22a5f97902efb989376aa7c0cece00d5904d4aaf3e9ad2dc0d176ebe100bcb3e_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

22a5f97902efb989376aa7c0cece00d5904d4aaf3e9ad2dc0d176ebe100bcb3e_NeikiAnalytics.exe
Size

44KB
MD5

bb5331f303a5fe985930416e12fb7780
SHA1

b78909c250e4d80460ea42c8f4444a8631273e8c
SHA256

22a5f97902efb989376aa7c0cece00d5904d4aaf3e9ad2dc0d176ebe100bcb3e
SHA512

3e54bc08dcdf9e366a975ec33f55249941a95f0b0106be55c664687e4c3a40579a4d462abd95ddf50ee6eb7b2c2f1f25a205d383b085e0ba4cc1afcf1a987a09
SSDEEP

768:lvIjWRppSIQl18khq8CVZko05miEmccG9UYsl9:lvIXIC693905miEmcn6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22a5f97902efb989376aa7c0cece00d5904d4aaf3e9ad2dc0d176ebe100bcb3e_NeikiAnalytics.exe

Files

22a5f97902efb989376aa7c0cece00d5904d4aaf3e9ad2dc0d176ebe100bcb3e_NeikiAnalytics.exe
.exe windows:6 windows x64 arch:x64

0b931c8c6df8f2654a75730553dd2ef5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

libxcb

xcb_shape_id
xcb_disconnect
xcb_translate_coordinates
xcb_shape_query_extents_reply
xcb_depth_next
xcb_translate_coordinates_reply
xcb_screen_allowed_depths_iterator
xcb_shape_query_extents
xcb_get_extension_data
xcb_get_geometry_reply
xcb_get_geometry
xcb_visualtype_next
xcb_depth_visuals_iterator
xcb_grab_pointer_reply
xcb_connection_has_error
xcb_setup_roots_length
xcb_get_setup
xcb_discard_reply
xcb_allow_events
xcb_screen_next
xcb_wait_for_event
xcb_generate_id
xcb_intern_atom_reply
xcb_get_property_reply
xcb_connect
xcb_get_atom_name_name
xcb_get_atom_name_reply
xcb_setup_roots_iterator
xcb_open_font
xcb_grab_pointer
xcb_ungrab_pointer
xcb_get_atom_name_name_length
xcb_get_atom_name
xcb_flush
xcb_create_glyph_cursor
xcb_intern_atom
xcb_query_pointer_reply
xcb_get_property_value
xcb_query_tree_children
xcb_query_tree_reply
xcb_get_property
xcb_get_window_attributes
xcb_query_pointer
xcb_get_property_value_length
xcb_query_tree
xcb_get_window_attributes_reply
xcb_query_tree_children_length

vcruntime140

memcmp
__current_exception_context
memcpy
__current_exception
__C_specific_handler
memset

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode
malloc
calloc

api-ms-win-crt-runtime-l1-1-0

_cexit
__p___argv
__p___argc
_exit
_initterm_e
_initterm
_c_exit
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
terminate
_set_app_type
_register_thread_local_exe_atexit_callback
_get_initial_narrow_environment
exit
_seh_filter_exe
_crt_atexit
_configure_narrow_argv

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
fputs
__stdio_common_vfprintf
__p__commode
_set_fmode
getchar
puts
fflush
__stdio_common_vsprintf
fwrite

api-ms-win-crt-environment-l1-1-0

getenv

api-ms-win-crt-locale-l1-1-0

_configthreadlocale
setlocale

api-ms-win-crt-string-l1-1-0

strnlen
tolower
strcmp
_strdup
strncpy
strncmp

api-ms-win-crt-convert-l1-1-0

strtoul

api-ms-win-crt-math-l1-1-0

__setusermatherr

kernel32

RtlLookupFunctionEntry
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
GetModuleHandleW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0b931c8c6df8f2654a75730553dd2ef5

Headers

DLL Characteristics

File Characteristics

Imports

libxcb

vcruntime140

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-math-l1-1-0

kernel32

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 512B - Virtual size: 3KB

.pdata Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 268B

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 512B - Virtual size: 3KB

.pdata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 268B