522b763e76aa4cf75ef737cf4aebffad142fcff619b37b65ef8f06265bf55b63_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

522b763e76aa4cf75ef737cf4aebffad142fcff619b37b65ef8f06265bf55b63_NeikiAnalytics.exe
Size

4.0MB
MD5

8bb7b4a2631bd881d0c91e5927b14860
SHA1

fe39a1a2bea806342ac507cedc4253e67ee78bcd
SHA256

522b763e76aa4cf75ef737cf4aebffad142fcff619b37b65ef8f06265bf55b63
SHA512

54869ed6a9628aea65489894c5f7d552211afd50af8c560b8fcd2c994022a3de8e8461e568aaa7e19b439877499994d06fe2a0c317de4300d3a28cc539d04a97
SSDEEP

98304:cFanyXIjR4l+uT40OFm0Im2fAljPywtfo1rJeWAHqf6AK8tm1ocWOO:s2scuTSIslrtfh8f6UE1EO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
522b763e76aa4cf75ef737cf4aebffad142fcff619b37b65ef8f06265bf55b63_NeikiAnalytics.exe

Files

522b763e76aa4cf75ef737cf4aebffad142fcff619b37b65ef8f06265bf55b63_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

9019ab4c5812145d363c16f94941bd09

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStringTypeExA
GetShortPathNameA
CreateProcessA
GetOEMCP
GetComputerNameA
GetTickCount
GlobalFlags
GetSystemInfo
LoadLibraryExA
GetACP
GetUserDefaultLangID
HeapReAlloc
GlobalReAlloc
GetSystemDirectoryA
HeapFree
HeapCreate
GlobalMemoryStatus
VirtualFree
VirtualAlloc
HeapAlloc
GetDateFormatA
SetProcessWorkingSetSize
HeapSize
OpenFile
GetTimeFormatA
GetProfileIntA
IsBadCodePtr
FreeResource
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
lstrcmpiA
lstrlenW
EnterCriticalSection
LeaveCriticalSection
SetEvent
GlobalCompact
CreateEventA
_lread
lstrlenA
_lopen
WideCharToMultiByte
_lclose
FormatMessageA
IsDBCSLeadByte
LCMapStringA
GetSystemDefaultLCID
IsBadWritePtr
GlobalAlloc
IsBadReadPtr
GetCurrentThreadId
GetSystemDefaultLangID
GlobalFree
DeleteFileA
GetFileSize
MoveFileA
FindNextFileA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetDiskFreeSpaceA
GetLogicalDrives
GetVolumeInformationA
LocalFileTimeToFileTime
SystemTimeToFileTime
DosDateTimeToFileTime
GetFileTime
CreateThread
GetStartupInfoA
LocalFree
SetFileTime
FileTimeToDosDateTime
lstrcatA
MultiByteToWideChar
UnlockFile
GetModuleFileNameA
WinExec
GetLocaleInfoA
LockFile
GetCurrentProcess
DuplicateHandle
SetEndOfFile
SetFilePointer
WriteFile
ReadFile
GetFileAttributesA
CreateFileA
GetDriveTypeA
IsValidLocale
GetProfileStringA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameA
GlobalSize
GlobalLock
GlobalUnlock
SearchPathA
RaiseException
GetModuleHandleA
SetErrorMode
GetCurrentProcessId
lstrcpyA
InterlockedDecrement
MulDiv
FindFirstFileA
FindClose
CopyFileA
SetFileAttributesA
LoadLibraryA
GetProcAddress
FreeLibrary
GetCPInfo
GetSystemTime
Sleep
GetVersionExA
WaitForSingleObject
GetExitCodeThread
TerminateThread
CloseHandle
GetLocalTime
FindResourceA
SizeofResource
LoadResource
LockResource
GetLastError
InterlockedIncrement

user32

ClientToScreen
ReleaseCapture
GetSystemMetrics
BringWindowToTop
SetCapture
DefWindowProcA
SetClassLongA
SetFocus
EnableWindow
MessageBoxA
DestroyMenu
DestroyWindow
GetClassLongA
MoveWindow
wsprintfA
CreateMenu
ShowWindow
UnionRect
GetSubMenu
InsertMenuItemA
GetMenuItemInfoA
GetMenuItemCount
RemoveMenu
ReleaseDC
GetDC
TranslateMessage
PtInRect
SetTimer
KillTimer
IsWindowVisible
IsIconic
OffsetRect
SetClipboardViewer
ChangeClipboardChain
EndPaint
SendMessageA
LoadImageA
RegisterClassA
LoadCursorA
GetClassInfoA
RedrawWindow
UnregisterClassA
SetWindowLongA
LoadStringA
FillRect
FrameRect
InflateRect
DrawTextA
SetRectEmpty
CopyRect
GetMenu
CreateCaret
ClipCursor
RegisterClipboardFormatA
GetCapture
GetAsyncKeyState
ValidateRect
OemToCharBuffA
InSendMessage
CharPrevA
CharNextA
GetKeyboardType
PeekMessageA
CharToOemBuffA
ShowCursor
GetActiveWindow
GetFocus
PostThreadMessageA
GetCursorPos
GetKeyState
GetClipboardFormatNameA
IsChild
GetUpdateRect
CreateWindowExA
BeginPaint
AdjustWindowRect
GetQueueStatus
DrawFocusRect
WindowFromPoint
ActivateKeyboardLayout
CharUpperBuffA
CharLowerBuffA
DialogBoxParamA
CheckRadioButton
GetDesktopWindow
UpdateWindow
LoadCursorFromFileA
DestroyIcon
IsWindow
PostMessageA
PostQuitMessage
LoadAcceleratorsA
CopyAcceleratorTableA
CreateAcceleratorTableA
DestroyAcceleratorTable
SetClipboardData
GetClipboardData
OpenClipboard
EmptyClipboard
CloseClipboard
FindWindowA
GetWindowThreadProcessId
SetCursorPos
GetCursor
keybd_event
MessageBeep
MapVirtualKeyA
CreateIcon
LoadBitmapA
RemovePropA
GetPropA
SetPropA
DialogBoxIndirectParamA
LockWindowUpdate
GetDialogBaseUnits
GetDlgItemTextA
IsDlgButtonChecked
CheckDlgButton
SetDlgItemTextA
GetKeyboardState
SetKeyboardState
CharToOemA
WinHelpA
SetCursor
SetWindowWord
SetRect
GetWindowWord
EndDialog
CallWindowProcA
GetClassInfoExA
RegisterClassExA
GetWindowTextA
GetDlgItem
SendDlgItemMessageA
SetWindowTextA
SetForegroundWindow
SetActiveWindow
GetSysColorBrush
DrawIconEx
AppendMenuA
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetScrollInfo
SetScrollInfo
ShowScrollBar
IsZoomed
AdjustWindowRectEx
MsgWaitForMultipleObjects
GetMenuStringA
GetMenuItemID
CreateMDIWindowA
LoadIconA
SetCaretPos
ShowCaret
ScrollDC
InvalidateRgn
RegisterWindowMessageA
DrawFrameControl
EnableMenuItem
InsertMenuA
ModifyMenuA
SetMenu
SetMenuItemInfoA
SystemParametersInfoA
GetSystemMenu
DeleteMenu
LoadMenuIndirectA
CreatePopupMenu
DrawMenuBar
GrayStringA
GetWindowDC
SubtractRect
GetDCEx
GetClassNameA
CallNextHookEx
SetWindowsHookExA
UnhookWindowsHookEx
DispatchMessageA
GetMessageA
DdeAbandonTransaction
DdeUninitialize
DdeInitializeA
DdePostAdvise
DdeClientTransaction
DdeDisconnect
DdeConnect
DdeAccessData
DdeUnaccessData
DdeFreeDataHandle
GetWindowLongA
DestroyCursor
CreateCursor
SetParent
DdeEnableCallback
DdeGetLastError
DdeNameService
DdeFreeStringHandle
DdeCreateDataHandle
DdeCreateStringHandleA
DdeQueryStringA
GetSysColor
IntersectRect
GetWindow
InvalidateRect
ScreenToClient
SetWindowPos
GetClientRect
SetWindowRgn
GetWindowRect
GetParent
GetIconInfo
EqualRect
DrawIcon
IsClipboardFormatAvailable
DestroyCaret
GetKeyboardLayout

gdi32

GetDCOrgEx
RestoreDC
GetDIBits
GetClipBox
StretchDIBits
EnumFontsA
GetDeviceCaps
CreateRectRgnIndirect
SetTextColor
Rectangle
SetBkColor
GetTextColor
GetStockObject
GetBkColor
PatBlt
DeleteObject
SelectObject
CreateHalftonePalette
DeleteDC
GetObjectA
GetDIBColorTable
CreateCompatibleDC
CreatePalette
SelectPalette
SetBkMode
RealizePalette
CreateFontIndirectA
BitBlt
GetBkMode
Ellipse
CreateRoundRectRgn
RoundRect
FillRgn
CombineRgn
CreateEllipticRgnIndirect
MoveToEx
CreatePen
LineTo
SetROP2
GetROP2
CreateSolidBrush
LPtoDP
UnrealizeObject
SetBrushOrgEx
CreateRectRgn
CreatePatternBrush
PaintRgn
GetRgnBox
RectInRegion
CreateBitmap
Polyline
GetPixel
FrameRgn
AddFontResourceA
GetTextMetricsA
EnumFontFamiliesExA
SelectClipRgn
SetTextAlign
RemoveFontResourceA
CopyMetaFileA
CreateHatchBrush
GetTextAlign
ExtTextOutA
GetTextExtentPointA
SetRectRgn
CreateCompatibleBitmap
StretchBlt
CreateBrushIndirect
DeleteMetaFile
CloseMetaFile
SetStretchBltMode
SetWindowOrgEx
GdiFlush
OffsetRgn
SetBitmapBits
AbortDoc
EndDoc
StartDocA
EndPage
StartPage
CreateICA
Escape
EnumFontFamiliesA
SaveDC
SetWindowExtEx
CreateDIBitmap
SetDIBits
GetBitmapBits
PlayMetaFileRecord
SetViewportExtEx
EnumMetaFile
PlayMetaFile
CreateDCA
SetMapMode
SetViewportOrgEx
CreateMetaFileA

winspool.drv

DocumentPropertiesA
GetPrinterA
WritePrinter
EnumPrintersA
ClosePrinter
StartDocPrinterA
EndDocPrinter
OpenPrinterA

comdlg32

ChooseColorA
ChooseFontA
GetFileTitleA
PrintDlgA
GetOpenFileNameA
CommDlgExtendedError
GetSaveFileNameA

comctl32

ImageList_Add
ImageList_DragMove
ord17
ImageList_Create
ImageList_Destroy
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_BeginDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_EndDrag

advapi32

RegQueryInfoKeyA
RegDeleteValueA
RegEnumValueA
RegEnumKeyA
RegSetValueA
RegOpenKeyW
RegCreateKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegQueryValueA
RegCloseKey

shell32

SHFileOperationA
DragQueryFileA
SHAppBarMessage
ShellExecuteA
ExtractIconA

msvcrt

cos
sin
_splitpath
_makepath
acos
_HUGE
strpbrk
memchr
atof
_mbsicmp
_mbscspn
_mbschr
_mbsrchr
_mbsstr
_mbsnbcpy
_mbsnbicmp
_mbsnbcat
_stricmp
_strnicmp
strchr
strrchr
strstr
strncpy
strncat
atan
strlen
_winminor
strtok
malloc
free
toupper
ceil
floor
sqrt
_itoa
__mb_cur_max
_isctype
_pctype
strncmp
atoi
atol
memcmp
abs
memmove
strcmp
_ftol
strcat
memset
wcslen
wcsncpy
_wcsicmp
_purecall
strcpy
exit
_seh_longjmp_unwind
_except_handler3
asin
_control87
_setjmp3
tan
atan2
pow
exp
log10
log
getenv
_rmdir
_mkdir
_setmode
_isatty
fabs
modf
ldexp
sscanf
longjmp
_ultoa
iswctype
div
isspace
strtoul
wcschr
wcscat
wcscpy
isdigit
_strupr
_ltoa
strspn
ldiv
_strrev
_access
__CxxFrameHandler
_CxxThrowException
isalnum
sprintf
fprintf
_exit
_XcptFilter
__p__acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
??1type_info@@UAE@XZ
_iob
__dllonexit
_onexit
_controlfp
_winmajor
strcspn

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

mpr

WNetCloseEnum
WNetEnumResourceA
WNetOpenEnumA
WNetGetUserA
WNetCancelConnection2A
WNetAddConnection2A
WNetGetConnectionA

oleaut32

SafeArrayGetDim
SafeArrayCreate
SafeArrayAccessData
VariantChangeType
VariantCopy
CreateTypeLi
SafeArrayUnaccessData
SysStringLen
SysAllocStringByteLen
LoadRegTypeLi
VariantInit
VariantClear
SysFreeString
SafeArrayGetLBound
SysAllocStringLen
SafeArrayGetUBound
GetActiveObject
SafeArrayPutElement
SysAllocString
SetErrorInfo
CreateErrorInfo
LoadTypeLi
OleCreatePropertyFrame
VariantCopyInd
DispCallFunc
GetErrorInfo
OleCreatePictureIndirect
OleLoadPicture
RegisterActiveObject
RevokeActiveObject
SafeArrayGetElemsize

ole32

OleRegGetMiscStatus
CoCreateInstance
StringFromGUID2
CLSIDFromProgID
CoCreateGuid
CLSIDFromString
OleRegGetUserType
ReleaseStgMedium
CoGetMalloc
OleInitialize
StgCreateDocfile
DoDragDrop
RegisterDragDrop
OleCreateMenuDescriptor
OleRegEnumVerbs
OleGetClipboard
CreateDataAdviseHolder
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleBuildVersion
OleUninitialize
WriteClassStm
OleSaveToStream
StringFromCLSID
OleDestroyMenuDescriptor
RevokeDragDrop
OleDuplicateData
CoTaskMemFree
CreateOleAdviseHolder
StgIsStorageFile
StgOpenStorage
OleCreateLinkToFile
CoDisconnectObject
OleCreate
OleGetIconOfFile
GetClassFile
OleGetIconOfClass
OleFlushClipboard
OleIsCurrentClipboard
OleIsRunning
BindMoniker
MkParseDisplayName
CreateBindCtx
OleSave
WriteClassStg
OleDraw
OleLoad
CreateFileMoniker
ReadClassStg
OleConvertOLESTREAMToIStorage
CoIsOle1Class
OleCreateLinkFromData
OleCreateFromData
OleCreateStaticFromData
OleSetContainedObject
OleConvertIStorageToOLESTREAM
OleQueryLinkFromData
OleRun
IsAccelerator
OleSetMenuDescriptor
CreateGenericComposite
CreateItemMoniker
OleSetClipboard
CoLockObjectExternal
CoGetClassObject
OleDoAutoConvert
ReadClassStm
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
GetHGlobalFromILockBytes
OleQueryCreateFromData
OleCreateFromFile
CoRegisterClassObject
CoRevokeClassObject
ProgIDFromCLSID

winmm

timeGetTime
PlaySoundA

Exports

Exports

@OCXAPIInit@4

Sections

.text
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9019ab4c5812145d363c16f94941bd09

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

comctl32

advapi32

shell32

msvcrt

version

mpr

oleaut32

ole32

winmm

Exports

Exports

Sections

.text Size: 3.8MB - Virtual size: 3.8MB

.rdata Size: 73KB - Virtual size: 73KB

.data Size: 107KB - Virtual size: 117KB

.rsrc Size: 39KB - Virtual size: 38KB

.text
Size: 3.8MB - Virtual size: 3.8MB

.rdata
Size: 73KB - Virtual size: 73KB

.data
Size: 107KB - Virtual size: 117KB

.rsrc
Size: 39KB - Virtual size: 38KB