4543b16e282ffc8f6d8bdec7c592b880_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

4543b16e282ffc8f6d8bdec7c592b880_NeikiAnalytics.exe
Size

8.3MB
MD5

4543b16e282ffc8f6d8bdec7c592b880
SHA1

b167b61c5f8bb31a064ac46a67527200c6ff0a56
SHA256

44c7f89a5a12e0e0454fa67678650c64115c139e551abe6fe0dd1993d2b573cd
SHA512

2a087364300968b34716fd5fbf53ec3eb5407bef23b866855d6fc12c7e947740e9d583c530db9704fa84780b47e0007bf3cfff4e1cd3a0ed4aa6899ae3e5f8b0
SSDEEP

98304:Bf444UyNw4zPyXF16GG8nlb9NJ7i3yHLAmgKJ+4lpxS/1Oc2yaIwa7rKcbz1:9gNIXF1VKyHLAN9z1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4543b16e282ffc8f6d8bdec7c592b880_NeikiAnalytics.exe

Files

4543b16e282ffc8f6d8bdec7c592b880_NeikiAnalytics.exe
.dll windows:5 windows x86 arch:x86

be71b4c8e4ffac7f26659f6fb418747e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\qb\workspace\336\p4gen\gfx_Development\dump32\igfx\lh\gtune\opengl\gen7\ig7icd32.pdb

Imports

kernel32

TlsFree
SetLastError
GetCurrentThreadId
GetVersionExA
GetModuleFileNameA
InterlockedIncrement
InterlockedCompareExchange
FreeLibrary
GetProcAddress
LoadLibraryA
ReleaseMutex
GetCommandLineA
FreeResource
GetModuleHandleA
LoadResource
LockResource
GetUserDefaultLangID
FindResourceA
Sleep
InterlockedDecrement
WideCharToMultiByte
InterlockedExchange
MultiByteToWideChar
RaiseException
RtlUnwind
GetLastError
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
ExitProcess
HeapReAlloc
LCMapStringA
LCMapStringW
GetCPInfo
WriteFile
GetStdHandle
VirtualQuery
TlsSetValue
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
GetTickCount
GetSystemTimeAsFileTime
VirtualAlloc
HeapSize
GetACP
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
SetFilePointer
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetStdHandle
FlushFileBuffers
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
GetProcessHeap
ReadFile
CreateMutexA
CreateFileMappingA
UnmapViewOfFile
MapViewOfFile
DeleteFileW
CreateFileW
TlsGetValue
TlsAlloc
GetCurrentProcessId
CreateEventA
WaitForSingleObject
SetEvent
DeleteCriticalSection
InitializeCriticalSection
QueryPerformanceFrequency
QueryPerformanceCounter
CloseHandle
LeaveCriticalSection
EnterCriticalSection
OutputDebugStringA
CreateDirectoryA
GlobalFree
SetHandleCount
GlobalAlloc

opengl32

wglDeleteContext
wglMakeCurrent
wglShareLists
wglGetCurrentContext
wglGetCurrentDC
wglCreateContext

user32

RegisterClassA
CreateWindowExA
DestroyWindow
IntersectRect
ReleaseDC
GetDC
GetSystemMetrics
FindWindowA
MessageBoxA
KillTimer
SetTimer
PostMessageA
DefWindowProcA
EnumDisplaySettingsA
ClientToScreen
GetClientRect
InvalidateRect
GetForegroundWindow
IsWindow
GetMonitorInfoA
MonitorFromWindow
EnumDisplayDevicesA
GetGUIThreadInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
WindowFromDC
GetWindowLongA
AdjustWindowRectEx
GetMenu
wsprintfW
EnumDisplayMonitors
PeekMessageA
EqualRect

gdi32

DeleteObject
GetDeviceCaps
DeleteDC
CreateDIBSection
DescribePixelFormat
GetCurrentObject
GetObjectType
GetPixelFormat
SetPixelFormat
CreateDCA
CreateCompatibleDC
BitBlt
SelectObject
D3DKMTGetDeviceState

advapi32

GetTraceEnableFlags
RegQueryValueExA
RegOpenKeyExA
GetTraceEnableLevel
GetTraceLoggerHandle
UnregisterTraceGuids
RegisterTraceGuidsA
TraceEvent
RegCloseKey

Exports

Exports

DllMain
DrvCopyContext
DrvCreateContext
DrvCreateLayerContext
DrvDeleteContext
DrvDescribeLayerPlane
DrvDescribePixelFormat
DrvGetLayerPaletteEntries
DrvGetProcAddress
DrvPresentBuffers
DrvRealizeLayerPalette
DrvReleaseContext
DrvSetCallbackProcs
DrvSetContext
DrvSetLayerPaletteEntries
DrvSetPixelFormat
DrvShareLists
DrvSwapBuffers
DrvSwapLayerBuffers
DrvValidateVersion
RegisterProcTableCallback

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 684KB - Virtual size: 684KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 797KB - Virtual size: 837KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 25B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 519KB - Virtual size: 519KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 118KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

be71b4c8e4ffac7f26659f6fb418747e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

opengl32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 6.3MB - Virtual size: 6.3MB

.rdata Size: 684KB - Virtual size: 684KB

.data Size: 797KB - Virtual size: 837KB

.tls Size: 512B - Virtual size: 25B

.rsrc Size: 1024B - Virtual size: 1024B

.reloc Size: 519KB - Virtual size: 519KB

.text Size: 118KB - Virtual size: 120KB

.text
Size: 6.3MB - Virtual size: 6.3MB

.rdata
Size: 684KB - Virtual size: 684KB

.data
Size: 797KB - Virtual size: 837KB

.tls
Size: 512B - Virtual size: 25B

.rsrc
Size: 1024B - Virtual size: 1024B

.reloc
Size: 519KB - Virtual size: 519KB

.text
Size: 118KB - Virtual size: 120KB