3011dbf6ef7b89cc1f4ee9bf36531385558b382d1d55aef5ead48cc23c194eb6_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

3011dbf6ef7b89cc1f4ee9bf36531385558b382d1d55aef5ead48cc23c194eb6_NeikiAnalytics.exe
Size

34KB
MD5

2bb2ab1533a8a3d8ae09f68f588e9fb0
SHA1

213ea666438a156c7e99e9f55da27c306bf43a9c
SHA256

3011dbf6ef7b89cc1f4ee9bf36531385558b382d1d55aef5ead48cc23c194eb6
SHA512

dddf45f8eb1e727c4b417aa8da5ef2183e9e65163b7d7d1ec587ea072d4f1b53a53cca770b36306cd666f64b23836a4884e568f3b8cee26bdae7c4f1a02c0040
SSDEEP

384:4dNQ/NKukIvqSiNGG7uNubCFlVOuuPwK9hjkVfP1MlyPePFHCqviv/I:gNQ/NnkIvqSiNGIuNubMnuhAVfNKVRA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3011dbf6ef7b89cc1f4ee9bf36531385558b382d1d55aef5ead48cc23c194eb6_NeikiAnalytics.exe

Files

3011dbf6ef7b89cc1f4ee9bf36531385558b382d1d55aef5ead48cc23c194eb6_NeikiAnalytics.exe
.dll windows:6 windows x64 arch:x64

710f811debbaff7be57017cf93ec1cb6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

c:\Users\wag\mozilla\comm-253\sm-obj\config\external\lgpllibs\lgpllibs.pdb

Imports

mozglue

free
malloc

kernel32

DisableThreadLibraryCalls
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
IsProcessorFeaturePresent
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter

vcruntime140

_CxxThrowException
__C_specific_handler
__std_exception_copy
__std_exception_destroy
__std_type_info_destroy_list
_purecall
memcpy
memmove
memset

api-ms-win-crt-heap-l1-1-0

_callnewh

api-ms-win-crt-runtime-l1-1-0

_cexit
_configure_narrow_argv
_execute_onexit_table
_initialize_narrow_environment
_initialize_onexit_table
_initterm
_initterm_e
_seh_filter_dll

api-ms-win-crt-math-l1-1-0

cos
exp
ldexp
sin
sqrt

Exports

Exports

??0SoundTouch@soundtouch@@QEAA@AEBV01@@Z
??0SoundTouch@soundtouch@@QEAA@XZ
??1SoundTouch@soundtouch@@UEAA@XZ
??4SoundTouch@soundtouch@@QEAAAEAV01@AEBV01@@Z
??_7SoundTouch@soundtouch@@6B@
?calcEffectiveRateAndTempo@SoundTouch@soundtouch@@AEAAXXZ
?clear@SoundTouch@soundtouch@@UEAAXXZ
?createSoundTouchObj@soundtouch@@YAPEAVSoundTouch@1@XZ
?destroySoundTouchObj@soundtouch@@YAXPEAVSoundTouch@1@@Z
?flush@SoundTouch@soundtouch@@QEAAXXZ
?getSetting@SoundTouch@soundtouch@@QEBAHH@Z
?getVersionId@SoundTouch@soundtouch@@SAIXZ
?getVersionString@SoundTouch@soundtouch@@SAPEBDXZ
?numUnprocessedSamples@SoundTouch@soundtouch@@UEBAIXZ
?putSamples@SoundTouch@soundtouch@@UEAAXPEBMI@Z
?setChannels@SoundTouch@soundtouch@@QEAAXI@Z
?setPitch@SoundTouch@soundtouch@@QEAAXM@Z
?setPitchOctaves@SoundTouch@soundtouch@@QEAAXM@Z
?setPitchSemiTones@SoundTouch@soundtouch@@QEAAXH@Z
?setPitchSemiTones@SoundTouch@soundtouch@@QEAAXM@Z
?setRate@SoundTouch@soundtouch@@QEAAXM@Z
?setRateChange@SoundTouch@soundtouch@@QEAAXM@Z
?setSampleRate@SoundTouch@soundtouch@@QEAAXI@Z
?setSetting@SoundTouch@soundtouch@@QEAA_NHH@Z
?setTempo@SoundTouch@soundtouch@@QEAAXM@Z
?setTempoChange@SoundTouch@soundtouch@@QEAAXM@Z

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.voltbl
Size: 512B - Virtual size: 14B

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

710f811debbaff7be57017cf93ec1cb6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mozglue

kernel32

vcruntime140

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 1KB

.pdata Size: 1KB - Virtual size: 1KB

.00cfg Size: 512B - Virtual size: 40B

.voltbl Size: 512B - Virtual size: 14B

.rsrc Size: 1024B - Virtual size: 888B

.reloc Size: 512B - Virtual size: 300B

.text
Size: 21KB - Virtual size: 20KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 1KB - Virtual size: 1KB

.00cfg
Size: 512B - Virtual size: 40B

.voltbl
Size: 512B - Virtual size: 14B

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 512B - Virtual size: 300B