365be0426f0a6b6ebfcf5dcf27dd3c542c518b312b230f9cf00c23040e4c6f7b_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

365be0426f0a6b6ebfcf5dcf27dd3c542c518b312b230f9cf00c23040e4c6f7b_NeikiAnalytics.exe
Size

6.5MB
MD5

c76c552237628d51e4f4de7abbd50cd0
SHA1

840940693db52ca3227baf99d62c99f5260c6229
SHA256

365be0426f0a6b6ebfcf5dcf27dd3c542c518b312b230f9cf00c23040e4c6f7b
SHA512

597873aa69b095bdde7faca51679da6da6dfd3e69384b69d7be66737a888818b77945296289e20105e152713cc84f025857c0af7387082940d056fa3d4b0e764
SSDEEP

196608:5cV9Hw+cp1Cj/m3RUkUOT/N1HWaCztUcT:S3PcpQj/wEOT/N12aCzmcT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
365be0426f0a6b6ebfcf5dcf27dd3c542c518b312b230f9cf00c23040e4c6f7b_NeikiAnalytics.exe

Files

365be0426f0a6b6ebfcf5dcf27dd3c542c518b312b230f9cf00c23040e4c6f7b_NeikiAnalytics.exe
.dll windows:6 windows x86 arch:x86

8198d0866233a29276b3fbe472e2a971

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OutputDebugStringW
ReadConsoleW
WriteConsoleW
SetStdHandle
LoadLibraryExW
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
WriteFile
FlushFileBuffers
CloseHandle
GetFileType
GetStdHandle
GetOEMCP
GetACP
CreateFileW
GetProcessHeap
HeapSize
AreFileApisANSI
GetModuleHandleExW
ExitProcess
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
IsProcessorFeaturePresent
GetProcAddress
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetEndOfFile
DeleteFileW
FileTimeToLocalFileTime
WinExec
GetUserDefaultUILanguage
IsDebuggerPresent
EnumResourceTypesW
DeviceIoControl
RemoveDirectoryW
WritePrivateProfileStringW
SetThreadPriority
lstrcpynW
GetExitCodeProcess
GetUserDefaultLangID
VirtualQueryEx
SetFilePointer
GetVersion
EnumResourceNamesW
VirtualAlloc
GetTempPathW
HeapCreate
HeapDestroy
GetLogicalDrives
SignalObjectAndWait
CreateDirectoryW
CompareFileTime
FindResourceW
GetDriveTypeW
IsValidCodePage
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
GetLastError
HeapReAlloc
GetSystemTimeAsFileTime
HeapFree
RaiseException
RtlUnwind
GetCommandLineA
GetCurrentThreadId
GetCPInfo
HeapAlloc

user32

SetWindowRgn
CharUpperBuffW
IsIconic
LoadIconA
SetParent
DrawTextExW
SetScrollRange
GetCapture
GetWindowTextA
SetPropA
InvalidateRect
GetWindowLongW
MonitorFromWindow
GetDlgItem
CharUpperW
SetMenu
CreateCaret
PostMessageA
RemoveMenu
GetDlgItemTextW
TranslateMDISysAccel
UnionRect
GetDlgItemInt
PostMessageW
GetParent
MessageBeep
GetMenuStringW
WaitMessage
GetDC
GetKeyboardLayout
UnregisterClassA
GetWindowLongA
GetWindowTextW
PeekMessageA
EnableMenuItem
SetClassLongA
EndDialog
DestroyCaret
GetDesktopWindow
EnumChildWindows
IsDlgButtonChecked
AppendMenuA
GetMenuItemCount
IsWindow
GetKeyboardType
CheckRadioButton
SetCaretPos
GetDlgCtrlID
SetWindowTextW
SetScrollInfo
GetMonitorInfoW
ToAsciiEx

gdi32

MaskBlt
GetDeviceCaps
CreateFontIndirectA
CreatePalette
CreateCompatibleDC
SetMapMode
RealizePalette
GetClipBox
RectVisible
RoundRect
CreateSolidBrush
MoveToEx
CreateBitmap
PolyPolyline
CreateBrushIndirect
CreatePen
ExtTextOutA
PatBlt

comdlg32

FindTextW
GetSaveFileNameW

advapi32

RegLoadKeyW
AllocateAndInitializeSid
ChangeServiceConfigW
EqualSid
ControlService
GetUserNameA

shell32

Shell_NotifyIconW
ShellExecuteW

oleaut32

SysAllocStringLen
SysReAllocStringLen
VariantCopy

Sections

.text
Size: 533KB - Virtual size: 533KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5.9MB - Virtual size: 74.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8198d0866233a29276b3fbe472e2a971

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 533KB - Virtual size: 533KB

.data Size: 5.9MB - Virtual size: 74.6MB

.idata Size: 5KB - Virtual size: 4KB

.reloc Size: 13KB - Virtual size: 12KB

.text
Size: 533KB - Virtual size: 533KB

.data
Size: 5.9MB - Virtual size: 74.6MB

.idata
Size: 5KB - Virtual size: 4KB

.reloc
Size: 13KB - Virtual size: 12KB