09511755a2fb9afa64e9dee7d440d141831d7adb82eed46fc184d7ba9fc30073_NeikiAnalytics[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09511755a2fb9afa64e9dee7d440d141831d7adb82eed46fc184d7ba9fc30073_NeikiAnalytics.exe
Size

90KB
MD5

0f39f67089934c093fa45d80c021b840
SHA1

0ba92afccdfd1b2acb68db378408b67c193cfec6
SHA256

09511755a2fb9afa64e9dee7d440d141831d7adb82eed46fc184d7ba9fc30073
SHA512

7922c3d406284608ec20f42d2a0d469c74c41fc5f1cfd0044b953ce777c4aeb08e0fa67c7dfae9aaead73c1e9cdda5c64c373b7999bb32a0e86c1e30660130b2
SSDEEP

1536:TzTYsyK4n/kK0QZvZx9bAb0ELKndDWG4DvV9YBYDDWG7wp8JyIE:VytnPZvZqdLKdqGEimqG7wKJr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09511755a2fb9afa64e9dee7d440d141831d7adb82eed46fc184d7ba9fc30073_NeikiAnalytics.exe

Files

09511755a2fb9afa64e9dee7d440d141831d7adb82eed46fc184d7ba9fc30073_NeikiAnalytics.exe
.dll windows:1 windows x86 arch:x86

78a998e64c4d57b7df486825ffabb364

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

DefDriverProc

kernel32

GetPrivateProfileIntA
lstrcpyA
RtlUnwind
GetModuleFileNameA
lstrcatA
MulDiv
lstrlenA
MultiByteToWideChar
LocalAlloc
LocalFree

user32

ReleaseDC
SendDlgItemMessageA
ScreenToClient
GetWindowRect
GetDlgItem
BeginPaint
SetWindowTextA
GetDC
EndDialog
wsprintfA
DialogBoxParamA
LoadStringA
LoadBitmapA
EndPaint

gdi32

CreateCompatibleDC
BitBlt
SelectObject
DeleteObject
GetSystemPaletteEntries
DeleteDC
GetObjectA

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

Exports

Exports

DriverProc

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ