9443570632a3c3adb510e96dfce6fdb0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

9443570632a3c3adb510e96dfce6fdb0_NeikiAnalytics.exe
Size

332KB
MD5

9443570632a3c3adb510e96dfce6fdb0
SHA1

74ee831d8fef3e4392861d11a6adbcc7042287fd
SHA256

8b14d9dda2b137b73839fbbd2a264232a96e17a0171568a9abab2acb70d7d657
SHA512

93e55c6a901613d3ded5d54c787f7b3ea95f86394b30a67a326943a015de25ab74118ffed904ae83a7e6828e10ca706d50426420b127fe5300858a4cc8d7788d
SSDEEP

6144:yJI9uNh+2fj5AdytKw1498AdRed5vJVJBtBxN7oajVd:yJlNk2fq0swq2ALE5D3xBH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9443570632a3c3adb510e96dfce6fdb0_NeikiAnalytics.exe

Files

9443570632a3c3adb510e96dfce6fdb0_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

08f150d1b35eaca25c812ebb0cfd7b9f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\workspace\avc\avc\obj\intel\Release\ffmpeg\avc.pdb

Imports

dbghelp

MiniDumpWriteDump

kernel32

Sleep
GetModuleHandleA
GetModuleFileNameA
lstrcpyA
CreateFileA
SetFilePointer
VirtualQuery
CloseHandle
IsDebuggerPresent
lstrcatA
OutputDebugStringA
lstrlenA
WriteFile
GetProcAddress
LoadLibraryA
lstrcpynA
GetVersionExA
MultiByteToWideChar
FileTimeToDosDateTime
GetFileSize
GetFileTime
GetSystemTimeAsFileTime
GetSystemInfo
GlobalMemoryStatus
RaiseException
GetCurrentThreadId
GetCurrentProcess
InterlockedExchange
QueryPerformanceCounter
GetTickCount
TerminateProcess
UnhandledExceptionFilter
WideCharToMultiByte
SetUnhandledExceptionFilter
InterlockedCompareExchange
FileTimeToLocalFileTime
GetCurrentProcessId

user32

LoadCursorA
LoadIconA
RegisterClassA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
wvsprintfA
MessageBoxA
wsprintfA

gdi32

GetStockObject

advapi32

GetUserNameA
IsTextUnicode

ole32

CoInitialize

avswscale

sws_scale
sws_freeContext
sws_getContext

avutil

av_malloc
av_log_level
ord5
av_sub_q
av_d2q
av_strstart
av_strlcpy
av_strlcat
av_fifo_generic_write
av_fifo_realloc2
av_realloc
av_fifo_generic_read
av_fifo_size
av_rescale
av_log
av_rescale_q
av_fifo_free
av_freep
fopen_utf8
av_get_channel_layout_nb_channels
av_fifo_alloc
av_mallocz
av_free
av_strdup

avformat

av_codec_get_id
av_register_all
ord9
ord153
ord171
ord74
set_lyrics
ord213
bd_angle
bd_chapter
bd_title
bd_decrypt
ord96
ord13
ord90
ord87
ord89
ord14
ord118
av_filename_number_test
ord133
ord40
ord240
ord122
ord24
av_guess_codec
av_new_stream
ord97
ord21
url_fsize
av_pkt_dump_log
ord29
ord244
ord38
ord45
ord254
ord59
ord43
ord4
ord3
av_codec_get_tag
ord18
ord2
ord117
ord232
ord10

avcodec

avcodec_encode_audio
avcodec_encode_video
av_bitstream_filter_filter
av_destruct_packet
av_parser_change
av_get_bits_per_sample_format
av_get_bits_per_sample
av_fast_malloc
ord3
ord1
ord4
audio_resample
av_audio_convert
av_resample_compensate
avpicture_get_size
avpicture_fill
av_picture_copy
avpicture_deinterlace
ass_render
av_init_packet
avpicture_free
av_get_pict_type_char
av_fast_realloc
av_picture_crop
av_picture_pad
avcodec_get_context_defaults2
ord78
avcodec_alloc_context
av_set_double
avcodec_thread_init
first_avcodec
avcodec_get_pix_fmt
av_parse_video_frame_rate
avcodec_pix_fmt_string
av_bitstream_filter_init
av_find_opt
av_set_string
ord30
avsubtitle_free
av_get_bits_per_sample_fmt
ord77
avcodec_decode_audio2
avcodec_get_frame_defaults
ord76
ord79
av_free_static
av_parse_video_frame_size
avcodec_alloc_context2
ass_set_subtitle
avcodec_decode_subtitle2
avcodec_decode_subtitle
avcodec_decode_video
assInitSubFontPara
init_libass_decoder
av_free_packet
avcodec_close
avcodec_find_decoder
avcodec_open
avcodec_find_encoder
audio_resample_close
av_get_int
avcodec_encode_subtitle
avpicture_alloc

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

libmmd

__libm_sse2_log
log.J
rint

msvcr90

__iob_func
_beginthreadex
atoi
printf
fprintf
fclose
memcpy
memset
exit
wcslen
fputs
atof
_snwprintf
_wsplitpath
wcsncat
_wmakepath
_kbhit
_getch
_crt_debugger_hook
_controlfp_s
_invoke_watson
?terminate@@YAXXZ
_except_handler4_common
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
__initenv
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
sprintf
__CxxFrameHandler
memmove
realloc
wcsstr
_wcsicmp
wcsncmp
_wcsnicmp
_wfopen
malloc
free
signal
??2@YAPAXI@Z
??3@YAXPAX@Z
strtok
_localtime64
_time64
strtod
strtol
_except_handler3
fputc
fputwc
feof
fwprintf
fwrite
sscanf
strncmp
toupper
getchar
strchr
strncpy
strrchr
_wassert
fflush
__wgetmainargs
_snprintf
fseek
ftell
fread
perror
abort

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

08f150d1b35eaca25c812ebb0cfd7b9f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

dbghelp

kernel32

user32

gdi32

advapi32

ole32

avswscale

avutil

avformat

avcodec

version

libmmd

msvcr90

Sections

.text Size: 106KB - Virtual size: 106KB

.text1 Size: 512B - Virtual size: 144B

.rdata Size: 33KB - Virtual size: 33KB

.data Size: 4KB - Virtual size: 5.1MB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 24KB - Virtual size: 24KB

.text Size: 160KB - Virtual size: 160KB

.text
Size: 106KB - Virtual size: 106KB

.text1
Size: 512B - Virtual size: 144B

.rdata
Size: 33KB - Virtual size: 33KB

.data
Size: 4KB - Virtual size: 5.1MB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 24KB - Virtual size: 24KB

.text
Size: 160KB - Virtual size: 160KB