3a4153a8806a8e3ef1ce5b8100c5db30_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

3a4153a8806a8e3ef1ce5b8100c5db30_NeikiAnalytics.exe
Size

115KB
MD5

3a4153a8806a8e3ef1ce5b8100c5db30
SHA1

473665330fa8207a5d2288631aeda40bddd09cb7
SHA256

27e1b4cb610afb0745961941a635db9d08ca9f15109283bab78211283da983b4
SHA512

99d49d3941701384a171b7338c2a9e133073953f0cb6c5bd8e2f3c834987dec1caac2d1d4ed8fad954a779ec9415a8834dd82c83ff5d13096972337e129a6e0c
SSDEEP

1536:Wc4L3VE9HpLxsx/SajmVKUN8bBOYVPwV+2ZJea8+aDg:3g+9HpalSajmVAQYVoVFZJeDDk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a4153a8806a8e3ef1ce5b8100c5db30_NeikiAnalytics.exe

Files

3a4153a8806a8e3ef1ce5b8100c5db30_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

b5fc9f43cec3c84a808dc4b37a32e8a1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
wcslen
__getmainargs
_acmdln
exit
_XcptFilter
_exit
atoi
_initterm
wcschr
wcsrchr
free
malloc

advapi32

RegDeleteValueW
RegCreateKeyExW
RegCreateKeyW
RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW
RegCloseKey

kernel32

_lclose
GetLocaleInfoW
LocalReAlloc
CreateFileW
FreeLibrary
IsBadCodePtr
GetVersionExW
MulDiv
SetEvent
WaitForSingleObject
GetPrivateProfileStringW
GetTickCount
GlobalGetAtomNameW
GetFileAttributesW
lstrcpynW
SetErrorMode
GlobalAddAtomW
GlobalDeleteAtom
GetModuleHandleA
GetStartupInfoA
ExitThread
GetProfileIntW
CreateProcessW
CreateThread
CloseHandle
lstrcmpiW
LoadLibraryW
ExitProcess
SearchPathW
lstrcatW
GetDriveTypeW
WideCharToMultiByte
FormatMessageW
GetCurrentThreadId
GetProcAddress
MultiByteToWideChar
lstrlenW
lstrcmpW
GlobalSize
GlobalAlloc
GlobalFree
GlobalLock
GetLastError
GlobalUnlock
LocalFree
LocalAlloc
lstrcpyW
ReadFile
Sleep
GetProfileStringW
GetACP
CreateEventW
LoadLibraryA

gdi32

CreateMetaFileW
ExcludeClipRect
CloseMetaFile
GetPaletteEntries
CreatePalette
SaveDC
RealizePalette
RestoreDC
GetDIBits
GetSystemPaletteEntries
GetSystemPaletteUse
SetBkColor
StretchDIBits
SetStretchBltMode
TextOutW
GetROP2
SetROP2
GetBkMode
SetBkMode
Rectangle
CreateCompatibleDC
StretchBlt
DeleteDC
CreateFontIndirectW
SelectPalette
GetObjectW
GetDeviceCaps
GetTextExtentPoint32W
CreateBitmap
CreatePatternBrush
DeleteMetaFile
CreateSolidBrush
DeleteObject
GetStockObject
SelectObject
SetTextColor
SetMapMode
SetViewportOrgEx
SetViewportExtEx
SetWindowOrgEx
SetWindowExtEx
CreatePen
PatBlt
MoveToEx
LineTo
CreateCompatibleBitmap
Polygon

user32

GetWindowTextW
KillTimer
ReleaseCapture
DefWindowProcW
EndPaint
FillRect
GetSysColor
GetClientRect
BeginPaint
RegisterClassW
LoadCursorW
wsprintfW
CallWindowProcW
PostMessageW
GetParent
ClientToScreen
DialogBoxParamW
WinHelpW
GetDlgCtrlID
SetWindowTextW
LoadStringW
SetDlgItemInt
MessageBeep
GetFocus
CheckRadioButton
EndDialog
GetDlgItemInt
IsDlgButtonChecked
SetFocus
GetDlgItem
SetWindowLongW
CheckDlgButton
SendDlgItemMessageW
SetDlgItemTextW
GetDlgItemTextW
MapWindowPoints
OffsetRect
DrawMenuBar
ModifyMenuW
IntersectRect
GetWindow
IsWindow
CharPrevW
GetWindowThreadProcessId
GetKeyState
GetAsyncKeyState
SetWindowPos
SetParent
wsprintfA
IsIconic
SetCursor
SetActiveWindow
BringWindowToTop
AdjustWindowRect
SetRect
GetSystemMetrics
IsRectEmpty
GetActiveWindow
ShowWindow
EnableMenuItem
GetMenu
IsWindowVisible
MessageBoxW
EnableWindow
CopyRect
GetWindowRect
DestroyWindow
IsCharAlphaW
IsCharAlphaNumericW
InvalidateRect
MoveWindow
InflateRect
UpdateWindow
FindWindowW
LoadIconW
CopyAcceleratorTableW
LoadAcceleratorsW
GetSubMenu
LoadMenuW
SystemParametersInfoW
DispatchMessageW
PeekMessageW
MsgWaitForMultipleObjects
SetForegroundWindow
SetRectEmpty
SetMenu
CharLowerBuffW
InsertMenuW
DeleteMenu
GetWindowPlacement
DestroyMenu
CreateMenu
RemoveMenu
GetMenuItemCount
GetDesktopWindow
CheckMenuItem
EqualRect
FrameRect
DrawIcon
DrawTextW
UnhookWindowsHook
TranslateMessage
TranslateAcceleratorW
GetMessageW
SetWindowsHookW
IsWindowEnabled
RedrawWindow
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
LoadImageW
IsZoomed
PostQuitMessage
RegisterDeviceNotificationW
UnregisterDeviceNotification
DestroyIcon
RegisterClipboardFormatW
GetClassNameW
ShowCursor
ReleaseDC
ValidateRect
GetWindowLongW
SendMessageW
SetTimer
GetMessagePos
PtInRect
GetDialogBaseUnits
wvsprintfW
InvertRect
CreateWindowExW
ScreenToClient
GetDC
SetCapture

comctl32

CreateStatusWindowW
ord17
CreateToolbarEx

winmm

OpenDriver
CloseDriver
mciSendStringW
mciSendCommandW
sndPlaySoundW
mciGetErrorStringW

shell32

SHGetFileInfoW
ExtractIconW
DragAcceptFiles
DragFinish
DragQueryFileW
ShellAboutW

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b5fc9f43cec3c84a808dc4b37a32e8a1

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

comctl32

winmm

shell32

Sections

.text Size: 79KB - Virtual size: 79KB

.data Size: 6KB - Virtual size: 32KB

.rsrc Size: 28KB - Virtual size: 65KB

.text
Size: 79KB - Virtual size: 79KB

.data
Size: 6KB - Virtual size: 32KB

.rsrc
Size: 28KB - Virtual size: 65KB