51e8e7f08fe5de2d3474750faf6d04f4be2d04234a57ea3904e0554fefe369fd_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

51e8e7f08fe5de2d3474750faf6d04f4be2d04234a57ea3904e0554fefe369fd_NeikiAnalytics.exe
Size

3.7MB
MD5

61e0e221d9b3ec49eac5982860bb5e90
SHA1

26c8732dc937afb70cad1a292be703277e611d72
SHA256

51e8e7f08fe5de2d3474750faf6d04f4be2d04234a57ea3904e0554fefe369fd
SHA512

f0bedfeac3ed8bf9b90191fc8c7f5f1feed626bc6579a6b84f6b858d9bff5503e97fd0b1e05802a106c342139b7e6bdeee2f6d0f2f6badd587012b1f08dd75ae
SSDEEP

49152:5lRBrM0OGfDta+DA3BM5cvhLdKGpLPusCnMvLgzsfYvEt0kTC0Z1G7Cu59bpM6c:HRAGfzDA3BM5cvxo+G7bpI0FXycdv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
51e8e7f08fe5de2d3474750faf6d04f4be2d04234a57ea3904e0554fefe369fd_NeikiAnalytics.exe

Files

51e8e7f08fe5de2d3474750faf6d04f4be2d04234a57ea3904e0554fefe369fd_NeikiAnalytics.exe
.dll windows:6 windows x64 arch:x64

c029e0d4c9d1aff962ecc98d99473e15

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

opengl32

glViewport
glVertex3f
glVertex2i
glVertex2f
glTranslatef
glTexParameteri
glTexParameterf
glTexImage2D
glTexEnvf
glTexCoord2f
glScalef
glRotatef
glPushMatrix
glPopMatrix
glNormal3f
glNewList
glLineWidth
glGetIntegerv
glGenTextures
glGenLists
glEndList
glEnd
glEnable
glDisable
glDeleteTextures
glDeleteLists
glCopyTexSubImage2D
glCopyTexImage2D
glColor4f
glColor4d
glClearColor
glClear
glCallList
glBlendFunc
glBindTexture
glBegin
glGetString
wglGetProcAddress
wglGetCurrentDC

xplm_64

XPLMDestroyInstance
XPLMLoadObject
XPLMEnableFeature
XPLMReloadPlugins
XPLMCheckMenuItem
XPLMAppendMenuItem
XPLMClearAllMenuItems
XPLMCreateMenu
XPLMCreateWindowEx
XPLMCreateWindow
XPLMDestroyWindow
XPLMGetScreenBoundsGlobal
XPLMGetMouseLocation
XPLMGetMouseLocationGlobal
XPLMUnloadObject
XPLMSetWindowGeometry
XPLMSetWindowIsVisible
XPLMSetWindowGravity
XPLMSetWindowResizingLimits
XPLMSetWindowPositioningMode
XPLMSetWindowTitle
XPLMTakeKeyboardFocus
XPLMSetGraphicsState
XPLMBindTexture2d
XPLMWorldToLocal
XPLMUnregisterCommandHandler
XPLMRegisterCommandHandler
XPLMCreateCommand
XPLMCommandOnce
XPLMFindCommand
XPLMReadCameraPosition
XPLMUnregisterDataAccessor
XPLMRegisterDataAccessor
XPLMUnregisterDrawCallback
XPLMRegisterDrawCallback
XPLMGetWindowGeometry
XPLMLocalToWorld
XPLMDrawString
XPLMMeasureString
XPLMFindDataRef
XPLMGetDatai
XPLMSetDatai
XPLMGetDataf
XPLMSetDataf
XPLMGetDatad
XPLMGetDatavi
XPLMGetDatavf
XPLMSetDatavf
XPLMGetDatab

kernel32

ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
GetModuleHandleW
CompareStringA
GlobalGetAtomNameA
FlushFileBuffers
GetFileSize
GetFullPathNameA
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
lstrcmpiA
GetFileAttributesA
GetFileAttributesExA
GetFileSizeEx
GetFileTime
SetErrorMode
QueryActCtxW
GetSystemDirectoryW
GlobalDeleteAtom
lstrcmpW
FindResourceA
GlobalAddAtomA
GlobalFindAtomA
GlobalFlags
GetVersionExA
GetLocaleInfoW
GetUserDefaultUILanguage
VirtualProtect
GetOEMCP
GetCPInfo
GetACP
lstrcpyA
FindResourceExW
GetWindowsDirectoryA
VerSetConditionMask
VerifyVersionInfoA
GetTempPathA
GetTickCount64
GetProfileIntA
SearchPathA
GetTempFileNameA
GetUserDefaultLCID
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
FindActCtxSectionStringW
SuspendThread
AreFileApisANSI
FindNextFileW
FindFirstFileExW
CreateFileW
QueryPerformanceFrequency
RaiseException
OutputDebugStringW
DeactivateActCtx
lstrcmpA
SetThreadPriority
GetCurrentThreadId
CreateEventA
ActivateActCtx
CreateActCtxW
LocalAlloc
LoadLibraryW
WaitForSingleObject
SetEvent
LoadLibraryExW
GetModuleHandleExW
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
OutputDebugStringA
GetModuleFileNameA
GetCurrentProcessId
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalSize
GlobalAlloc
SetLastError
MultiByteToWideChar
MoveFileA
GlobalLock
GlobalUnlock
LoadLibraryA
GetProcAddress
GetModuleHandleA
FreeLibrary
TerminateThread
CreateThread
InitializeCriticalSection
DeviceIoControl
CloseHandle
CreateFileA
WideCharToMultiByte
CopyFileA
FindResourceW
SizeofResource
LockResource
LoadResource
GetSystemTime
Sleep
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
DecodePointer
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
CreateDirectoryA
GetCurrentDirectoryA
CompareStringEx
LCMapStringEx
GetStringTypeW
RtlPcToFileHeader
RtlUnwindEx
InterlockedFlushSList
ExitProcess
GetSystemInfo
VirtualAlloc
VirtualQuery
SetStdHandle
GetFileType
ExitThread
FreeLibraryAndExitThread
HeapQueryInformation
GetCommandLineA
GetCommandLineW
SetEnvironmentVariableW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetStdHandle
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetTimeZoneInformation
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
WriteConsoleW
EncodePointer
RtlUnwind

user32

InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
MonitorFromPoint
UpdateLayeredWindow
UnionRect
DrawIcon
FrameRect
CopyIcon
SetCursorPos
BringWindowToTop
GetSystemMenu
LoadMenuW
IsZoomed
DrawFrameControl
DrawEdge
SetParent
SetWindowRgn
SetClassLongPtrA
DrawStateA
EmptyClipboard
SetClipboardData
EnumDisplayMonitors
SetLayeredWindowAttributes
GetKeyNameTextA
MapVirtualKeyA
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
LoadCursorW
InvertRect
HideCaret
EnableScrollBar
MessageBeep
GetIconInfo
DrawIconEx
LoadImageA
IsRectEmpty
DrawFocusRect
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
KillTimer
SetTimer
DeleteMenu
SetCursor
ShowOwnedPopups
LoadImageW
InvalidateRect
TrackMouseEvent
IntersectRect
MapDialogRect
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
PostQuitMessage
OffsetRect
SetRectEmpty
CopyImage
SystemParametersInfoA
InflateRect
UnpackDDElParam
DestroyMenu
FillRect
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
RealChildWindowFromPoint
ClientToScreen
DestroyIcon
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
DefFrameProcA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
GetWindow
GetTopWindow
GetClassNameA
GetClassLongPtrA
GetClassLongA
SetWindowLongPtrA
GetWindowLongPtrA
SetWindowLongA
PtInRect
EqualRect
CopyRect
MapWindowPoints
ScreenToClient
DefMDIChildProcA
UnregisterClassA
OpenClipboard
CloseClipboard
GetClipboardData
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
ReuseDDElParam
GetComboBoxInfo
PostThreadMessageA
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetRect
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
IsClipboardFormatAvailable
GetUpdateRect
GetMenuItemInfoA
GetAsyncKeyState
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
UnhookWindowsHookEx
SendMessageA
EnableWindow
IsWindowEnabled
MessageBoxA
GetWindowLongA
GetParent
GetWindowThreadProcessId
GetLastActivePopup
GetDesktopWindow
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
IsWindowVisible
GetActiveWindow
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExA
CallNextHookEx
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
DrawMenuBar
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
CheckDlgButton
LoadCursorA
GetWindowTextA
GetWindowTextLengthA
CharUpperA
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
UpdateWindow
GetMenuCheckMarkDimensions
SetMenuItemInfoA
LoadBitmapW
RegisterWindowMessageA
GetMessagePos
GetMessageTime
PostMessageA
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsWindow
IsMenu
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsIconic
GetDlgItem
GetDlgCtrlID
SetFocus
GetCapture
GetMenu
SetMenu
TrackPopupMenu
SetActiveWindow

gdi32

CreatePatternBrush
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
GetBkColor
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
StretchBlt
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreatePen
LPtoDP
Rectangle
GetRgnBox
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceA
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreateHatchBrush
BitBlt
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCA
CopyMetaFileA
GetObjectA
SetDIBColorTable
CreateDIBSection
SelectObject
DeleteObject
CreateCompatibleDC
CreateRoundRectRgn
DeleteDC
CreatePalette
EnumFontFamiliesExA
GetTextMetricsA
DPtoLP
SetRectRgn
PatBlt
CreateRectRgnIndirect
CombineRgn
GetTextExtentPoint32A
CreateFontIndirectA
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutA
TextOutA
MoveToEx
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
RealizePalette

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegSetValueExA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

shell32

ShellExecuteExA
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragQueryFileA
DragFinish
SHAppBarMessage
SHBrowseForFolderA
ShellExecuteA

shlwapi

UrlUnescapeA
PathIsUNCA
PathStripToRootA
PathFileExistsA
PathFindFileNameA
PathRemoveFileSpecW
StrFormatKBSizeA
PathFindExtensionA

uxtheme

GetCurrentThemeName
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetThemeSysColor
GetWindowTheme
IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetThemePartSize

ole32

ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoDisconnectObject
CoCreateInstance
CoUninitialize
CoInitialize
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitializeEx
CreateStreamOnHGlobal
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning

oleaut32

SysStringLen
SysAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantClear
VariantCopy
VariantChangeType
VarBstrFromDate
VariantInit
SysAllocString
SysAllocStringByteLen
SysFreeString
LoadTypeLi

gdiplus

GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromStream
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipAlloc
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImagePalette
GdiplusShutdown

glu32

gluBuild2DMipmaps

wininet

InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetSetOptionA
InternetQueryOptionA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetOpenA
InternetCanonicalizeUrlA
InternetCrackUrlA

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

Exports

Exports

PullMatrix
XPluginDisable
XPluginEnable
XPluginReceiveMessage
XPluginStart
XPluginStop

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 787KB - Virtual size: 787KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 218.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c029e0d4c9d1aff962ecc98d99473e15

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

xplm_64

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

glu32

wininet

oleacc

imm32

winmm

Exports

Exports

Sections

.text Size: 2.6MB - Virtual size: 2.6MB

.rdata Size: 787KB - Virtual size: 787KB

.data Size: 74KB - Virtual size: 218.3MB

.pdata Size: 129KB - Virtual size: 129KB

_RDATA Size: 512B - Virtual size: 500B

.reloc Size: 62KB - Virtual size: 62KB

.text
Size: 2.6MB - Virtual size: 2.6MB

.rdata
Size: 787KB - Virtual size: 787KB

.data
Size: 74KB - Virtual size: 218.3MB

.pdata
Size: 129KB - Virtual size: 129KB

_RDATA
Size: 512B - Virtual size: 500B

.reloc
Size: 62KB - Virtual size: 62KB