2c7fc1f1d1b9a698eb14e0b0607cf9248568b088eb93bda1ae4ce51073fa7d18_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2c7fc1f1d1b9a698eb14e0b0607cf9248568b088eb93bda1ae4ce51073fa7d18_NeikiAnalytics.exe
Size

456KB
MD5

2b29ba8618203a6e4ca5821a4a2184f0
SHA1

f192804488233f17cda247507ac78730ddbf7ba5
SHA256

2c7fc1f1d1b9a698eb14e0b0607cf9248568b088eb93bda1ae4ce51073fa7d18
SHA512

6ac806f047666bf9146cecb876a6f863c99d1f3af59601a08995b4aa0bbf8c91a4850f2e6a2260f1452f921ca642172137f2dd93c080dc456cd03851a633ab19
SSDEEP

6144:xe/V+CmxiZrtygM+Cfdf+vzyIapUz5Sjp3IO9I3DkWwfnkBye:U/cCmErI34rytUIWcI3P2n2ye

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c7fc1f1d1b9a698eb14e0b0607cf9248568b088eb93bda1ae4ce51073fa7d18_NeikiAnalytics.exe

Files

2c7fc1f1d1b9a698eb14e0b0607cf9248568b088eb93bda1ae4ce51073fa7d18_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

8d08dd3fe0ce38f292a88982ef9d86f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
GetTimeZoneInformation
HeapSize
GetACP
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
UnhandledExceptionFilter
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetFileType
HeapReAlloc
RaiseException
IsBadCodePtr
GetVersionExA
TerminateProcess
CompareStringA
CompareStringW
SetEnvironmentVariableA
DeviceIoControl
CreateMutexA
OpenMutexA
ReleaseMutex
ResetEvent
OutputDebugStringA
QueryDosDeviceA
GetProfileStringA
HeapAlloc
HeapFree
lstrlenA
InterlockedDecrement
InterlockedIncrement
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
CreateEventA
WaitForSingleObject
CloseHandle
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetStartupInfoA
ExitProcess
GetCommandLineA
RtlUnwind
GetFileSize
GetFileTime
FileTimeToLocalFileTime
GetFileAttributesA
GetTickCount
FileTimeToSystemTime
GetVolumeInformationA
GetFullPathNameA
DeleteFileA
FindFirstFileA
FindClose
UnlockFile
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
CreateFileA
WriteFile
ReadFile
SetErrorMode
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetOEMCP
GetCPInfo
GetLastError
SizeofResource
GetProcessVersion
WritePrivateProfileStringA
TlsGetValue
GlobalFlags
EnterCriticalSection
LocalReAlloc
TlsSetValue
TlsFree
GlobalReAlloc
LeaveCriticalSection
TlsAlloc
GlobalHandle
DeleteCriticalSection
lstrcpynA
InitializeCriticalSection
LocalAlloc
MulDiv
FormatMessageA
LocalFree
FreeLibrary
SetLastError
LoadLibraryA
GlobalGetAtomNameA
GetVersion
lstrcatA
lstrcpyA
GlobalAddAtomA
GlobalFindAtomA
MultiByteToWideChar
GetModuleHandleA
GetProcAddress
WideCharToMultiByte
SetStdHandle
GetStringTypeW
IsBadReadPtr
GetCurrentThreadId

user32

UpdateWindow
SetWindowTextA
IsDialogMessageA
ShowWindow
MoveWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetDC
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
RegisterClipboardFormatA
SetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
PostThreadMessageA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
UnhookWindowsHookEx
GetClassLongA
SetPropA
InflateRect
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
SetCursor
PostQuitMessage
PostMessageA
EnableWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA
CharUpperA
InvalidateRect
DestroyMenu
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CharNextA
LoadStringA
GetSysColorBrush
PtInRect
GetClassNameA
GetDesktopWindow
LoadCursorA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetForegroundWindow
SetForegroundWindow
ClientToScreen
UnregisterClassA
HideCaret
DrawFocusRect
ExcludeUpdateRgn
IsWindowUnicode
ShowCaret
DefDlgProcA

gdi32

SetTextColor
DeleteDC
GetObjectA
RestoreDC
SelectObject
SaveDC
SetBkMode
GetStockObject
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
GetClipBox
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
GetBkColor
DPtoLP
GetTextColor
GetMapMode
PatBlt
LPtoDP
SetBkColor
CreateDIBitmap
CreateCompatibleDC
BitBlt
CreateBitmap
GetTextExtentPointA

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
OpenSCManagerA
OpenServiceA
QueryServiceStatus
ControlService
CloseServiceHandle
InitializeSecurityDescriptor
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
SetSecurityDescriptorDacl

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemFree
StgOpenStorageOnILockBytes
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemAlloc

olepro32

ord253

oleaut32

SysAllocStringByteLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo

Sections

.text
Size: 200KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8d08dd3fe0ce38f292a88982ef9d86f3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

setupapi

Sections

.text Size: 200KB - Virtual size: 196KB

.rdata Size: 36KB - Virtual size: 34KB

.data Size: 216KB - Virtual size: 216KB

.text
Size: 200KB - Virtual size: 196KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 216KB - Virtual size: 216KB