dc178de6a0cea06f969d703074961000_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

dc178de6a0cea06f969d703074961000_NeikiAnalytics.exe
Size

3.2MB
MD5

dc178de6a0cea06f969d703074961000
SHA1

a76c342be6bbdec7fb864b2db0fb3faa885ce6c9
SHA256

94ee040f295a8a64fb61283ca137d6fecaaadceb27b10268739e32ff62e068c1
SHA512

4a8ba5fbf3734bc877a43ea06414edb4a5ef6d4ba760a836cb05d69f26d06de251400e1c02fce594ea6bc23b8f57b34715b43b75cef7e9f9437695c1953911ba
SSDEEP

49152:SPfRFsmxFHqA37IHRlP31NxkHQOmC377CaVKB/figqsuprduRZiZ5z:UfRFsm79Ixd1NJzCSaV0qPdu67

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc178de6a0cea06f969d703074961000_NeikiAnalytics.exe

Files

dc178de6a0cea06f969d703074961000_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

dcc9791d677cdd6f74b2d60024d0d025

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

kernel32

GetFileSize
GetFileTime
GetFullPathNameA
GetFullPathNameW
GetLastError
GetLongPathNameW
GetModuleFileNameW
GetModuleHandleW
GetProcessHeap
GetStdHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathA
GetTempPathW
GlobalAlloc
GlobalLock
GlobalSize
GlobalUnlock
HeapAlloc
HeapCompact
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
HeapValidate
GetFileAttributesW
LocalFree
LockFile
LockFileEx
MapViewOfFile
MoveFileW
MultiByteToWideChar
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
ReadFile
ResetEvent
SetConsoleScreenBufferSize
SetEndOfFile
SetEvent
SetFilePointer
SetUnhandledExceptionFilter
Sleep
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateProcess
UnhandledExceptionFilter
UnlockFileEx
UnmapViewOfFile
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteFile
GetFileAttributesExW
GetFileAttributesA
GetDiskFreeSpaceW
GetDiskFreeSpaceA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetConsoleScreenBufferInfo
GetACP
FreeLibrary
FormatMessageW
FormatMessageA
FlushViewOfFile
FlushFileBuffers
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateMutexW
CreateFileW
CreateFileMappingW
CreateFileA
CreateEventW
CopyFileW
GetStartupInfoW
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
GetProcAddress
GetModuleHandleA
IsProcessorFeaturePresent
GetStartupInfoA

user32

SetCursor
SetClipboardData
SetCapture
SendMessageW
ScreenToClient
ReleaseCapture
RegisterWindowMessageW
RegisterClipboardFormatW
RedrawWindow
PtInRect
PostMessageW
OpenClipboard
OffsetRect
ModifyMenuW
MessageBeep
LoadStringW
LoadMenuW
LoadCursorW
SetFocus
KillTimer
IsZoomed
IsWindowVisible
IsClipboardFormatAvailable
IsChild
InvalidateRect
InsertMenuW
InflateRect
GetWindowRect
GetSystemMetrics
GetSysColor
GetSubMenu
GetParent
GetKeyState
GetFocus
GetDlgItem
GetDesktopWindow
GetDC
SetRectEmpty
SetTimer
UpdateWindow
LoadBitmapW
GetCursorPos
GetClipboardData
GetClientRect
EnableWindow
EmptyClipboard
DrawFocusRect
DrawEdge
DefWindowProcW
CreatePopupMenu
CopyRect
CloseClipboard
ClipCursor
ClientToScreen
GetAsyncKeyState

gdi32

ModifyWorldTransform
PlayEnhMetaFile
PlgBlt
PolyBezier
Polyline
PtInRegion
Rectangle
GetTextMetricsW
SetBrushOrgEx
SetEnhMetaFileBits
SetGraphicsMode
SetPixel
SetWorldTransform
StretchDIBits
GetTextExtentPoint32W
CreateFontIndirectW
CreateEnhMetaFileW
GetObjectW
RoundRect
CreateDIBSection
GetEnhMetaFileBits
GetDeviceCaps
GetCharABCWidthsW
FillRgn
ExtTextOutW
ExtCreatePen
Ellipse
DeleteObject
DeleteDC
CreateSolidBrush
CreatePolygonRgn
CreatePen
CreatePalette
CreateFontW
GetEnhMetaFileHeader

advapi32

RegQueryValueExW
RegDeleteValueW
RegCreateKeyExW
RegCloseKey
RegSetValueExW

shlwapi

PathRelativePathToW
PathCombineW
PathAppendW
PathRemoveFileSpecW

msvcrt

_exit
_XcptFilter
_controlfp
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_media_8
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 176KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_stat_8
Size: 798KB - Virtual size: 800KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dcc9791d677cdd6f74b2d60024d0d025

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

shlwapi

msvcrt

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

_media_8 Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 4.0MB

.rsrc Size: 176KB - Virtual size: 172KB

_stat_8 Size: 798KB - Virtual size: 800KB

.text
Size: 2.3MB - Virtual size: 2.3MB

_media_8
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 4.0MB

.rsrc
Size: 176KB - Virtual size: 172KB

_stat_8
Size: 798KB - Virtual size: 800KB