3b622884ca7c7f250cfccfe805da6fb0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

3b622884ca7c7f250cfccfe805da6fb0_NeikiAnalytics.exe
Size

6.4MB
MD5

3b622884ca7c7f250cfccfe805da6fb0
SHA1

e54736ba9124e3cf3639b6db4f40127e5127d635
SHA256

d777c7c53c73ca299f6160918285c49de58386d0bed3dd4d9ec34344d581319c
SHA512

193d1137ef14f74629ad0b910b42ae232eaf397eeb0508855130ccaeec2b88828b889ccc6070c21dc3462975f95568c5e9c21527ab6d8b38204e0ee453d1e104
SSDEEP

196608:5iWYdR2e/l+GParxcOdpaoM15b0hW+h30s6lMHu3oL:5iWmDdxParxcOfat190hlilMHGoL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b622884ca7c7f250cfccfe805da6fb0_NeikiAnalytics.exe

Files

3b622884ca7c7f250cfccfe805da6fb0_NeikiAnalytics.exe
.dll windows:6 windows x86 arch:x86

530b99e0a7ce8f163a9a2a7464bc6e86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetModuleHandleW
SignalObjectAndWait
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
WriteFile
LoadLibraryExW
OutputDebugStringW
GetStartupInfoW
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
LCMapStringW
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FlushFileBuffers
SetStdHandle
ReadFile
ReadConsoleW
CloseHandle
FileTimeToLocalFileTime
GetExitCodeThread
ExitThread
FileTimeToSystemTime
GetUserDefaultLangID
FreeEnvironmentStringsW
GetPrivateProfileStringW
FindResourceW
GetDriveTypeW
VirtualQueryEx
EnumResourceNamesW
GetTempFileNameW
lstrcpyW
DeleteFileW
GetUserDefaultUILanguage
GetThreadPriority
LockResource
HeapCreate
GetEnvironmentStringsW
GetOEMCP
GetACP
IsValidCodePage
SetLastError
IsDebuggerPresent
GetProcessHeap
HeapAlloc
HeapFree
EncodePointer
DecodePointer
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
GetStdHandle
GetFileType
GetModuleFileNameW
GetModuleHandleExW
WriteConsoleW
GetCommandLineA
GetCurrentThreadId
IsProcessorFeaturePresent
ExitProcess
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
HeapSize
CreateFileW

user32

RemoveMenu
DestroyWindow
GetMessageA
SendDlgItemMessageA
SetKeyboardState
KillTimer
IsZoomed
CharLowerBuffW
GetClientRect
CreateMenu
SetFocus
GetMenuItemInfoW
SetRect
PeekMessageA
GetClassNameW
EnableMenuItem
MonitorFromWindow
SetWindowLongW
EndDialog
GetCaretBlinkTime
CheckDlgButton
PostMessageA
SetWindowsHookExA
GetKeyboardType
ScrollWindowEx
GetMonitorInfoW
RegisterClassA
ShowOwnedPopups
SetWindowRgn
SetTimer
MapDialogRect
CharNextW
RegisterWindowMessageW
SetCapture
WaitMessage
GetDC
GetMenu
OffsetRect
GetKeyboardLayout
GetScrollInfo
LoadMenuW
UnregisterClassA
GetDesktopWindow
GetMenuItemCount
SetCaretPos
GetDlgCtrlID

gdi32

BitBlt
PatBlt
SetTextColor
GetCharacterPlacementW
CreateFontA
SetDIBColorTable
CreateHalftonePalette
GetPaletteEntries
SelectClipRgn
CreatePenIndirect
SetMapMode
SaveDC
GetDIBColorTable
GetSystemPaletteEntries
RoundRect
TextOutA
GetDeviceCaps
GetDIBits
SelectObject
PolyPolyline
SelectPalette
CreateRectRgn
GetTextExtentPointA
GetPixel
ExtTextOutA
GetBitmapBits

comdlg32

GetSaveFileNameW
FindTextW

advapi32

RegUnLoadKeyW
ChangeServiceConfigW
RegGetKeySecurity
RegEnumKeyExW
QueryServiceStatus
StartServiceW
EqualSid
CopySid

shell32

Shell_NotifyIconW

ole32

CoInitialize

oleaut32

SysAllocStringLen
VariantCopy
SafeArrayPtrOfIndex
SysReAllocStringLen

Sections

.text
Size: 438KB - Virtual size: 437KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

530b99e0a7ce8f163a9a2a7464bc6e86

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 438KB - Virtual size: 437KB

.data Size: 5.9MB - Virtual size: 5.9MB

.idata Size: 4KB - Virtual size: 4KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 438KB - Virtual size: 437KB

.data
Size: 5.9MB - Virtual size: 5.9MB

.idata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 10KB - Virtual size: 9KB