34b833cb0ad86f959c520cc6f63b38d0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

34b833cb0ad86f959c520cc6f63b38d0_NeikiAnalytics.exe
Size

200KB
MD5

34b833cb0ad86f959c520cc6f63b38d0
SHA1

381e48b52e0ec3d783f66db0f04ca880621b20f4
SHA256

1139ee2196aebfc31a47f557422fb7b81756392b5e115790032b015ded59ff53
SHA512

e7303d2f20b51c13ff10f9d9e0d533ce2b3603803a0ee133b3868a27fe8a89cc5284cee24eb0140245d487033280575b34e7b32c22e9b0dc1e8f7b87346cf303
SSDEEP

6144:0rnqPDBX7NIlc6wOMnXqYIGvQgHbXjkiIS:02voMXzI/gHp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
34b833cb0ad86f959c520cc6f63b38d0_NeikiAnalytics.exe

Files

34b833cb0ad86f959c520cc6f63b38d0_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

ae3dc808b3570de5bdba820f155d46e5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetModuleFileNameA
IsBadHugeReadPtr
GlobalHandle
GetSystemTimeAsFileTime
SetEndOfFile
GetSystemInfo
GetFullPathNameW
HeapFree
GetCurrentThread
SetFilePointer
GetCPInfo
GlobalAlloc
GetFileAttributesW
lstrcmpiW
GlobalFree
GetVersionExW
GetProcessHeap
PostQueuedCompletionStatus
GetQueuedCompletionStatus
IsBadReadPtr
CreateEventW
InterlockedIncrement
GetCurrentProcessId
CloseHandle
ReadFile
GetLastError
CreateIoCompletionPort
GetPrivateProfileStringW
GetTickCount
FreeLibrary
MultiByteToWideChar
IsBadCodePtr
MulDiv
LoadLibraryW
WaitForMultipleObjects
OutputDebugStringA
GlobalLock
GetProfileIntA
InterlockedExchange
DeleteCriticalSection
lstrlenW
lstrcpyA
WaitForSingleObject
EnterCriticalSection
DeleteFileW
SetThreadPriority
SetEvent
GetEnvironmentStringsW
lstrcpyW
lstrcmpW
lstrlenA
IsBadWritePtr
GetCurrentProcess
GlobalMemoryStatus
QueryPerformanceCounter
InterlockedDecrement
ResetEvent
GetFileSize
WriteFile
GetThreadPriority
CreateSemaphoreW
WideCharToMultiByte
SetUnhandledExceptionFilter
lstrcpynW
CreateFileW
VirtualFree
LeaveCriticalSection
GlobalUnlock
ReleaseSemaphore
HeapAlloc
GetSystemDefaultLangID
CreateThread
InitializeCriticalSection
GetDiskFreeSpaceW

advapi32

RegEnumKeyExW
RegSetValueExW
RegOpenKeyW
RegOpenKeyExW
RegSetValueW
RegCloseKey
RegDeleteKeyW
RegCreateKeyW
RegQueryValueExW
RegEnumKeyW

msvcrt

_purecall
??3@YAXPAX@Z
_ftol
wcslen
??2@YAPAXI@Z
_except_handler3

user32

IsWindowVisible
GetClientRect
EnableWindow
IsWindow
CheckDlgButton
GetWindowRect
DestroyWindow
SetWindowLongW
CreateDialogParamW
SetCursor
GetDC
GetAsyncKeyState
PeekMessageW
CheckRadioButton
DefWindowProcW
LoadCursorW
wsprintfW
ShowWindow
TranslateMessage
MoveWindow
SetDlgItemTextW
ClientToScreen
ReleaseDC
SetDlgItemInt
GetWindowLongW
GetDesktopWindow
InvalidateRect
IsRectEmpty
SendMessageW
DispatchMessageW
LoadStringW
GetDlgItemInt
GetDlgItem

winmm

mixerOpen
mixerClose
mixerGetControlDetailsW
waveInStart
waveInUnprepareHeader
waveInReset
mixerGetLineControlsW
mixerGetID
waveInClose
waveInPrepareHeader
CloseDriver
waveInStop
OpenDriver
waveInAddBuffer
mixerGetLineInfoW
mixerSetControlDetails
waveInGetDevCapsW
SendDriverMessage
waveInOpen

msvfw32

ICOpen
ICClose
ICCompress
ICLocate
ICGetInfo
ICDecompress
ICSendMessage

ole32

CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitialize
CoCreateInstance
StringFromGUID2
CoFreeUnusedLibraries

gdi32

GetStockObject
PatBlt
GetTextExtentPoint32W
SelectObject
GetPaletteEntries
GetObjectW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae3dc808b3570de5bdba820f155d46e5

Headers

File Characteristics

Imports

kernel32

advapi32

msvcrt

user32

winmm

msvfw32

ole32

gdi32

version

Sections

.text Size: 172KB - Virtual size: 171KB

.data Size: 25KB - Virtual size: 25KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 172KB - Virtual size: 171KB

.data
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 1024B - Virtual size: 644B