2ac7cf97b8fab8c93adb5cbbfa8d5103ca05ccf2b84d3d96ea794e5e2d6d303d_NeikiAnalytics[.]exe

General

Target

2ac7cf97b8fab8c93adb5cbbfa8d5103ca05ccf2b84d3d96ea794e5e2d6d303d_NeikiAnalytics.exe
Size

344KB
MD5

7efd8a38cd1ceca44c2bc00acdcfe4e0
SHA1

51ee1368323c362443db5d38edafb99b8b982563
SHA256

2ac7cf97b8fab8c93adb5cbbfa8d5103ca05ccf2b84d3d96ea794e5e2d6d303d
SHA512

d00fdf106597c8114e641412315d3aa8fead09234b51096eda036a9080f22832f6dec1e28188101f1d5edef348fb1f883dc0f2938031296f4d222ce83c51d215
SSDEEP

6144:EGKAnc98gJQf1Vm5sD8KOF7nLmJi9GHn3B1mzrqVzYwt2aTRHnISz66CTg8Vlh:EGKF8xJ8KO1n4iGXfmz0Ywt2Yovjvh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ac7cf97b8fab8c93adb5cbbfa8d5103ca05ccf2b84d3d96ea794e5e2d6d303d_NeikiAnalytics.exe

Files

2ac7cf97b8fab8c93adb5cbbfa8d5103ca05ccf2b84d3d96ea794e5e2d6d303d_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

443b02778b0090bfd46e85c3a7a2a6cc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetFontLanguageInfo
SetTextAlign
GetDeviceCaps
GetCurrentObject
SetTextColor
GetDCBrushColor
GetTextAlign
SetTextCharacterExtra
GetPixelFormat
GetRandomRgn
SetSystemPaletteUse
GetBkColor

user32

GetMenuCheckMarkDimensions
GetDlgItem
GetKeyboardType
EndDialog
IsWindowUnicode
BeginPaint
GetScrollPos
RemovePropA
GetMenuItemCount
GetWindowDC
EnableWindow
SetDlgItemTextA
GetWindowContextHelpId
GetMenu
LoadIconA
GetPropA
CallWindowProcA
DrawTextA
GetQueueStatus
GetMenuState
SetWindowTextA
GetForegroundWindow
IsWindowEnabled
CharLowerBuffA
wvsprintfA
GetInputState

kernel32

GetModuleHandleA
CreateFileA
CloseHandle
HeapReAlloc
GetDriveTypeA
GetLastError
GetVersion
SetFilePointer
MoveFileA
IsProcessorFeaturePresent
GetFileType
GetCurrentProcessId
GlobalSize
GetProcAddress
GlobalFlags
LocalFlags
GetTickCount
GlobalHandle
LoadResource
DeleteFileA
ExitProcess
WriteFile
GetFileTime
GetFileSize
GetStdHandle
GetSystemTime
lstrlenA
HeapAlloc
GetProcessHeap
HeapFree
SystemTimeToFileTime

Sections

.text
Size: 254KB - Virtual size: 254KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

443b02778b0090bfd46e85c3a7a2a6cc

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 254KB - Virtual size: 254KB

.rdata Size: 38KB - Virtual size: 37KB

.data Size: 1KB - Virtual size: 4KB

.reloc Size: 49KB - Virtual size: 48KB

.text
Size: 254KB - Virtual size: 254KB

.rdata
Size: 38KB - Virtual size: 37KB

.data
Size: 1KB - Virtual size: 4KB

.reloc
Size: 49KB - Virtual size: 48KB