59cdbf7db8892e2dce6da6c157e6a6e94726ff3aec78d6eb33d78dfcb07df588_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

59cdbf7db8892e2dce6da6c157e6a6e94726ff3aec78d6eb33d78dfcb07df588_NeikiAnalytics.exe
Size

149KB
MD5

f0751af378e7dc57625dd4123228d930
SHA1

b06ed1065fd618ebd73c9a29233fa3b8d17a5e88
SHA256

59cdbf7db8892e2dce6da6c157e6a6e94726ff3aec78d6eb33d78dfcb07df588
SHA512

4508670a95d527de7d8bfab5f8033a5d03b74f14b803864cc46dc32d599a7fd335550231a7e28c763e48a73a11345c7a81785e56389f5977d9cccde26708429f
SSDEEP

3072:SApQGl/Q+NzIGq7q2/+INYM762mnkkJ0bIlE21fYxXY:SApP/QNFZYM7snkkJ0bIdAxXY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59cdbf7db8892e2dce6da6c157e6a6e94726ff3aec78d6eb33d78dfcb07df588_NeikiAnalytics.exe

Files

59cdbf7db8892e2dce6da6c157e6a6e94726ff3aec78d6eb33d78dfcb07df588_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

9ecfd11d353f2588ae2e8de5c6620d7e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libantiprism-0

_ZN4anti11ProgramOpts11common_optsEcc
_ZN4anti11ProgramOpts13help_ver_textE
_ZN4anti11ProgramOpts14write_or_errorERKNS_8GeometryERKNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEEi
_ZN4anti11ProgramOpts16handle_long_optsEiPPc
_ZN4anti6GetOpt11ultragetoptEiPKPcPKc
_ZN4anti6GetOptC2Ev
_ZN4anti7msg_strB5cxx11EPKcz
_ZN4anti8Geometry11verts_mergeERSt3mapIiiSt4lessIiESaISt4pairIKiiEEE
_ZN4anti8Geometry12add_edge_rawERKSt6vectorIiSaIiEENS_5ColorE
_ZN4anti8Geometry13add_edges_rawERKSt6vectorIS1_IiSaIiEESaIS3_EE
_ZN4anti8Geometry13read_resourceENSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEE
_ZN4anti8Geometry22add_missing_impl_edgesERKNS_5ColorE
_ZN4anti8Geometry3delEiRKSt6vectorIiSaIiEEPSt3mapIiiSt4lessIiESaISt4pairIKiiEEE
_ZN4anti8Geometry3delEiiPSt3mapIiiSt4lessIiESaISt4pairIKiiEEE
_ZN4anti8Geometry4readENSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEE
_ZN4anti8Geometry4readEP6_iobuf
_ZN4anti8Geometry5clearEi
_ZN4anti8Geometry6appendERKS0_
_ZN4anti8Geometry8add_edgeESt6vectorIiSaIiEENS_5ColorE
_ZN4anti8Geometry8add_edgeEiiNS_5ColorE
_ZN4anti8Geometry8add_faceERKSt6vectorIiSaIiEENS_5ColorE
_ZN4anti8Geometry8add_vertENS_5Vec3dENS_5ColorE
_ZN4anti8Geometry9add_edgesERKSt6vectorIS1_IiSaIiEESaIS3_EE
_ZN4anti8Geometry9add_facesERKSt6vectorIS1_IiSaIiEESaIS3_EE
_ZN4anti8Geometry9add_vertsERKSt6vectorINS_5Vec3dESaIS2_EE
_ZN4anti8Geometry9clear_allEv
_ZN4anti8read_intEPKcPi
_ZN4anti9make_edgeEii
_ZNK4anti11ProgramOpts20print_status_or_exitERKNS_6StatusEc
_ZNK4anti11ProgramOpts5errorENSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEES6_i
_ZNK4anti11ProgramOpts7warningENSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEES6_
_ZNK4anti11ProgramOpts9prog_nameEv
_ZNK4anti8Geometry10write_crdsENSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEEPKci
_ZNK4anti8Geometry10write_crdsEP6_iobufPKci
_ZNK4anti8Geometry5writeENSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEEi
_ZNK4anti8Geometry5writeEP6_iobufi
_ZNK4anti8Geometry9write_objENSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEES6_PKci
_ZNK4anti8Geometry9write_objEP6_iobufS2_NSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEEPKci

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStartupInfoA
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__getmainargs
__initenv
__lconv_init
__mb_cur_max
__p__acmdln
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_assert
_cexit
_errno
_initterm
_iob
_lock
_onexit
_unlock
abort
atoi
calloc
exit
fprintf
fputc
free
fwrite
localeconv
malloc
memcmp
memcpy
memmove
memset
setlocale
signal
strchr
strcspn
strerror
strlen
strncmp
strspn
vfprintf
wcslen

libgcc_s_dw2-1

_Unwind_Resume
__deregister_frame_info
__register_frame_info
__udivdi3
__umoddi3

libstdc++-6

_ZNKSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE12find_last_ofEPKcjj
_ZNKSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE16find_last_not_ofEPKcjj
_ZNKSt7__cxx1115basic_stringbufIcSt11char_traitsIcESaIcEE3strEv
_ZNSdD2Ev
_ZNSi4peekEv
_ZNSi6sentryC1ERSib
_ZNSo9_M_insertImEERSoT_
_ZNSt12__basic_fileIcED1Ev
_ZNSt13basic_filebufIcSt11char_traitsIcEE4openEPKcSt13_Ios_Openmode
_ZNSt13basic_filebufIcSt11char_traitsIcEE5closeEv
_ZNSt13basic_filebufIcSt11char_traitsIcEEC1Ev
_ZNSt13basic_filebufIcSt11char_traitsIcEED1Ev
_ZNSt14basic_ifstreamIcSt11char_traitsIcEED1Ev
_ZNSt6localeC1Ev
_ZNSt6localeD1Ev
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE10_M_disposeEv
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE10_M_replaceEjjPKcj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE6appendEPKc
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE6assignEPKc
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE6insertEjPKc
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE7replaceEjjPKcj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE7reserveEj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_appendEPKcj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_assignERKS4_
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_createERjj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_mutateEjjPKcj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEC1EOS4_
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEC1ERKS4_
_ZNSt7__cxx1115basic_stringbufIcSt11char_traitsIcESaIcEE7_M_syncEPcjj
_ZNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEEC1Ev
_ZNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEED1Ev
_ZNSt7__cxx1119basic_istringstreamIcSt11char_traitsIcESaIcEED1Ev
_ZNSt8ios_baseC2Ev
_ZNSt8ios_baseD2Ev
_ZNSt9basic_iosIcSt11char_traitsIcEE4initEPSt15basic_streambufIcS1_E
_ZNSt9basic_iosIcSt11char_traitsIcEE5clearESt12_Ios_Iostate
_ZSt16__ostream_insertIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_PKS3_i
_ZSt17__throw_bad_allocv
_ZSt18_Rb_tree_decrementPSt18_Rb_tree_node_base
_ZSt19__throw_logic_errorPKc
_ZSt20__throw_length_errorPKc
_ZSt24__throw_out_of_range_fmtPKcz
_ZSt29_Rb_tree_insert_and_rebalancebPSt18_Rb_tree_node_baseS0_RS_
_ZSt7getlineIcSt11char_traitsIcESaIcEERSt13basic_istreamIT_T0_ES7_RNSt7__cxx1112basic_stringIS4_S5_T1_EES4_
_ZStlsISt11char_traitsIcEERSt13basic_ostreamIcT_ES5_PKc
_ZTTNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEEE
_ZTTNSt7__cxx1119basic_istringstreamIcSt11char_traitsIcESaIcEEE
_ZTTSt14basic_ifstreamIcSt11char_traitsIcEE
_ZTVN10__cxxabiv117__class_type_infoE
_ZTVN10__cxxabiv120__si_class_type_infoE
_ZTVN10__cxxabiv121__vmi_class_type_infoE
_ZTVNSt7__cxx1115basic_stringbufIcSt11char_traitsIcESaIcEEE
_ZTVNSt7__cxx1118basic_stringstreamIcSt11char_traitsIcESaIcEEE
_ZTVNSt7__cxx1119basic_istringstreamIcSt11char_traitsIcESaIcEEE
_ZTVSi
_ZTVSt13basic_filebufIcSt11char_traitsIcEE
_ZTVSt14basic_ifstreamIcSt11char_traitsIcEE
_ZTVSt15basic_streambufIcSt11char_traitsIcEE
_ZTVSt9basic_iosIcSt11char_traitsIcEE
_ZdlPvj
_Znwj
__cxa_begin_catch
__cxa_end_catch
__cxa_pure_virtual
__cxa_rethrow
__gxx_personality_v0

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ecfd11d353f2588ae2e8de5c6620d7e

Headers

DLL Characteristics

File Characteristics

Imports

libantiprism-0

kernel32

msvcrt

libgcc_s_dw2-1

libstdc++-6

Sections

.text Size: 118KB - Virtual size: 117KB

.data Size: 512B - Virtual size: 92B

.rdata Size: 8KB - Virtual size: 7KB

/4 Size: 9KB - Virtual size: 8KB

.bss Size: - Virtual size: 2KB

.idata Size: 9KB - Virtual size: 8KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 8B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 118KB - Virtual size: 117KB

.data
Size: 512B - Virtual size: 92B

.rdata
Size: 8KB - Virtual size: 7KB

/4
Size: 9KB - Virtual size: 8KB

.bss
Size: - Virtual size: 2KB

.idata
Size: 9KB - Virtual size: 8KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 8B

.reloc
Size: 2KB - Virtual size: 2KB