9f0b4975283a9ad9dd2e298ad55feff0_NeikiAnalytics[.]exe

General

Target

9f0b4975283a9ad9dd2e298ad55feff0_NeikiAnalytics.exe
Size

224KB
MD5

9f0b4975283a9ad9dd2e298ad55feff0
SHA1

873c9e1acb41d452fca9444db6f7a90eac0a6142
SHA256

bd9524d7fdba800d766226ec1703f6a911fc89c7c6ba45af5d21b10893b2bd79
SHA512

3f2ebc71d536b6c36194aba19851a7d419a1e5d065622b4e3173e33e44fc9808db5638cd2bc75e43f3607e96a6ddbcbc92b0e6a4b87b75b8eef3e58d6e9a0780
SSDEEP

3072:CeuRv0Mq8EhGZ4BuQW416KvbcHjerJUAdohv:Ce+0t8EhGZ4Dh16KvoHj2Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9f0b4975283a9ad9dd2e298ad55feff0_NeikiAnalytics.exe

Files

9f0b4975283a9ad9dd2e298ad55feff0_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

e1bfd742d83f7db6a931d454d315578f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetVersion
ExitProcess
RtlUnwind
GetLastError
CloseHandle
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetProcAddress
GetModuleHandleA
DebugBreak
InterlockedDecrement
OutputDebugStringA
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
HeapFree
VirtualFree
FlushFileBuffers
IsBadWritePtr
IsBadReadPtr
HeapValidate
MultiByteToWideChar
LCMapStringA
LCMapStringW
SetStdHandle
SetConsoleCtrlHandler
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
SetUnhandledExceptionFilter
IsBadCodePtr
GetStringTypeA
GetStringTypeW
RaiseException

Sections

.text
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1bfd742d83f7db6a931d454d315578f

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 180KB - Virtual size: 177KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 20KB - Virtual size: 23KB

.idata Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 180KB - Virtual size: 177KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 20KB - Virtual size: 23KB

.idata
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 4KB