300a7e66c71ea9cbb63e690b37c5ec340c096e91f4c1a8a73ab2c85eca7e89e2_NeikiAnalytics[.]exe

General

Target

300a7e66c71ea9cbb63e690b37c5ec340c096e91f4c1a8a73ab2c85eca7e89e2_NeikiAnalytics.exe
Size

352KB
MD5

41ca1823cd2c36fc161266d8684af190
SHA1

0b204f560906260df8d8109a357e01aa92ad9d4c
SHA256

300a7e66c71ea9cbb63e690b37c5ec340c096e91f4c1a8a73ab2c85eca7e89e2
SHA512

db4317ae38c255bafa54c17bc08cd7cbaa73039059ad38150ac339fca9ec8b20cc5a60faf881a0cc5ec87d4129d4e06da52554fb66da563851f9640b76648b80
SSDEEP

6144:YDBiTZKN/auZfAMiHB2vU5gv+R1o1XM71O6L07UQndZ4V9KrukjYk4HjbtUnRq1:EMAxTJshWsDd1VPkd49kSGaQUqk+5Vq6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
300a7e66c71ea9cbb63e690b37c5ec340c096e91f4c1a8a73ab2c85eca7e89e2_NeikiAnalytics.exe

Files

300a7e66c71ea9cbb63e690b37c5ec340c096e91f4c1a8a73ab2c85eca7e89e2_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

62dd2525c8b843eeee2e3e3a836b4213

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectType
GetDCBrushColor
GetDeviceCaps
GetFontLanguageInfo
SetTextColor
GetBkColor
GetSystemPaletteUse
SetSystemPaletteUse
UpdateColors
GetNearestColor
GetMapMode
GetStretchBltMode
GetNearestPaletteIndex

user32

CharLowerBuffA
wvsprintfA
GetInputState
RemovePropA
EnableWindow
GetPropA
GetDlgItemInt
IsWindowEnabled
CheckDlgButton
GetQueueStatus
MoveWindow
DrawTextA
GetMenuItemID
PostMessageA
GetKeyboardType
IsWindowUnicode
GetWindowDC
EndDialog
GetMenu
GetMenuItemCount
GetMenuState
GetWindowContextHelpId
CallWindowProcA
GetDlgItem
SendMessageA
BeginPaint
SetWindowTextA
GetMenuCheckMarkDimensions
ShowWindow
SetFocus

kernel32

CreateFileA
HeapFree
ExitProcess
WriteFile
IsProcessorFeaturePresent
GlobalSize
GetProcAddress
GetModuleHandleA
CloseHandle
GetLastError
GlobalAlloc
FindClose
SizeofResource
GetCurrentProcessId
LocalFlags
DeleteFileA
MoveFileA
GlobalFlags
GlobalHandle
GetCurrentThreadId
GetVersion
GetCurrentProcess
GetStdHandle
lstrlenA
GetProcessHeap
HeapReAlloc
HeapAlloc
GetSystemTime
SystemTimeToFileTime
GetFileTime
GetFileSize

Sections

.text
Size: 255KB - Virtual size: 255KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62dd2525c8b843eeee2e3e3a836b4213

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 255KB - Virtual size: 255KB

.rdata Size: 43KB - Virtual size: 42KB

.data Size: 1KB - Virtual size: 3KB

.reloc Size: 51KB - Virtual size: 50KB

.text
Size: 255KB - Virtual size: 255KB

.rdata
Size: 43KB - Virtual size: 42KB

.data
Size: 1KB - Virtual size: 3KB

.reloc
Size: 51KB - Virtual size: 50KB