272495126c290c0137ea98410f5189c18d7fbe4046b949acae90c8bd3107e7d2_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

272495126c290c0137ea98410f5189c18d7fbe4046b949acae90c8bd3107e7d2_NeikiAnalytics.exe
Size

209KB
MD5

08e37b44cd3b5889fccbe9f6a80a6dd0
SHA1

f7c92748f485cb8ed7764f4b8f221fa1dc3a7bf1
SHA256

272495126c290c0137ea98410f5189c18d7fbe4046b949acae90c8bd3107e7d2
SHA512

3aeee3ea302ddae208ab91a6be0ca01562d100ecc1913ef6996c6bc811e1d2f7b27229f257a75c618063fe417b65a6e14c7659338bc3b4e0eac5e3d9942a44bd
SSDEEP

6144:Vzop3b36MRKGUnZkfFf8O5sdpWrY6E89ix9+:hoV36MR+nZktf8O5se1h9Y+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
272495126c290c0137ea98410f5189c18d7fbe4046b949acae90c8bd3107e7d2_NeikiAnalytics.exe

Files

272495126c290c0137ea98410f5189c18d7fbe4046b949acae90c8bd3107e7d2_NeikiAnalytics.exe
.exe windows:4 windows x64 arch:x64

2beba81789bd3af1b9e060b649c34b53

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetCommandLineW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryExW
LocalFree
QueryPerformanceCounter
RtlAddFunctionTable
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__C_specific_handler
__dllonexit
__getmainargs
__initenv
__iob_func
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_fmode
_initterm
_lock
_onexit
_unlock
abort
calloc
exit
fprintf
free
fwrite
malloc
memcpy
signal
strcmp
strlen
strncmp
vfprintf

shell32

CommandLineToArgvW

libstdc++-6

_ZdaPv
_ZdlPv
_Znay
_Znwy

qt5core

_Z21qRegisterResourceDataiPKhS0_S0_
_Z23qUnregisterResourceDataiPKhS0_S0_
_ZN10QArrayData10deallocateEPS_yy
_ZN11QMetaObject10ConnectionD1Ev
_ZN16QCoreApplication18applicationDirPathEv
_ZN4QUrlC1ERK7QStringNS_11ParsingModeE
_ZN4QUrlC1ERKS_
_ZN4QUrlD1Ev
_ZN7QObject10childEventEP11QChildEvent
_ZN7QObject10timerEventEP11QTimerEvent
_ZN7QObject11customEventEP6QEvent
_ZN7QObject13connectNotifyERK11QMetaMethod
_ZN7QObject16disconnectNotifyERK11QMetaMethod
_ZN7QObject7connectEPKS_PKcS1_S3_N2Qt14ConnectionTypeE
_ZN7QString14compare_helperEPK5QChariPKciN2Qt15CaseSensitivityE
_ZN7QString15fromUtf8_helperEPKci
_ZN7QString16fromAscii_helperEPKci
_ZN7QString6appendERKS_
_ZN7QString6insertEiPK5QChari
_ZN8QVariantC1ERK10QByteArray
_ZN8QVariantC1Ei
_ZN8QVariantD1Ev
_ZN9QListData11detach_growEPii
_ZN9QListData11shared_nullE
_ZN9QListData6appendEv
_ZN9QListData7disposeEPNS_4DataE
_ZN9QSettingsC1ERK7QStringNS_6FormatEP7QObject
_ZN9QSettingsD1Ev
_ZNK11QMetaObject4castEP7QObject
_ZNK11QObjectData17dynamicMetaObjectEv
_ZNK4QUrl6schemeEv
_ZNK7QObject6senderEv
_ZNK8QVariant3cmpERKS_
_ZNK8QVariant5toIntEPb
_ZNK9QSettings5valueERK7QStringRK8QVariant

qt5gui

_ZN15QGuiApplication7screensEv
_ZN16QDesktopServices7openUrlERK4QUrl
_ZN5QFont12setPointSizeEi
_ZN5QFontD1Ev
_ZN5QIconC1ERK7QString
_ZN5QIconD1Ev
_ZN6QBrushC1ERK6QColorN2Qt10BrushStyleE
_ZN6QBrushD1Ev
_ZN6QColor6setRgbEiiii
_ZN8QPalette8setBrushENS_10ColorGroupENS_9ColorRoleERK6QBrush
_ZN8QPaletteC1Ev
_ZN8QPaletteD1Ev
_ZNK5QFont9pointSizeEv
_ZNK7QScreen17availableGeometryEv

qt5help

_ZN11QHelpEngine11indexWidgetEv
_ZN11QHelpEngine13contentWidgetEv
_ZN11QHelpEngineC1ERK7QStringP7QObject
_ZN15QHelpEngineCore9setupDataEv
_ZNK15QHelpEngineCore8fileDataERK4QUrl

qt5widgets

_ZN10QBoxLayout9addWidgetEP7QWidgeti6QFlagsIN2Qt13AlignmentFlagEE
_ZN10QTabWidget6addTabEP7QWidgetRK7QString
_ZN10QTabWidgetC1EP7QWidget
_ZN11QVBoxLayoutC1EP7QWidget
_ZN11QVBoxLayoutC1Ev
_ZN12QApplication10setPaletteERK8QPalettePKc
_ZN12QApplication13setStyleSheetERK7QString
_ZN12QApplication4fontEv
_ZN12QApplication7setFontERK5QFontPKc
_ZN12QApplication8setStyleEP6QStyle
_ZN12QApplicationC1ERiPPci
_ZN12QApplicationD1Ev
_ZN12QTextBrowser10paintEventEP11QPaintEvent
_ZN12QTextBrowser11qt_metacallEN11QMetaObject4CallEiPPv
_ZN12QTextBrowser11qt_metacastEPKc
_ZN12QTextBrowser12setOpenLinksEb
_ZN12QTextBrowser13focusOutEventEP11QFocusEvent
_ZN12QTextBrowser13keyPressEventEP9QKeyEvent
_ZN12QTextBrowser14mouseMoveEventEP11QMouseEvent
_ZN12QTextBrowser15mousePressEventEP11QMouseEvent
_ZN12QTextBrowser16staticMetaObjectE
_ZN12QTextBrowser17mouseReleaseEventEP11QMouseEvent
_ZN12QTextBrowser18focusNextPrevChildEb
_ZN12QTextBrowser4homeEv
_ZN12QTextBrowser5eventEP6QEvent
_ZN12QTextBrowser6reloadEv
_ZN12QTextBrowser7forwardEv
_ZN12QTextBrowser8backwardEv
_ZN12QTextBrowser9setSourceERK4QUrl
_ZN12QTextBrowserC2EP7QWidget
_ZN12QTextBrowserD2Ev
_ZN13QStyleFactory6createERK7QString
_ZN19QAbstractScrollArea11eventFilterEP7QObjectP6QEvent
_ZN19QAbstractScrollArea13setupViewportEP7QWidget
_ZN19QAbstractScrollArea13viewportEventEP6QEvent
_ZN19QAbstractScrollArea28setHorizontalScrollBarPolicyEN2Qt15ScrollBarPolicyE
_ZN6QLabelC1ERK7QStringP7QWidget6QFlagsIN2Qt10WindowTypeEE
_ZN7QAction10setEnabledEb
_ZN7QAction10setToolTipERK7QString
_ZN7QAction12setCheckableEb
_ZN7QAction16staticMetaObjectE
_ZN7QAction7setDataERK8QVariant
_ZN7QActionC1ERK5QIconRK7QStringP7QObject
_ZN7QDialog10closeEventEP11QCloseEvent
_ZN7QDialog10setVisibleEb
_ZN7QDialog11eventFilterEP7QObjectP6QEvent
_ZN7QDialog11qt_metacallEN11QMetaObject4CallEiPPv
_ZN7QDialog11qt_metacastEPKc
_ZN7QDialog11resizeEventEP12QResizeEvent
_ZN7QDialog13keyPressEventEP9QKeyEvent
_ZN7QDialog16contextMenuEventEP17QContextMenuEvent
_ZN7QDialog16staticMetaObjectE
_ZN7QDialog4doneEi
_ZN7QDialog4execEv
_ZN7QDialog4openEv
_ZN7QDialog6acceptEv
_ZN7QDialog6rejectEv
_ZN7QDialog9showEventEP10QShowEvent
_ZN7QDialogC2EP7QWidget6QFlagsIN2Qt10WindowTypeEE
_ZN7QDialogD2Ev
_ZN7QWidget10closeEventEP11QCloseEvent
_ZN7QWidget10enterEventEP6QEvent
_ZN7QWidget10leaveEventEP6QEvent
_ZN7QWidget10paintEventEP11QPaintEvent
_ZN7QWidget10setVisibleEb
_ZN7QWidget10wheelEventEP11QWheelEvent
_ZN7QWidget11actionEventEP12QActionEvent
_ZN7QWidget11changeEventEP6QEvent
_ZN7QWidget11nativeEventERK10QByteArrayPvPl
_ZN7QWidget11tabletEventEP12QTabletEvent
_ZN7QWidget12focusInEventEP11QFocusEvent
_ZN7QWidget13dragMoveEventEP14QDragMoveEvent
_ZN7QWidget13focusOutEventEP11QFocusEvent
_ZN7QWidget14dragEnterEventEP15QDragEnterEvent
_ZN7QWidget14dragLeaveEventEP15QDragLeaveEvent
_ZN7QWidget14mouseMoveEventEP11QMouseEvent
_ZN7QWidget14setWindowFlagsE6QFlagsIN2Qt10WindowTypeEE
_ZN7QWidget14setWindowTitleERK7QString
_ZN7QWidget15keyReleaseEventEP9QKeyEvent
_ZN7QWidget15mousePressEventEP11QMouseEvent
_ZN7QWidget16inputMethodEventEP17QInputMethodEvent
_ZN7QWidget17mouseReleaseEventEP11QMouseEvent
_ZN7QWidget18focusNextPrevChildEb
_ZN7QWidget21mouseDoubleClickEventEP11QMouseEvent
_ZN7QWidget4moveERK6QPoint
_ZN7QWidget5eventEP6QEvent
_ZN7QWidget6resizeERK5QSize
_ZN7QWidget9addActionEP7QAction
_ZN7QWidget9dropEventEP10QDropEvent
_ZN7QWidget9hideEventEP10QHideEvent
_ZN7QWidget9moveEventEP10QMoveEvent
_ZN7QWidget9setLayoutEP7QLayout
_ZN7QWidgetC1EPS_6QFlagsIN2Qt10WindowTypeEE
_ZN8QToolBar12addSeparatorEv
_ZN8QToolBar18setToolButtonStyleEN2Qt15ToolButtonStyleE
_ZN8QToolBarC1ERK7QStringP7QWidget
_ZN8QToolTip10setPaletteERK8QPalette
_ZN9QLineEditC1EP7QWidget
_ZN9QSplitter8setSizesERK5QListIiE
_ZN9QSplitterC1EN2Qt11OrientationEP7QWidget
_ZN9QTextEdit10timerEventEP11QTimerEvent
_ZN9QTextEdit10wheelEventEP11QWheelEvent
_ZN9QTextEdit11changeEventEP6QEvent
_ZN9QTextEdit11resizeEventEP12QResizeEvent
_ZN9QTextEdit12focusInEventEP11QFocusEvent
_ZN9QTextEdit13dragMoveEventEP14QDragMoveEvent
_ZN9QTextEdit14dragEnterEventEP15QDragEnterEvent
_ZN9QTextEdit14dragLeaveEventEP15QDragLeaveEvent
_ZN9QTextEdit15doSetTextCursorERK11QTextCursor
_ZN9QTextEdit15keyReleaseEventEP9QKeyEvent
_ZN9QTextEdit16contextMenuEventEP17QContextMenuEvent
_ZN9QTextEdit16inputMethodEventEP17QInputMethodEvent
_ZN9QTextEdit16scrollContentsByEii
_ZN9QTextEdit18insertFromMimeDataEPK9QMimeData
_ZN9QTextEdit21mouseDoubleClickEventEP11QMouseEvent
_ZN9QTextEdit6zoomInEi
_ZN9QTextEdit7zoomOutEi
_ZN9QTextEdit9dropEventEP10QDropEvent
_ZN9QTextEdit9showEventEP10QShowEvent
_ZNK12QTextBrowser18isForwardAvailableEv
_ZNK12QTextBrowser19isBackwardAvailableEv
_ZNK19QAbstractScrollArea15minimumSizeHintEv
_ZNK19QAbstractScrollArea16viewportSizeHintEv
_ZNK19QAbstractScrollArea8sizeHintEv
_ZNK7QAction4dataEv
_ZNK7QDialog15minimumSizeHintEv
_ZNK7QDialog8sizeHintEv
_ZNK7QWidget10redirectedEP6QPoint
_ZNK7QWidget11initPainterEP8QPainter
_ZNK7QWidget11paintEngineEv
_ZNK7QWidget13sharedPainterEv
_ZNK7QWidget14heightForWidthEi
_ZNK7QWidget16inputMethodQueryEN2Qt16InputMethodQueryE
_ZNK7QWidget17hasHeightForWidthEv
_ZNK7QWidget5winIdEv
_ZNK7QWidget6metricEN12QPaintDevice17PaintDeviceMetricE
_ZNK7QWidget7devTypeEv
_ZNK9QTextEdit16inputMethodQueryEN2Qt16InputMethodQueryE
_ZNK9QTextEdit21canInsertFromMimeDataEPK9QMimeData
_ZNK9QTextEdit27createMimeDataFromSelectionEv
_ZThn16_NK7QWidget10redirectedEP6QPoint
_ZThn16_NK7QWidget11initPainterEP8QPainter
_ZThn16_NK7QWidget11paintEngineEv
_ZThn16_NK7QWidget13sharedPainterEv
_ZThn16_NK7QWidget6metricEN12QPaintDevice17PaintDeviceMetricE
_ZThn16_NK7QWidget7devTypeEv

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2beba81789bd3af1b9e060b649c34b53

Headers

File Characteristics

Imports

kernel32

msvcrt

shell32

libstdc++-6

qt5core

qt5gui

qt5help

qt5widgets

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 512B - Virtual size: 312B

.rdata Size: 89KB - Virtual size: 89KB

.pdata Size: 1024B - Virtual size: 972B

.xdata Size: 1024B - Virtual size: 848B

.bss Size: - Virtual size: 2KB

.idata Size: 14KB - Virtual size: 14KB

.CRT Size: 512B - Virtual size: 104B

.tls Size: 512B - Virtual size: 104B

.rsrc Size: 79KB - Virtual size: 79KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 512B - Virtual size: 312B

.rdata
Size: 89KB - Virtual size: 89KB

.pdata
Size: 1024B - Virtual size: 972B

.xdata
Size: 1024B - Virtual size: 848B

.bss
Size: - Virtual size: 2KB

.idata
Size: 14KB - Virtual size: 14KB

.CRT
Size: 512B - Virtual size: 104B

.tls
Size: 512B - Virtual size: 104B

.rsrc
Size: 79KB - Virtual size: 79KB