c:\onegit\workdir\wntmsci12.pro\LinkTarget\Library\localedata_euro.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
095efde97d24220758ccebd57e14a660_NeikiAnalytics.dll
Resource
win7-20231129-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
095efde97d24220758ccebd57e14a660_NeikiAnalytics.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
095efde97d24220758ccebd57e14a660_NeikiAnalytics.exe
-
Size
807KB
-
MD5
095efde97d24220758ccebd57e14a660
-
SHA1
8ffd5f28370d862981409a659ebad8aebd63f804
-
SHA256
2f43101c7b90d8ebdaa121691266f1c352576e182554900ece109f2c2e3508b7
-
SHA512
6cd098e4aeac248b6ddd4cff81b8d81fd44d2ba8892e78601802671c7d2e70b8d5de321dc2a5c6d26f832b0539f2afacfe060728d13dfb7309cb44b66237285c
-
SSDEEP
6144:JINMH7m5198H3Mu8lQBJqjre1rg/mnxynqoFQaNisUO:j6+H3MuEQ3qjre2exUFD4O
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 095efde97d24220758ccebd57e14a660_NeikiAnalytics.exe
Files
-
095efde97d24220758ccebd57e14a660_NeikiAnalytics.exe.dll windows:5 windows x86 arch:x86
620e9c1b9b6179984a2d5e0cbe892f08
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
localedata_en
getOutlineNumberingLevels_en_IE
getContinuousNumberingLevels_en_IE
getTransliterations_en_IE
getSearchOptions_en_IE
getCollationOptions_en_IE
getCollatorImplementation_en_IE
getAllFormats0_en_IE
getLocaleItem_en_IE
getOutlineNumberingLevels_en_GB
getContinuousNumberingLevels_en_GB
getReservedWords_en_GB
getBreakIteratorRules_en_GB
getForbiddenCharacters_en_GB
getTransliterations_en_GB
getAllCurrencies_en_GB
getSearchOptions_en_GB
getCollationOptions_en_GB
getCollatorImplementation_en_GB
getAllFormats0_en_GB
getLocaleItem_en_GB
getFollowPageWords_en_US
getUnicodeScripts_en_US
getIndexAlgorithm_en_US
getContinuousNumberingLevels_en_US
getTransliterations_en_US
getSearchOptions_en_US
getCollationOptions_en_US
getCollatorImplementation_en_US
getOutlineNumberingLevels_en_US
msvcr90
_crt_debugger_hook
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
_encode_pointer
_malloc_crt
free
kernel32
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
Exports
Exports
getAllCalendars_an_ES
getAllCalendars_ast_ES
getAllCalendars_be_BY
getAllCalendars_bg_BG
getAllCalendars_br_FR
getAllCalendars_bs_BA
getAllCalendars_ca_ES
getAllCalendars_cs_CZ
getAllCalendars_cv_RU
getAllCalendars_cy_GB
getAllCalendars_da_DK
getAllCalendars_de_AT
getAllCalendars_de_CH
getAllCalendars_de_DE
getAllCalendars_de_LI
getAllCalendars_de_LU
getAllCalendars_dsb_DE
getAllCalendars_el_GR
getAllCalendars_et_EE
getAllCalendars_eu
getAllCalendars_fi_FI
getAllCalendars_fo_FO
getAllCalendars_fr_BE
getAllCalendars_fr_CA
getAllCalendars_fr_CH
getAllCalendars_fr_FR
getAllCalendars_fr_LU
getAllCalendars_fr_MC
getAllCalendars_fur_IT
getAllCalendars_fy_NL
getAllCalendars_ga_IE
getAllCalendars_gd_GB
getAllCalendars_gsc_FR
getAllCalendars_hr_HR
getAllCalendars_hsb_DE
getAllCalendars_is_IS
getAllCalendars_it_CH
getAllCalendars_it_IT
getAllCalendars_ka_GE
getAllCalendars_kl_GL
getAllCalendars_la_VA
getAllCalendars_lb_LU
getAllCalendars_lt_LT
getAllCalendars_ltg_LV
getAllCalendars_lv_LV
getAllCalendars_mk_MK
getAllCalendars_mt_MT
getAllCalendars_nb_NO
getAllCalendars_nl_BE
getAllCalendars_nl_NL
getAllCalendars_nn_NO
getAllCalendars_no_NO
getAllCalendars_oc_FR
getAllCalendars_pl_PL
getAllCalendars_pt_BR
getAllCalendars_pt_PT
getAllCalendars_ro_RO
getAllCalendars_ru_RU
getAllCalendars_rue_SK
getAllCalendars_sc_IT
getAllCalendars_sh_ME
getAllCalendars_sh_RS
getAllCalendars_sh_YU
getAllCalendars_sk_SK
getAllCalendars_sl_SI
getAllCalendars_sr_ME
getAllCalendars_sr_RS
getAllCalendars_sr_YU
getAllCalendars_sv_FI
getAllCalendars_sv_SE
getAllCalendars_tr_TR
getAllCalendars_uk_UA
getAllCalendars_wa_BE
getAllCurrencies_an_ES
getAllCurrencies_ast_ES
getAllCurrencies_be_BY
getAllCurrencies_bg_BG
getAllCurrencies_br_FR
getAllCurrencies_bs_BA
getAllCurrencies_ca_ES
getAllCurrencies_cs_CZ
getAllCurrencies_cv_RU
getAllCurrencies_cy_GB
getAllCurrencies_da_DK
getAllCurrencies_de_AT
getAllCurrencies_de_CH
getAllCurrencies_de_DE
getAllCurrencies_de_LI
getAllCurrencies_de_LU
getAllCurrencies_dsb_DE
getAllCurrencies_el_GR
getAllCurrencies_et_EE
getAllCurrencies_eu
getAllCurrencies_fi_FI
getAllCurrencies_fo_FO
getAllCurrencies_fr_BE
getAllCurrencies_fr_CA
getAllCurrencies_fr_CH
getAllCurrencies_fr_FR
getAllCurrencies_fr_LU
getAllCurrencies_fr_MC
getAllCurrencies_fur_IT
getAllCurrencies_fy_NL
getAllCurrencies_ga_IE
getAllCurrencies_gd_GB
getAllCurrencies_gsc_FR
getAllCurrencies_hr_HR
getAllCurrencies_hsb_DE
getAllCurrencies_is_IS
getAllCurrencies_it_CH
getAllCurrencies_it_IT
getAllCurrencies_ka_GE
getAllCurrencies_kl_GL
getAllCurrencies_la_VA
getAllCurrencies_lb_LU
getAllCurrencies_lt_LT
getAllCurrencies_ltg_LV
getAllCurrencies_lv_LV
getAllCurrencies_mk_MK
getAllCurrencies_mt_MT
getAllCurrencies_nb_NO
getAllCurrencies_nl_BE
getAllCurrencies_nl_NL
getAllCurrencies_nn_NO
getAllCurrencies_no_NO
getAllCurrencies_oc_FR
getAllCurrencies_pl_PL
getAllCurrencies_pt_BR
getAllCurrencies_pt_PT
getAllCurrencies_ro_RO
getAllCurrencies_ru_RU
getAllCurrencies_rue_SK
getAllCurrencies_sc_IT
getAllCurrencies_sh_ME
getAllCurrencies_sh_RS
getAllCurrencies_sh_YU
getAllCurrencies_sk_SK
getAllCurrencies_sl_SI
getAllCurrencies_sr_ME
getAllCurrencies_sr_RS
getAllCurrencies_sr_YU
getAllCurrencies_sv_FI
getAllCurrencies_sv_SE
getAllCurrencies_tr_TR
getAllCurrencies_uk_UA
getAllCurrencies_wa_BE
getAllFormats0_an_ES
getAllFormats0_ast_ES
getAllFormats0_be_BY
getAllFormats0_bg_BG
getAllFormats0_br_FR
getAllFormats0_bs_BA
getAllFormats0_ca_ES
getAllFormats0_cs_CZ
getAllFormats0_cv_RU
getAllFormats0_cy_GB
getAllFormats0_da_DK
getAllFormats0_de_AT
getAllFormats0_de_CH
getAllFormats0_de_DE
getAllFormats0_de_LI
getAllFormats0_de_LU
getAllFormats0_dsb_DE
getAllFormats0_el_GR
getAllFormats0_et_EE
getAllFormats0_eu
getAllFormats0_fi_FI
getAllFormats0_fo_FO
getAllFormats0_fr_BE
getAllFormats0_fr_CA
getAllFormats0_fr_CH
getAllFormats0_fr_FR
getAllFormats0_fr_LU
getAllFormats0_fr_MC
getAllFormats0_fur_IT
getAllFormats0_fy_NL
getAllFormats0_ga_IE
getAllFormats0_gd_GB
getAllFormats0_gsc_FR
getAllFormats0_hr_HR
getAllFormats0_hsb_DE
getAllFormats0_is_IS
getAllFormats0_it_CH
getAllFormats0_it_IT
getAllFormats0_ka_GE
getAllFormats0_kl_GL
getAllFormats0_la_VA
getAllFormats0_lb_LU
getAllFormats0_lt_LT
getAllFormats0_ltg_LV
getAllFormats0_lv_LV
getAllFormats0_mk_MK
getAllFormats0_mt_MT
getAllFormats0_nb_NO
getAllFormats0_nl_BE
getAllFormats0_nl_NL
getAllFormats0_nn_NO
getAllFormats0_no_NO
getAllFormats0_oc_FR
getAllFormats0_pl_PL
getAllFormats0_pt_BR
getAllFormats0_pt_PT
getAllFormats0_ro_RO
getAllFormats0_ru_RU
getAllFormats0_rue_SK
getAllFormats0_sc_IT
getAllFormats0_sh_ME
getAllFormats0_sh_RS
getAllFormats0_sh_YU
getAllFormats0_sk_SK
getAllFormats0_sl_SI
getAllFormats0_sr_ME
getAllFormats0_sr_RS
getAllFormats0_sr_YU
getAllFormats0_sv_FI
getAllFormats0_sv_SE
getAllFormats0_tr_TR
getAllFormats0_uk_UA
getAllFormats0_wa_BE
getBreakIteratorRules_an_ES
getBreakIteratorRules_ast_ES
getBreakIteratorRules_be_BY
getBreakIteratorRules_bg_BG
getBreakIteratorRules_br_FR
getBreakIteratorRules_bs_BA
getBreakIteratorRules_ca_ES
getBreakIteratorRules_cs_CZ
getBreakIteratorRules_cv_RU
getBreakIteratorRules_cy_GB
getBreakIteratorRules_da_DK
getBreakIteratorRules_de_AT
getBreakIteratorRules_de_CH
getBreakIteratorRules_de_DE
getBreakIteratorRules_de_LI
getBreakIteratorRules_de_LU
getBreakIteratorRules_dsb_DE
getBreakIteratorRules_el_GR
getBreakIteratorRules_et_EE
getBreakIteratorRules_eu
getBreakIteratorRules_fi_FI
getBreakIteratorRules_fo_FO
getBreakIteratorRules_fr_BE
getBreakIteratorRules_fr_CA
getBreakIteratorRules_fr_CH
getBreakIteratorRules_fr_FR
getBreakIteratorRules_fr_LU
getBreakIteratorRules_fr_MC
getBreakIteratorRules_fur_IT
getBreakIteratorRules_fy_NL
getBreakIteratorRules_ga_IE
getBreakIteratorRules_gd_GB
getBreakIteratorRules_gsc_FR
getBreakIteratorRules_hr_HR
getBreakIteratorRules_hsb_DE
getBreakIteratorRules_is_IS
getBreakIteratorRules_it_CH
getBreakIteratorRules_it_IT
getBreakIteratorRules_ka_GE
getBreakIteratorRules_kl_GL
getBreakIteratorRules_la_VA
getBreakIteratorRules_lb_LU
getBreakIteratorRules_lt_LT
getBreakIteratorRules_ltg_LV
getBreakIteratorRules_lv_LV
getBreakIteratorRules_mk_MK
getBreakIteratorRules_mt_MT
getBreakIteratorRules_nb_NO
getBreakIteratorRules_nl_BE
getBreakIteratorRules_nl_NL
getBreakIteratorRules_nn_NO
getBreakIteratorRules_no_NO
getBreakIteratorRules_oc_FR
getBreakIteratorRules_pl_PL
getBreakIteratorRules_pt_BR
getBreakIteratorRules_pt_PT
getBreakIteratorRules_ro_RO
getBreakIteratorRules_ru_RU
getBreakIteratorRules_rue_SK
getBreakIteratorRules_sc_IT
getBreakIteratorRules_sh_ME
getBreakIteratorRules_sh_RS
getBreakIteratorRules_sh_YU
getBreakIteratorRules_sk_SK
getBreakIteratorRules_sl_SI
getBreakIteratorRules_sr_ME
getBreakIteratorRules_sr_RS
getBreakIteratorRules_sr_YU
getBreakIteratorRules_sv_FI
getBreakIteratorRules_sv_SE
getBreakIteratorRules_tr_TR
getBreakIteratorRules_uk_UA
getBreakIteratorRules_wa_BE
getCollationOptions_an_ES
getCollationOptions_ast_ES
getCollationOptions_be_BY
getCollationOptions_bg_BG
getCollationOptions_br_FR
getCollationOptions_bs_BA
getCollationOptions_ca_ES
getCollationOptions_cs_CZ
getCollationOptions_cv_RU
getCollationOptions_cy_GB
getCollationOptions_da_DK
getCollationOptions_de_AT
getCollationOptions_de_CH
getCollationOptions_de_DE
getCollationOptions_de_LI
getCollationOptions_de_LU
getCollationOptions_dsb_DE
getCollationOptions_el_GR
getCollationOptions_et_EE
getCollationOptions_eu
getCollationOptions_fi_FI
getCollationOptions_fo_FO
getCollationOptions_fr_BE
getCollationOptions_fr_CA
getCollationOptions_fr_CH
getCollationOptions_fr_FR
getCollationOptions_fr_LU
getCollationOptions_fr_MC
getCollationOptions_fur_IT
getCollationOptions_fy_NL
getCollationOptions_ga_IE
getCollationOptions_gd_GB
getCollationOptions_gsc_FR
getCollationOptions_hr_HR
getCollationOptions_hsb_DE
getCollationOptions_is_IS
getCollationOptions_it_CH
getCollationOptions_it_IT
getCollationOptions_ka_GE
getCollationOptions_kl_GL
getCollationOptions_la_VA
getCollationOptions_lb_LU
getCollationOptions_lt_LT
getCollationOptions_ltg_LV
getCollationOptions_lv_LV
getCollationOptions_mk_MK
getCollationOptions_mt_MT
getCollationOptions_nb_NO
getCollationOptions_nl_BE
getCollationOptions_nl_NL
getCollationOptions_nn_NO
getCollationOptions_no_NO
getCollationOptions_oc_FR
getCollationOptions_pl_PL
getCollationOptions_pt_BR
getCollationOptions_pt_PT
getCollationOptions_ro_RO
getCollationOptions_ru_RU
getCollationOptions_rue_SK
getCollationOptions_sc_IT
getCollationOptions_sh_ME
getCollationOptions_sh_RS
getCollationOptions_sh_YU
getCollationOptions_sk_SK
getCollationOptions_sl_SI
getCollationOptions_sr_ME
getCollationOptions_sr_RS
getCollationOptions_sr_YU
getCollationOptions_sv_FI
getCollationOptions_sv_SE
getCollationOptions_tr_TR
getCollationOptions_uk_UA
getCollationOptions_wa_BE
getCollatorImplementation_an_ES
getCollatorImplementation_ast_ES
getCollatorImplementation_be_BY
getCollatorImplementation_bg_BG
getCollatorImplementation_br_FR
getCollatorImplementation_bs_BA
getCollatorImplementation_ca_ES
getCollatorImplementation_cs_CZ
getCollatorImplementation_cv_RU
getCollatorImplementation_cy_GB
getCollatorImplementation_da_DK
getCollatorImplementation_de_AT
getCollatorImplementation_de_CH
getCollatorImplementation_de_DE
getCollatorImplementation_de_LI
getCollatorImplementation_de_LU
getCollatorImplementation_dsb_DE
getCollatorImplementation_el_GR
getCollatorImplementation_et_EE
getCollatorImplementation_eu
getCollatorImplementation_fi_FI
getCollatorImplementation_fo_FO
getCollatorImplementation_fr_BE
getCollatorImplementation_fr_CA
getCollatorImplementation_fr_CH
getCollatorImplementation_fr_FR
getCollatorImplementation_fr_LU
getCollatorImplementation_fr_MC
getCollatorImplementation_fur_IT
getCollatorImplementation_fy_NL
getCollatorImplementation_ga_IE
getCollatorImplementation_gd_GB
getCollatorImplementation_gsc_FR
getCollatorImplementation_hr_HR
getCollatorImplementation_hsb_DE
getCollatorImplementation_is_IS
getCollatorImplementation_it_CH
getCollatorImplementation_it_IT
getCollatorImplementation_ka_GE
getCollatorImplementation_kl_GL
getCollatorImplementation_la_VA
getCollatorImplementation_lb_LU
getCollatorImplementation_lt_LT
getCollatorImplementation_ltg_LV
getCollatorImplementation_lv_LV
getCollatorImplementation_mk_MK
getCollatorImplementation_mt_MT
getCollatorImplementation_nb_NO
getCollatorImplementation_nl_BE
getCollatorImplementation_nl_NL
getCollatorImplementation_nn_NO
getCollatorImplementation_no_NO
getCollatorImplementation_oc_FR
getCollatorImplementation_pl_PL
getCollatorImplementation_pt_BR
getCollatorImplementation_pt_PT
getCollatorImplementation_ro_RO
getCollatorImplementation_ru_RU
getCollatorImplementation_rue_SK
getCollatorImplementation_sc_IT
getCollatorImplementation_sh_ME
getCollatorImplementation_sh_RS
getCollatorImplementation_sh_YU
getCollatorImplementation_sk_SK
getCollatorImplementation_sl_SI
getCollatorImplementation_sr_ME
getCollatorImplementation_sr_RS
getCollatorImplementation_sr_YU
getCollatorImplementation_sv_FI
getCollatorImplementation_sv_SE
getCollatorImplementation_tr_TR
getCollatorImplementation_uk_UA
getCollatorImplementation_wa_BE
getContinuousNumberingLevels_an_ES
getContinuousNumberingLevels_ast_ES
getContinuousNumberingLevels_be_BY
getContinuousNumberingLevels_bg_BG
getContinuousNumberingLevels_br_FR
getContinuousNumberingLevels_bs_BA
getContinuousNumberingLevels_ca_ES
getContinuousNumberingLevels_cs_CZ
getContinuousNumberingLevels_cv_RU
getContinuousNumberingLevels_cy_GB
getContinuousNumberingLevels_da_DK
getContinuousNumberingLevels_de_AT
getContinuousNumberingLevels_de_CH
getContinuousNumberingLevels_de_DE
getContinuousNumberingLevels_de_LI
getContinuousNumberingLevels_de_LU
getContinuousNumberingLevels_dsb_DE
getContinuousNumberingLevels_el_GR
getContinuousNumberingLevels_et_EE
getContinuousNumberingLevels_eu
getContinuousNumberingLevels_fi_FI
getContinuousNumberingLevels_fo_FO
getContinuousNumberingLevels_fr_BE
getContinuousNumberingLevels_fr_CA
getContinuousNumberingLevels_fr_CH
getContinuousNumberingLevels_fr_FR
getContinuousNumberingLevels_fr_LU
getContinuousNumberingLevels_fr_MC
getContinuousNumberingLevels_fur_IT
getContinuousNumberingLevels_fy_NL
getContinuousNumberingLevels_ga_IE
getContinuousNumberingLevels_gd_GB
getContinuousNumberingLevels_gsc_FR
getContinuousNumberingLevels_hr_HR
getContinuousNumberingLevels_hsb_DE
getContinuousNumberingLevels_is_IS
getContinuousNumberingLevels_it_CH
getContinuousNumberingLevels_it_IT
getContinuousNumberingLevels_ka_GE
getContinuousNumberingLevels_kl_GL
getContinuousNumberingLevels_la_VA
getContinuousNumberingLevels_lb_LU
getContinuousNumberingLevels_lt_LT
getContinuousNumberingLevels_ltg_LV
getContinuousNumberingLevels_lv_LV
getContinuousNumberingLevels_mk_MK
getContinuousNumberingLevels_mt_MT
getContinuousNumberingLevels_nb_NO
getContinuousNumberingLevels_nl_BE
getContinuousNumberingLevels_nl_NL
getContinuousNumberingLevels_nn_NO
getContinuousNumberingLevels_no_NO
getContinuousNumberingLevels_oc_FR
getContinuousNumberingLevels_pl_PL
getContinuousNumberingLevels_pt_BR
getContinuousNumberingLevels_pt_PT
getContinuousNumberingLevels_ro_RO
getContinuousNumberingLevels_ru_RU
getContinuousNumberingLevels_rue_SK
getContinuousNumberingLevels_sc_IT
getContinuousNumberingLevels_sh_ME
getContinuousNumberingLevels_sh_RS
Sections
.text Size: 23KB - Virtual size: 22KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 529KB - Virtual size: 528KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 167KB - Virtual size: 167KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 85KB - Virtual size: 85KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ