242a8084138b26bc6e3109fd54b2cedfb249b56f149a3fadd9d9220cad8aa399_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

242a8084138b26bc6e3109fd54b2cedfb249b56f149a3fadd9d9220cad8aa399_NeikiAnalytics.exe
Size

501KB
MD5

779804aa2f4b9556e33ef529d7a68f30
SHA1

1e79983aa9875016ca96bbcb49fbd45e760ae0ae
SHA256

242a8084138b26bc6e3109fd54b2cedfb249b56f149a3fadd9d9220cad8aa399
SHA512

c66d9e6862ee8efb328b4cc474276715e0c49b4631fbd705ea7148483705294b868ccbcb3822d308c4acec6d626452ce5e332ac463f7df4ed24f20c75c1cdc64
SSDEEP

6144:UD1dYzyjNgWiHOTgb7oQ4Ibu1/svM3QvGCYf/IuABojIu08j/6:mHoyjNgWgWou1/6M3JIfv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
242a8084138b26bc6e3109fd54b2cedfb249b56f149a3fadd9d9220cad8aa399_NeikiAnalytics.exe

Files

242a8084138b26bc6e3109fd54b2cedfb249b56f149a3fadd9d9220cad8aa399_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

5b9a120e54265b2b11b1e8af450bfb3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

qt5cored

_Z11qt_assert_xPKcS0_S0_i
_Z16qt_check_pointerPKci
_Z8qWinMainP11HINSTANCE__S0_PciRiR7QVectorIS1_E
_Z9qBadAllocv
_Z9qt_assertPKcS0_i
_ZN10QArrayData10deallocateEPS_jj
_ZN10QArrayData11shared_nullE
_ZN10QArrayData8allocateEjjj6QFlagsINS_16AllocationOptionEE
_ZN10QByteArray11reallocDataEj6QFlagsIN10QArrayData16AllocationOptionEE
_ZN7QString16fromAscii_helperEPKci
_ZN7QString18toLocal8Bit_helperEPK5QChari
_ZN7QString4nullE
_ZN7QString9fromUtf16EPKti

qt5guid

_ZN4QPenC1ERK6QBrushdN2Qt8PenStyleENS3_11PenCapStyleENS3_12PenJoinStyleE
_ZN4QPenD1Ev
_ZN6QBrushC1EN2Qt11GlobalColorENS0_10BrushStyleE
_ZN6QBrushD1Ev
_ZN6QColorC1EN2Qt11GlobalColorE

qt5widgetsd

_ZN12QApplication4execEv
_ZN12QApplicationC1ERiPPci
_ZN12QApplicationD1Ev
_ZN7QWidget4showEv
_ZN7QWidget6resizeERK5QSize

libgcc_s_dw2-1

_Unwind_Resume
__deregister_frame_info
__register_frame_info

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCommandLineW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_fmode
_initterm
_iob
_lock
_onexit
_unlock
abort
calloc
exit
fprintf
free
fwrite
malloc
memcpy
memset
signal
strlen
strncmp
vfprintf

libstdc++-6

_ZdlPv
_Znwj
__cxa_begin_catch
__cxa_end_catch
__cxa_rethrow
__gxx_personality_v0

qwtd

_ZN11QwtPlotGridC1Ev
_ZN11QwtPlotItem13setRenderHintENS_10RenderHintEb
_ZN11QwtPlotItem6attachEP7QwtPlot
_ZN11QwtPlotItem8setTitleERK7QString
_ZN12QwtPlotCurve10setSamplesERK7QVectorI7QPointFE
_ZN12QwtPlotCurve6setPenERK6QColordN2Qt8PenStyleE
_ZN12QwtPlotCurve9setSymbolEP9QwtSymbol
_ZN12QwtPlotCurveC1ERK7QString
_ZN7QwtPlot12insertLegendEP17QwtAbstractLegendNS_14LegendPositionEd
_ZN7QwtPlot12setAxisScaleE9QwtAxisIdddd
_ZN7QwtPlot19setCanvasBackgroundERK6QBrush
_ZN7QwtPlot8setTitleERK7QString
_ZN7QwtPlotC1EP7QWidget
_ZN7QwtPlotD1Ev
_ZN9QwtLegendC1EP7QWidget
_ZN9QwtSymbolC1ENS_5StyleERK6QBrushRK4QPenRK5QSize

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/14
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 395KB - Virtual size: 394KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/80
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/91
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b9a120e54265b2b11b1e8af450bfb3a

Headers

File Characteristics

Imports

qt5cored

qt5guid

qt5widgetsd

libgcc_s_dw2-1

kernel32

msvcrt

libstdc++-6

qwtd

Sections

.text Size: 14KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 52B

.rdata Size: 4KB - Virtual size: 3KB

/4 Size: 6KB - Virtual size: 6KB

.bss Size: - Virtual size: 1KB

.idata Size: 4KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 32B

/14 Size: 1024B - Virtual size: 784B

/29 Size: 395KB - Virtual size: 394KB

/41 Size: 6KB - Virtual size: 6KB

/55 Size: 6KB - Virtual size: 6KB

/67 Size: 512B - Virtual size: 56B

/80 Size: 8KB - Virtual size: 7KB

/91 Size: 1024B - Virtual size: 720B

.text
Size: 14KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 52B

.rdata
Size: 4KB - Virtual size: 3KB

/4
Size: 6KB - Virtual size: 6KB

.bss
Size: - Virtual size: 1KB

.idata
Size: 4KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B

/14
Size: 1024B - Virtual size: 784B

/29
Size: 395KB - Virtual size: 394KB

/41
Size: 6KB - Virtual size: 6KB

/55
Size: 6KB - Virtual size: 6KB

/67
Size: 512B - Virtual size: 56B

/80
Size: 8KB - Virtual size: 7KB

/91
Size: 1024B - Virtual size: 720B