1fd0db7775af30f4ce03a298c9339e20_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

1fd0db7775af30f4ce03a298c9339e20_NeikiAnalytics.exe
Size

860KB
MD5

1fd0db7775af30f4ce03a298c9339e20
SHA1

fff94870f8952ef6f7499c2903a50aedcc3cdc2f
SHA256

c321b2b60ac1684c5c5358cf3abfb43ad48a6f61e3795acb103f2f59b5c67960
SHA512

773a371dfc416c4ab3de5e689f6f756b56febd0db5ea2c05d2433998b81f192d34ba6b45fabc012c620e897fb66d75ae9f5cf689ef1a148a38d4389e7eb02a9b
SSDEEP

12288:mfzEYl6R44SNebqJTokjt7oYBddNhp4ziGfSeypBilD/MohTkkHxDVLjppC55xnU:mfzEo6R4vpTo+T3d5ralZ3Lj3dJKS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1fd0db7775af30f4ce03a298c9339e20_NeikiAnalytics.exe

Files

1fd0db7775af30f4ce03a298c9339e20_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

fdd1752b9527a1745b5341694124a2f7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateJobObjectW
MoveFileExA
GetStringTypeExA
_lcreat
GetNumberFormatW
QueryPerformanceCounter
UpdateResourceA
SetEndOfFile
MoveFileW
GetModuleHandleW
SetSystemTimeAdjustment
EnumResourceLanguagesW
_lwrite
GetCurrentProcess
GetPrivateProfileStructA
UnmapViewOfFile
OpenSemaphoreA
EnumSystemLanguageGroupsA
IsBadHugeWritePtr
GetProfileStringA
UpdateResourceW
FlushInstructionCache
GlobalMemoryStatus
SizeofResource
GetStartupInfoW
GlobalUnWire
WaitForMultipleObjects
BackupSeek
SuspendThread
OutputDebugStringW
WritePrivateProfileSectionW
DefineDosDeviceW
GetProcessTimes
SetStdHandle
GetFileInformationByHandle
MapViewOfFileEx
Process32FirstW
DeleteVolumeMountPointW
GetCurrentProcessId
LockFile
SetThreadPriority
SetUnhandledExceptionFilter
MapViewOfFile
ExitProcess
GetLocalTime
FatalExit
GetCurrentDirectoryW
SetTapeParameters
GetFileAttributesA
MultiByteToWideChar
_lclose
SetFileAttributesA

user32

SetPropW
SendMessageW
SetScrollPos
GetThreadDesktop
DdeSetQualityOfService
GetKeyboardState
GetWindowInfo
InvalidateRgn
ShowCursor
EnumDisplayMonitors
SetCaretBlinkTime
GetCapture
GetSysColorBrush
GetDlgItemTextW
DdeCreateDataHandle
SetClassLongW
GetKeyboardLayout
IsIconic
CloseClipboard
SetWindowLongA
CopyRect
OpenDesktopW
GetCursorInfo
GetMenuState
SetWindowRgn
OpenIcon
DdeFreeStringHandle
TranslateAcceleratorW
AttachThreadInput
GetKeyboardType
GetPropW
GetMenuContextHelpId
DrawIconEx
DrawAnimatedRects
MessageBoxIndirectW
BeginDeferWindowPos
GetWindowModuleFileNameA
MapVirtualKeyExA
BringWindowToTop
SetWindowLongW
CheckMenuRadioItem
LockWindowUpdate
CreateAcceleratorTableA
SendDlgItemMessageA
ArrangeIconicWindows
CopyImage
PackDDElParam
DefWindowProcW
DdeNameService
GetUserObjectSecurity
DdeGetData
ReuseDDElParam
DdeConnectList
MonitorFromWindow

Sections

.text
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 293KB - Virtual size: 569KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 239KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdd1752b9527a1745b5341694124a2f7

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 311KB - Virtual size: 311KB

.data Size: 293KB - Virtual size: 569KB

.reloc Size: 4KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 2KB

.rsrc Size: 239KB - Virtual size: 239KB

.rdata Size: 4KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 4KB

.text
Size: 311KB - Virtual size: 311KB

.data
Size: 293KB - Virtual size: 569KB

.reloc
Size: 4KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 239KB - Virtual size: 239KB

.rdata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB