de92c7decc93fc8168c0d5f65deec930_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

de92c7decc93fc8168c0d5f65deec930_NeikiAnalytics.exe
Size

5.7MB
MD5

de92c7decc93fc8168c0d5f65deec930
SHA1

90bf2780eca546874e6452b76cf8c2e27d49f5ac
SHA256

831b2298656c3505f427e3456bc8c5c294d88d0728213e953382bb843c277605
SHA512

7efcd3d4dcfd8b9735519324c32155f65ff6ea9601c52e364a8277fce44570dbc2546ed2cfb72bc07e29a384ffc374de917d5585bd41832d8c22fed774fcdbc5
SSDEEP

98304:BmEi4547ELRjpkHiyfH7KMxV66dTm2jX3E73PZx6qLXc1X2:J14QLHktK4Tm2jq3x3LXY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de92c7decc93fc8168c0d5f65deec930_NeikiAnalytics.exe

Files

de92c7decc93fc8168c0d5f65deec930_NeikiAnalytics.exe
.dll windows:6 windows x86 arch:x86

a999e5615f71739549ba214d2b5709db

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileSizeEx
LocalAlloc
GetModuleFileNameW
LoadLibraryA
GetProcAddress

user32

PtInRect

advapi32

CryptEncrypt

shell32

SHGetSpecialFolderPathA

FreeMibTable
WSASocketW

setupapi

crypt32

shlwapi

StrStrIA

dbghelp

ImageNtHeader

version

GetFileVersionInfoSizeA

bcrypt

BCryptGenRandom

Sections

.text
Size: - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 854KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upx0
Size: - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.upx1
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.upx2
Size: 5.7MB - Virtual size: 5.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 233B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a999e5615f71739549ba214d2b5709db

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

setupapi

crypt32

shlwapi

dbghelp

version

bcrypt

Sections

.text Size: - Virtual size: 3.0MB

.rdata Size: - Virtual size: 854KB

.data Size: - Virtual size: 68KB

.upx0 Size: - Virtual size: 2.0MB

.upx1 Size: 2KB - Virtual size: 1KB

.upx2 Size: 5.7MB - Virtual size: 5.7MB

.reloc Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 233B

.text
Size: - Virtual size: 3.0MB

.rdata
Size: - Virtual size: 854KB

.data
Size: - Virtual size: 68KB

.upx0
Size: - Virtual size: 2.0MB

.upx1
Size: 2KB - Virtual size: 1KB

.upx2
Size: 5.7MB - Virtual size: 5.7MB

.reloc
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 233B