71bd9fc94f34c70345a192f1a54fcdc0_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

71bd9fc94f34c70345a192f1a54fcdc0_NeikiAnalytics.exe
Size

135KB
MD5

71bd9fc94f34c70345a192f1a54fcdc0
SHA1

09398796f3e3ffac828fd48bcdabadaeb5b242d5
SHA256

3432c01e1e31f5e83c7c373b2305490c77751a390ea42444e64a85f44f1ebf01
SHA512

5314231b3406294b4dd98be0ac9fd37f682d5b28c8b2419453b6238f910018f05d588dbb8f5c773aa9a9fae65e4ac4dccc3af1b68f6504e2e536eb536ad73cc5
SSDEEP

1536:s7HrZtZ6sR8bl+fp1STKlbm29jKfu8/QkXTMnbB3JJmn67FoIuA76L2:UdLoblxml6yjiumTC3JJmn67FoIB76

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71bd9fc94f34c70345a192f1a54fcdc0_NeikiAnalytics.exe

Files

71bd9fc94f34c70345a192f1a54fcdc0_NeikiAnalytics.exe
.dll windows:5 windows x86 arch:x86

46263acc72bd64c2c6b8db0f99266dbf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

freeimage

_FreeImage_GetDotsPerMeterY@4
_FreeImage_GetHeight@4
_FreeImage_ConvertToGreyscale@4
_FreeImage_FlipVertical@4
_FreeImage_GetWidth@4
_FreeImage_SetBackgroundColor@8
_FreeImage_GetColorsUsed@4
_FreeImage_IsTransparent@4
_FreeImage_GetDotsPerMeterX@4
_FreeImage_LoadU@12
_FreeImage_RotateEx@48
_FreeImage_Unload@4
_FreeImage_ConvertTo8Bits@4
_FreeImage_ConvertTo24Bits@4
_FreeImage_Invert@4
_FreeImage_FIFSupportsReading@4
_FreeImage_SetDotsPerMeterY@8
_FreeImage_AdjustColors@32
_FreeImage_Dither@8
_FreeImage_GetTransparentIndex@4
_FreeImage_HasBackgroundColor@4
_FreeImage_SaveU@16
_FreeImage_Rescale@16
_FreeImage_GetBPP@4
_FreeImage_GetFIFFromFilenameU@4
_FreeImage_FIFSupportsWriting@4
_FreeImage_GetFileTypeU@8
_FreeImage_SetDotsPerMeterX@8
_FreeImage_SetTransparent@8
_FreeImage_ColorQuantize@8
_FreeImage_ConvertTo32Bits@4
_FreeImage_RotateClassic@12
_FreeImage_SetTransparentIndex@8
_FreeImage_FlipHorizontal@4
_FreeImage_ConvertTo4Bits@4
_FreeImage_GetPitch@4

kernel32

InterlockedDecrement
WideCharToMultiByte
MultiByteToWideChar
InterlockedIncrement
GetCurrentProcess
TerminateProcess
GetLastError
GetProcAddress
HeapFree
DecodePointer
EncodePointer
HeapAlloc
GetCurrentThreadId
GetCommandLineA
RaiseException
IsProcessorFeaturePresent
HeapCreate
HeapDestroy
WriteFile
GetStdHandle
GetModuleFileNameW
EnterCriticalSection
LeaveCriticalSection
SetFilePointer
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
CloseHandle
CreateFileW
ReadFile
GetConsoleCP
GetConsoleMode
GetModuleHandleW
ExitProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
Sleep
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LoadLibraryW
HeapSize
SetStdHandle
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
GetStringTypeW
WriteConsoleW
HeapReAlloc
VirtualQuery

user32

MessageBoxA
GetTopWindow

Exports

Exports

Createfreeimg_plugin

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46263acc72bd64c2c6b8db0f99266dbf

Headers

DLL Characteristics

File Characteristics

Imports

freeimage

kernel32

user32

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 5KB - Virtual size: 13KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 5KB - Virtual size: 13KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 8KB - Virtual size: 7KB