8aa410f7c8030b2721289371d7fec460_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

8aa410f7c8030b2721289371d7fec460_NeikiAnalytics.exe
Size

7.5MB
MD5

8aa410f7c8030b2721289371d7fec460
SHA1

4383dc6c22e3703effd07ca3e519e99f057ad6b8
SHA256

0598f5dfadcf2d190d8ecded1ddf6010a4d30eeb105707756cdca3ccedb8561d
SHA512

0a07c7a9b0fe9e65be1d121e3d062a90b0b7139ef13bb57e35834db8d9ba8cf9d6700f4ac753a5de49b240d9f67ee32f4ea7d96f05708759b401c734744302d1
SSDEEP

196608:spngw5JQ/GFDlaWcez/t/QBKVwL+jDgrf86uLJmkpH2:QngwQiDlFcq/t/QoVE+PgrfULkS2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8aa410f7c8030b2721289371d7fec460_NeikiAnalytics.exe

Files

8aa410f7c8030b2721289371d7fec460_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

061c069e065670484cf19c9b520215ae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
IsDBCSLeadByte
SetLastError
GlobalFree
GlobalHandle
lstrcmpA
MulDiv
GetModuleFileNameA
FreeLibrary
LoadLibraryExA
GetModuleHandleA
GetProcAddress
VirtualProtect
ReadFile
CloseHandle
CreateFileW
FindFirstFileW
FindClose
GetFileAttributesW
CreateFileA
GetStringTypeW
GetStringTypeA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
GlobalUnlock
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
EnterCriticalSection
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
GetOEMCP
GetCPInfo
HeapSize
Sleep
ExitProcess
HeapCreate
HeapDestroy
GetConsoleMode
GetConsoleCP
WriteFile
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoA
GetCommandLineA
HeapReAlloc
VirtualQuery
GetSystemInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
lstrcmpiA
GetLastError
lstrlenW
WideCharToMultiByte
GetCurrentThreadId
GlobalAlloc
GetCurrentProcess
FlushInstructionCache
DeleteCriticalSection
InitializeCriticalSection
SetStdHandle
LeaveCriticalSection
MultiByteToWideChar
InterlockedIncrement
FreeResource
lstrlenA
InterlockedDecrement
RaiseException
FindResourceA
LoadResource
SizeofResource
LocalFree
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersionExA
LockResource
GetEnvironmentStrings

user32

SetWindowLongA
GetWindowLongA
DefWindowProcA
CharNextA
LoadStringA
GetWindowTextA
GetWindowTextLengthA
DestroyWindow
RegisterClassExA
SetWindowTextA
UnregisterClassA
LoadImageA
SetWindowContextHelpId
MapDialogRect
DialogBoxParamA
SendDlgItemMessageA
GetWindowRect
SystemParametersInfoA
MapWindowPoints
IsDialogMessageA
KillTimer
SetTimer
ShowWindow
EndDialog
GetSystemMetrics
GetActiveWindow
CreateAcceleratorTableA
CreateWindowExA
IsWindow
SendMessageA
GetDesktopWindow
SetFocus
GetFocus
GetWindow
DestroyAcceleratorTable
BeginPaint
EndPaint
CallWindowProcA
FillRect
ReleaseCapture
GetClassNameA
GetDlgItem
GetParent
IsChild
SetCapture
RedrawWindow
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
ScreenToClient
ClientToScreen
GetClientRect
SetWindowPos
MoveWindow
GetSysColor
DialogBoxIndirectParamA
RegisterWindowMessageA
GetClassInfoExA
LoadCursorA

gdi32

GetStockObject
GetObjectA
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SelectObject
DeleteObject
CreateFontIndirectA

advapi32

RegCloseKey
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA

shell32

ShellExecuteA

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
StringFromGUID2
OleLockRunning
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
CoUninitialize
CoInitialize

oleaut32

SysFreeString
SysAllocString
SysStringLen
SysAllocStringLen
VarUI4FromStr
SysStringByteLen
VariantInit
VariantClear
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
DispCallFunc

comctl32

InitCommonControlsEx

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7.4MB - Virtual size: 7.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

061c069e065670484cf19c9b520215ae

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 28KB - Virtual size: 24KB

.data Size: 12KB - Virtual size: 16KB

.rsrc Size: 7.4MB - Virtual size: 7.3MB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 28KB - Virtual size: 24KB

.data
Size: 12KB - Virtual size: 16KB

.rsrc
Size: 7.4MB - Virtual size: 7.3MB