326KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35febf431511c57b0369b0c7f7969e6f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

shell32

oleaut32

msimg32

shlwapi

uxtheme

gdiplus

oleacc

imm32

winmm

winspool.drv

advapi32

ole32

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 326KB - Virtual size: 326KB

.data Size: 22KB - Virtual size: 46KB

.gfids Size: 104KB - Virtual size: 104KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 131KB - Virtual size: 130KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 326KB - Virtual size: 326KB

.data
Size: 22KB - Virtual size: 46KB

.gfids
Size: 104KB - Virtual size: 104KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 131KB - Virtual size: 130KB