0c7a4f4edea1ff3c95cd5d103307deeed38ad0f4c0aa5b70441c5879908a2174_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

0c7a4f4edea1ff3c95cd5d103307deeed38ad0f4c0aa5b70441c5879908a2174_NeikiAnalytics.exe
Size

76KB
MD5

1c39f878e652ed5ba669a6ee77db0660
SHA1

37d7e6def0d4453849b9dd0a940f3bf8dc27ea17
SHA256

0c7a4f4edea1ff3c95cd5d103307deeed38ad0f4c0aa5b70441c5879908a2174
SHA512

84df9b59e707a03a44d9f184ab153e6c619ed0b2c3f5f91c1e2fea2222def070e8513e9193e09e59cd3129b51c86a5c28c53d3742845bc2157a6924ab3cc7e8e
SSDEEP

1536:T1z12IWdabWzAjQwrno8bO4fJuXhH/s84IX2FDSmF9eNCIOsIOplZmKGCW:51HWWtjP5OGJKfsjDHogiplZm7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c7a4f4edea1ff3c95cd5d103307deeed38ad0f4c0aa5b70441c5879908a2174_NeikiAnalytics.exe

Files

0c7a4f4edea1ff3c95cd5d103307deeed38ad0f4c0aa5b70441c5879908a2174_NeikiAnalytics.exe
.dll windows:6 windows x86 arch:x86

9f31a4a1ad30ea434fc9edb2b671d02e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\Resources\vcpkg\buildtrees\zlib\x86-windows-rel\zlib.pdb

Imports

vcruntime140

__std_type_info_destroy_list
memmove
memchr
memset
_except_handler4_common
memcpy

api-ms-win-crt-stdio-l1-1-0

_wopen
_write
_read
_close
__stdio_common_vsprintf
_open
_lseeki64

api-ms-win-crt-heap-l1-1-0

malloc
free

api-ms-win-crt-convert-l1-1-0

wcstombs

api-ms-win-crt-runtime-l1-1-0

_cexit
_initialize_onexit_table
_execute_onexit_table
_errno
strerror
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm

kernel32

InitializeSListHead
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
IsDebuggerPresent
UnhandledExceptionFilter
DisableThreadLibraryCalls
GetSystemTimeAsFileTime

Exports

Exports

adler32
adler32_combine
adler32_z
compress
compress2
compressBound
crc32
crc32_combine
crc32_combine_gen
crc32_combine_op
crc32_z
deflate
deflateBound
deflateCopy
deflateEnd
deflateGetDictionary
deflateInit2_
deflateInit_
deflateParams
deflatePending
deflatePrime
deflateReset
deflateResetKeep
deflateSetDictionary
deflateSetHeader
deflateTune
get_crc_table
gzbuffer
gzclearerr
gzclose
gzclose_r
gzclose_w
gzdirect
gzdopen
gzeof
gzerror
gzflush
gzfread
gzfwrite
gzgetc
gzgetc_
gzgets
gzoffset
gzoffset64
gzopen
gzopen64
gzopen_w
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzseek64
gzsetparams
gztell
gztell64
gzungetc
gzvprintf
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCodesUsed
inflateCopy
inflateEnd
inflateGetDictionary
inflateGetHeader
inflateInit2_
inflateInit_
inflateMark
inflatePrime
inflateReset
inflateReset2
inflateResetKeep
inflateSetDictionary
inflateSync
inflateSyncPoint
inflateUndermine
inflateValidate
uncompress
uncompress2
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f31a4a1ad30ea434fc9edb2b671d02e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

kernel32

Exports

Exports

Sections

.text Size: 49KB - Virtual size: 48KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: 512B - Virtual size: 972B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 49KB - Virtual size: 48KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: 512B - Virtual size: 972B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB