8a9158611cee85cb032c1e6aa21baeb0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

8a9158611cee85cb032c1e6aa21baeb0_NeikiAnalytics.exe
Size

560KB
MD5

8a9158611cee85cb032c1e6aa21baeb0
SHA1

c27bb9018f3dded15fc288b094ea1c32647ca0d7
SHA256

f804152a59d789c28995b197ce4ba73f54a28949316f6d1ced73a37d3de324d0
SHA512

6b879e1734225d1393b7d79355aec1b95f90f3b09d9b1ed296b9872aa15e24dd371ba0b458136e97ce10427871c18725b54cd812c8e992b0e95b80f28b1759ea
SSDEEP

6144:mr+pjgablJWRNVy2+N1t5X52BWm3wVd5PApKUJmmbLb2HI59:mipjgslsRNVch0BWm3wV/PAUUJmmXbr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a9158611cee85cb032c1e6aa21baeb0_NeikiAnalytics.exe

Files

8a9158611cee85cb032c1e6aa21baeb0_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

4da0cb6c913bf115d40fd091a3409f01

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gamedev

?IsLocalMessage@CGetEmotion@@QAEHXZ
??1CGetEmotion@@UAE@XZ
?GetEmotion@CGetEmotion@@QAEHPBD0PAD@Z
?SetMyName@CGetEmotion@@QAEXPBD@Z
??0CGetEmotion@@QAE@XZ
?RegWriteKeyInt@@YAHPBD00H@Z
?RegReadKeyInt@@YAHPBD00AAK@Z
??1CImage@@UAE@XZ
?TransDraw@CImage@@QAEHPAVCDC@@KHHHHHH@Z
?LoadBitmapA@CImage@@QAEHIPAUHINSTANCE__@@@Z
??0CImage@@QAE@XZ
?TitleDrawImage@CImage@@QAEHPAVCDC@@HHHH@Z
??0CGameLink@@QAE@XZ
??1CGameLink@@UAE@XZ
?CloseConnect@CGameLink@@QAEXXZ
?SendCmd@CGameLink@@QAEHEPBDH@Z
?ConnectServer@CGameLink@@QAEHPBDPAUHWND__@@@Z
?RecvCmd@CGameLink@@QAEHAAEPADAAH@Z
?RegReadKeyStr@@YAHPBD00PADAAK@Z
?IsConnectOK@CGameLink@@QAEHXZ

winmm

PlaySoundA

opengl32

glDisable
glDisableClientState
glEndList
glTexCoordPointer
glVertexPointer
glDrawElements
glEnableClientState
glTexEnvf
glNormalPointer
glMaterialf
glMaterialfv
glEnable
glBindTexture
glGenTextures
glNewList
glPopMatrix
glGetFloatv
glGenLists
glPushMatrix
glCallList
glLoadIdentity
glTranslatef
glScalef
glMultMatrixf
glMatrixMode
glTexImage2D
glRotatef
glPixelStorei
glEnd
glTexParameterf
glTexCoord2f
glNormal3f
glVertex3f
glBlendFunc
glColorPointer
glBegin
glShadeModel
wglMakeCurrent
glHint
glRasterPos2f
wglCreateContext
glDepthFunc
glClearDepth
glClearColor
glFlush
glColor3f
glLineWidth
glLineStipple
glClear
glVertex2f
wglDeleteContext
glViewport
glReadPixels
glGetDoublev
glGetIntegerv
glTexParameteri
glLoadName
glPushName
glInitNames
glRenderMode
glSelectBuffer
glPopClientAttrib
glPopAttrib
glPushAttrib
glPushClientAttrib
glBitmap
glVertex2i
glLightModelf
glLightfv
glLightModelfv

glu32

gluOrtho2D
gluPickMatrix
gluProject
gluUnProject
gluBuild2DMipmaps
gluPerspective

dsound

ord1

kernel32

TlsAlloc
WaitForSingleObject
GlobalLock
GetThreadLocale
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCurrentThread
GlobalAlloc
InitializeCriticalSection
DeleteCriticalSection
GetProcessVersion
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalUnlock
GetCPInfo
GetOEMCP
SizeofResource
GetFileAttributesA
GetFullPathNameA
UnhandledExceptionFilter
DuplicateHandle
GetCurrentProcess
WriteFile
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
FindClose
FindFirstFileA
GetVolumeInformationA
GetFileSize
WritePrivateProfileStringA
SetErrorMode
HeapAlloc
HeapFree
RtlUnwind
ExitThread
TerminateProcess
HeapReAlloc
RaiseException
GetStartupInfoA
GetCommandLineA
SetStdHandle
GetFileType
GetTimeZoneInformation
GetACP
HeapSize
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
MulDiv
SetLastError
lstrcmpA
FindResourceA
LoadResource
LockResource
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
IsBadReadPtr
IsBadWritePtr
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
ReleaseMutex
CreateMutexA
ExitProcess
GetModuleHandleA
GetVersionExA
CreateFileMappingA
MapViewOfFile
LocalAlloc
UnmapViewOfFile
CloseHandle
CreateFileW
CreateFileA
ReadFile
SetFilePointer
GetProcAddress
MultiByteToWideChar
SetCurrentDirectoryA
GetVersion
GetWindowsDirectoryA
EnterCriticalSection
LeaveCriticalSection
Sleep
lstrcatA
lstrlenA
WinExec
GetTickCount
GetLastError
FormatMessageA
LocalFree
lstrcpyA
OutputDebugStringA
lstrcpynA
LoadLibraryA
FreeLibrary
GetProfileStringA
GetFileTime
GlobalFree
GetModuleFileNameA
GlobalFlags

user32

CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetPropA
GetForegroundWindow
GetWindow
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
SetFocus
SetWindowPos
MoveWindow
SetWindowLongA
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
GetWindowLongA
IsDialogMessageA
SetPropA
UnhookWindowsHookEx
SendDlgItemMessageA
GetDlgItem
ReleaseDC
PostQuitMessage
BeginPaint
EndPaint
DestroyWindow
ReleaseCapture
SetCapture
RegisterClassA
ShowWindow
PeekMessageA
TranslateMessage
DispatchMessageA
GetFocus
LoadIconA
GetClassInfoA
DefWindowProcA
GetMenuItemCount
CreatePopupMenu
GetDlgCtrlID
GetKeyState
GetParent
PostThreadMessageA
InflateRect
BeginDeferWindowPos
EndDeferWindowPos
GetSystemMenu
AppendMenuA
GetSystemMetrics
PtInRect
LoadCursorA
GetDesktopWindow
KillTimer
SetTimer
SetCursor
DestroyCursor
SetForegroundWindow
SetActiveWindow
IsWindowVisible
GetClientRect
IsIconic
GetCursorPos
SetCursorPos
mouse_event
InvalidateRect
LoadMenuA
GetSubMenu
MessageBeep
GetSysColor
GetWindowRect
EnableWindow
wsprintfA
IsWindow
PostMessageA
SendMessageA
MessageBoxA
GetNextDlgGroupItem
CharUpperA
CopyAcceleratorTableA
GetClassNameA
SetRect
GetSysColorBrush
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
CharNextA
RedrawWindow
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
LoadStringA
FindWindowA
DestroyMenu
GetMenuCheckMarkDimensions
GetCapture
RegisterClipboardFormatA
EqualRect
ModifyMenuA
LoadBitmapA
GetMenuState
EnableMenuItem
SetMenuItemBitmaps
CheckMenuItem
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
GrayStringA
GetActiveWindow
ValidateRect
GetWindowDC
DrawTextA
TabbedTextOutA
MapWindowPoints
ClientToScreen
UpdateWindow
DeferWindowPos
AdjustWindowRectEx
ScreenToClient
GetScrollInfo
CopyRect
ScrollWindow
GetScrollRange
SetScrollInfo
ShowScrollBar
SetScrollPos
SetScrollRange
GetScrollPos
WinHelpA
GetTopWindow
IsChild
TrackPopupMenu
GetMenu
GetMenuItemID
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
GetClassLongA
GetDC
GetMessageA
IsWindowEnabled
HideCaret
DrawFocusRect
UnregisterClassA
IsWindowUnicode
ShowCaret
ExcludeUpdateRgn
DefDlgProcA

gdi32

SetPixelFormat
DeleteDC
SwapBuffers
GdiFlush
SetDIBits
SelectObject
CreateDIBSection
CreateCompatibleDC
GetObjectA
CreateSolidBrush
BitBlt
ChoosePixelFormat
GetClipBox
SetTextColor
SetBkColor
SaveDC
CreateDIBitmap
GetStockObject
DeleteObject
ScaleViewportExtEx
SetWindowExtEx
OffsetViewportOrgEx
SetViewportExtEx
CreateFontIndirectA
GetMapMode
GetBkColor
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
ScaleWindowExtEx
GetTextExtentPointA
PatBlt
CreateBitmap
Escape
ExtTextOutA
TextOutA
LPtoDP
IntersectClipRect
DPtoLP
GetTextColor
GetDeviceCaps
PtVisible
RectVisible
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush

comdlg32

GetFileTitleA
ChooseColorA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

shell32

DragFinish
DragQueryFileA
ShellExecuteA

comctl32

ord17
ImageList_Destroy

oledlg

ord8

ole32

OleFlushClipboard
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleInitialize
CoRevokeClassObject
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
VariantCopy
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantClear

freetype-6

ord46
ord134
ord78
ord133
ord92
ord48
ord50
ord35
ord106
ord79
ord36
ord82
ord37

Sections

.text
Size: 404KB - Virtual size: 402KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4da0cb6c913bf115d40fd091a3409f01

Headers

File Characteristics

Imports

gamedev

winmm

opengl32

glu32

dsound

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

freetype-6

Sections

.text Size: 404KB - Virtual size: 402KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 28KB - Virtual size: 252KB

.rsrc Size: 64KB - Virtual size: 61KB

.text
Size: 404KB - Virtual size: 402KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 28KB - Virtual size: 252KB

.rsrc
Size: 64KB - Virtual size: 61KB