4ee127e63efdbb355c7dd891511f5460_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

4ee127e63efdbb355c7dd891511f5460_NeikiAnalytics.exe
Size

263KB
MD5

4ee127e63efdbb355c7dd891511f5460
SHA1

a3239537e92fed44dddc9906a69963c628387fe0
SHA256

b39f2124847b29303c1ae0481c884cbb80c4cf17532a087ac2f5e8613d475eb6
SHA512

02883bb6dab2c960134db4e11f43a14d6dfdf1c6d1370b67b77695b42456eb503ff960c6df4dab8ed83432aed93ace6fd6b9ecee82f6b5b0f93f2c480494bec6
SSDEEP

6144:6B74iWmn5BxVBvqXKgp3XM18hNn0kP+cfXOj0k3:1iWmn1VByDp3818hjf4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ee127e63efdbb355c7dd891511f5460_NeikiAnalytics.exe

Files

4ee127e63efdbb355c7dd891511f5460_NeikiAnalytics.exe
.dll windows:4 windows x86 arch:x86

72bcafa5a1fca0beb597eb4d616d344a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

timeBeginPeriod
timeEndPeriod
wid32Message
mmioDescend

comctl32

ImageList_GetBkColor
ord17
ImageList_Copy
ImageList_LoadImageW
ImageList_Add
ImageList_Create
ImageList_Destroy
ImageList_ReplaceIcon

shell32

SHGetFolderPathW
SHChangeNotify
RegenerateUserEnvironment
SHGetDesktopFolder
SHGetFolderLocation
SheSetCurDrive
DragAcceptFiles
DragFinish
SHEnumerateUnreadMailAccountsW

user32

DefWindowProcW
OpenClipboard
MessageBoxW
SetFocus
DrawTextW
SetWindowLongW
UnhookWindowsHookEx
GetMenuItemInfoW
EndPaint
GetMessageW
CharLowerW
MonitorFromPoint
UnregisterHotKey
LoadAcceleratorsW
CharUpperW
LoadImageW
UnregisterClassA
MonitorFromRect
TrackPopupMenu
IsCharAlphaW
GetClassNameW
RedrawWindow
RegisterWindowMessageW
EndDialog
IsClipboardFormatAvailable
SetCapture
DestroyAcceleratorTable
PostQuitMessage
SetClipboardData
RegisterClipboardFormatW
MsgWaitForMultipleObjects
SetCursor
PostMessageW
EnableWindow
UnregisterClassW
CreateDialogParamW
GetMessagePos
TranslateAcceleratorW
wsprintfW
GetDlgItem
CallNextHookEx
TranslateMessage
GetClipboardData
UpdateWindow
CreatePopupMenu
MapVirtualKeyW
ScreenToClient
GetDC
EmptyClipboard
MapDialogRect
GetComboBoxInfo
SetMenuItemInfoW
SetActiveWindow
MapWindowPoints
GetScrollInfo
DestroyIcon
GetMonitorInfoW
DrawIconEx
TrackPopupMenuEx
GetDlgCtrlID
IsDialogMessageW
GetKeyState
CheckMenuRadioItem
LoadCursorW
FillRect
DestroyMenu
ReleaseDC
SendDlgItemMessageW
SendMessageW
GetMenu
RegisterClassExW
SetWindowsHookExW
LoadIconW
BeginPaint
AppendMenuW
SetDlgItemTextW
DispatchMessageW
IntersectRect
PeekMessageW
MessageBeep
DialogBoxParamW
InvalidateRect
GetActiveWindow
GetFocus
SetTimer
RegisterClassW
CloseClipboard
GetMenuItemCount
ClientToScreen
KillTimer
OffsetRect
DrawEdge
CopyRect
GetClassInfoExW
CallWindowProcW

advapi32

RegQueryInfoKeyW
CryptDestroyHash
RegCreateKeyW
CryptHashData
RegEnumValueW
RegCloseKey
RegDeleteValueW
CryptAcquireContextW
RegEnumKeyExW
CryptReleaseContext
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
CryptDestroyKey
RegQueryValueExW
CryptImportKey
CryptGetHashParam

kernel32

OutputDebugStringW
InterlockedDecrement
InterlockedCompareExchange
LoadResource
GetStringTypeW
InterlockedIncrement
GetConsoleMode
RemoveDirectoryW
IsValidCodePage
GetFileInformationByHandle
VirtualQuery
LoadLibraryW
SetHandleCount
SetThreadPriority
GetLastError
GetConsoleCP
GetThreadPriority
GetFileTime
HeapCreate
GetFileSize
GetProcessAffinityMask
lstrlenW
GetSystemTimeAsFileTime
GetProcessHeap
GetStartupInfoW
FindResourceExW
ResetEvent
GlobalLock
EnterCriticalSection
TlsFree
HeapFree
WaitForSingleObject
GetStdHandle
SetEndOfFile
CreateFileW
GetFileAttributesExW
FreeEnvironmentStringsW
Sleep
MulDiv
FindFirstFileW
LCMapStringW
GetOverlappedResult
SetEvent
HeapReAlloc
SystemTimeToFileTime
GetFileType
LocalFileTimeToFileTime
CreateThread
GetACP
WriteFile
GetCurrentProcess
FindResourceW
MoveFileExW
QueryPerformanceCounter
WriteConsoleW
DeleteCriticalSection
HeapAlloc
GlobalUnlock
SetFilePointer
IsDebuggerPresent
FlushFileBuffers
GetCurrentThreadId
FileTimeToSystemTime
FindClose
QueryPerformanceFrequency
FileTimeToLocalFileTime
HeapQueryInformation
LeaveCriticalSection
SetUnhandledExceptionFilter
GetModuleHandleW
CreateEventW
GetCommandLineW
LocalAlloc
SetErrorMode
SetLastError
DuplicateHandle
GetCPInfo
FindNextFileW
GetCurrentProcessId
DeleteFileW
LoadLibraryA
InterlockedPushEntrySList
TlsSetValue
LockResource
CreateMutexW
SetConsoleCtrlHandler
HeapSetInformation
SizeofResource
InitializeCriticalSection
CopyFileW
FormatMessageW
ReadFile
RaiseException
FreeLibrary
InitializeCriticalSectionAndSpinCount
HeapSize
TlsAlloc
VirtualProtect
GetExitCodeThread
TlsGetValue
CloseHandle
WaitForMultipleObjects
GetModuleHandleA
GetOEMCP
GetProcAddress
GetCurrentThread
RtlUnwind

ole32

ReleaseStgMedium
OleSetClipboard
CoUninitialize
OleUninitialize
CoInitialize
OleInitialize
CoCreateInstance
CoTaskMemAlloc
CoCreateGuid
CoTaskMemFree
CreateStreamOnHGlobal

Exports

Exports

AllCurrencies_en_PH
_Decompress_Decompress

Sections

.text
Size: 134KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72bcafa5a1fca0beb597eb4d616d344a

Headers

File Characteristics

Imports

winmm

comctl32

shell32

user32

advapi32

kernel32

ole32

Exports

Exports

Sections

.text Size: 134KB - Virtual size: 136KB

.data Size: 63KB - Virtual size: 64KB

.rdata Size: 12KB - Virtual size: 12KB

.bss Size: - Virtual size: 40KB

.edata Size: 2KB - Virtual size: 4KB

.idata Size: 7KB - Virtual size: 8KB

.rsrc Size: 30KB - Virtual size: 32KB

.reloc Size: 13KB - Virtual size: 12KB

.text
Size: 134KB - Virtual size: 136KB

.data
Size: 63KB - Virtual size: 64KB

.rdata
Size: 12KB - Virtual size: 12KB

.bss
Size: - Virtual size: 40KB

.edata
Size: 2KB - Virtual size: 4KB

.idata
Size: 7KB - Virtual size: 8KB

.rsrc
Size: 30KB - Virtual size: 32KB

.reloc
Size: 13KB - Virtual size: 12KB