2c2a19c7d26de081c6ea211d5dd8269db1f14b3b152b13d753df88e5d320abd7_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

2c2a19c7d26de081c6ea211d5dd8269db1f14b3b152b13d753df88e5d320abd7_NeikiAnalytics.exe
Size

49KB
MD5

4472a686244547d0aa48576da0652000
SHA1

09a61ca87cac0d99dcab8f001b8dadf70c59b7a8
SHA256

2c2a19c7d26de081c6ea211d5dd8269db1f14b3b152b13d753df88e5d320abd7
SHA512

c5f58f0857b015f48e936977ec02a2d99c642072970b916343aa003a7851dea7651191b587e46798af411234efdb47816d3de2ba561bf7ce7c3ea365729a1971
SSDEEP

768:6l5Y5PqyW4Hi54HxPzWnKqHA7oD2zOa2VCIA5FU3NiqboeA0h/O0EJW:bPqyDnHxSnPzq5IFXmW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c2a19c7d26de081c6ea211d5dd8269db1f14b3b152b13d753df88e5d320abd7_NeikiAnalytics.exe

Files

2c2a19c7d26de081c6ea211d5dd8269db1f14b3b152b13d753df88e5d320abd7_NeikiAnalytics.exe
.exe windows:4 windows x64 arch:x64

bc174f317d52b8ea9eb84da917f42d2c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

PDB Paths

Imports

msys-intl-8

libintl_bindtextdomain
libintl_gettext
libintl_setlocale
libintl_textdomain

msys-2.0

__assert_func
__cxa_atexit
__errno
__getreent
__locale_ctype_ptr
__locale_mb_cur_max
__main
__memcpy_chk
__sprintf_chk
__strcpy_chk
_dll_crt0
_exit
_impure_ptr
abort
calloc
close
cygwin_internal
dll_dllcrt0
dup2
error
exit
explicit_bzero
fclose
fcntl
fdopen
fileno
fopen
fprintf
fputc_unlocked
fputs_unlocked
fread
fread_unlocked
free
freopen
fstat
ftello
fwrite
fwrite_unlocked
getc_unlocked
getenv
getgid
getopt_long
getpid
getppid
gettimeofday
getuid
iswprint
lseek
malloc
mbrtowc
mbsinit
memchr
memcmp
memcpy
memset
msys_detach_dll
nl_langinfo
open
optarg
optind
posix_fadvise
posix_memalign
printf
program_invocation_name
program_invocation_short_name
pthread_mutex_lock
pthread_mutex_unlock
read
realloc
setlocale
setvbuf
stpcpy
strchr
strcmp
strcpy
strlen
strncmp
strrchr
strtoumax

kernel32

GetACP
GetModuleHandleA
GetModuleHandleW

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc174f317d52b8ea9eb84da917f42d2c

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msys-intl-8

msys-2.0

kernel32

Sections

.text Size: 30KB - Virtual size: 30KB

.data Size: 512B - Virtual size: 256B

.rdata Size: 7KB - Virtual size: 7KB

.buildid Size: 512B - Virtual size: 53B

.pdata Size: 2KB - Virtual size: 1KB

.xdata Size: 2KB - Virtual size: 1KB

.bss Size: - Virtual size: 5KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 96B

.text
Size: 30KB - Virtual size: 30KB

.data
Size: 512B - Virtual size: 256B

.rdata
Size: 7KB - Virtual size: 7KB

.buildid
Size: 512B - Virtual size: 53B

.pdata
Size: 2KB - Virtual size: 1KB

.xdata
Size: 2KB - Virtual size: 1KB

.bss
Size: - Virtual size: 5KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 96B