2aa5f4116356cb623fb8be47f7d0f5d8a654a12008753e9bb46262d8671078b1_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2aa5f4116356cb623fb8be47f7d0f5d8a654a12008753e9bb46262d8671078b1_NeikiAnalytics.exe
Size

916KB
MD5

da42da61fa3a459bf6021f197e6df560
SHA1

5f6ccbda17575ecf94a57e04a4a0ebf069a28b00
SHA256

2aa5f4116356cb623fb8be47f7d0f5d8a654a12008753e9bb46262d8671078b1
SHA512

c997c754476170ce8a3716d11cda27e01286a23ae151f1d813db630fae01ad522a46fbc7e23327f571e5e7f03041a7fdd1b24ce980a3e02931d1208a6d4bd991
SSDEEP

12288:V7/trbOaqSE0voOB+xKhEzFLAwqOICnTGCZh2SJjPz06:b7qSE6/TOICnTfJbI6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2aa5f4116356cb623fb8be47f7d0f5d8a654a12008753e9bb46262d8671078b1_NeikiAnalytics.exe

Files

2aa5f4116356cb623fb8be47f7d0f5d8a654a12008753e9bb46262d8671078b1_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

1d28d1479d5128d4fc0c7f3b6e2da943

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
ExitProcess
HeapReAlloc
GetStartupInfoW
GetTickCount
HeapFree
GetTimeZoneInformation
HeapAlloc
GetLocalTime
TerminateProcess
CreateThread
ExitThread
RaiseException
GetSystemTime
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapSize
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
UnhandledExceptionFilter
GetEnvironmentStrings
GetProfileStringW
Sleep
VirtualAlloc
IsBadWritePtr
CompareStringA
LCMapStringA
GlobalSize
GlobalGetAtomNameW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
SetConsoleCtrlHandler
SetStdHandle
GetACP
GetOEMCP
SetEnvironmentVariableA
GetProfileStringA
GetPrivateProfileStringW
GetLastError
MulDiv
GetTempPathW
lstrcatW
WritePrivateProfileStringW
lstrlenW
GetProfileIntW
SearchPathW
FreeLibrary
LoadLibraryA
GetProcAddress
InterlockedDecrement
GetModuleFileNameW
lstrlenA
lstrcpyW
GetVersionExW
GetSystemInfo
GlobalAddAtomA
FindResourceA
CopyFileW
SetFileAttributesW
GetCurrentDirectoryW
SetErrorMode
LocalFileTimeToFileTime
SetFileTime
SystemTimeToFileTime
FindResourceExW
GetFileTime
GetFileSize
TlsGetValue
GetProcessVersion
GlobalFlags
GlobalReAlloc
LocalReAlloc
TlsSetValue
TlsAlloc
TlsFree
GlobalHandle
LeaveCriticalSection
LocalAlloc
EnterCriticalSection
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
SuspendThread
GetPrivateProfileIntW
CreateEventW
SetEvent
SetThreadPriority
ResumeThread
GetCurrentThread
GlobalAlloc
lstrcmpiA
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameW
GetShortPathNameW
GetThreadLocale
FindClose
GetVolumeInformationW
FindFirstFileW
SetEndOfFile
DeleteFileW
MoveFileW
CloseHandle
UnlockFile
LockFile
WriteFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
ReadFile
CreateFileW
GlobalUnlock
DuplicateHandle
GlobalLock
GetModuleHandleA
VirtualProtect
GlobalFree
FormatMessageW
GetVersion
GetCurrentThreadId
WaitForSingleObject
LocalFree
InterlockedIncrement
GlobalFindAtomW
CreateProcessW
GetFileAttributesW
lstrcmpiW
GlobalDeleteAtom
GlobalAddAtomW
FreeResource
LoadResource
LockResource
WideCharToMultiByte
FindResourceW
GetLocaleInfoW
CompareStringW
MultiByteToWideChar
lstrcpyA
GetStringTypeExW
lstrcmpA
lstrcpynW
lstrcmpW
GetStringTypeW
LoadLibraryW
LCMapStringW
GetModuleHandleW
SetUnhandledExceptionFilter
HeapCreate
VirtualFree
FatalAppExitA

user32

SetWindowTextW
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextW
MoveWindow
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
CheckRadioButton
CheckDlgButton
IsWindowEnabled
LoadIconW
UpdateWindow
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
IsWindow
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
GetKeyState
DefWindowProcW
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
EnableMenuItem
ShowWindow
TranslateAcceleratorW
RemovePropW
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindowLongW
SetWindowPos
RegisterWindowMessageW
IntersectRect
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetNextDlgTabItem
GetFocus
RegisterClipboardFormatW
MsgWaitForMultipleObjects
LoadAcceleratorsW
GetClassNameW
GetSysColor
CharNextW
wsprintfA
CharLowerW
CharUpperW
MapDialogRect
GetWindow
UnionRect
OffsetRect
LoadCursorW
InvalidateRect
SetCursor
RemoveMenu
AppendMenuW
GetNextDlgGroupItem
SetRect
SetWindowLongW
MessageBeep
LoadBitmapW
GetDC
ReleaseDC
LoadStringW
LoadImageW
FillRect
wsprintfW
MessageBoxW
GetDlgItem
DestroyWindow
PeekMessageW
IsDialogMessageW
TranslateMessage
DispatchMessageW
GetWindowRect
GetParent
PostMessageW
DestroyIcon
PostThreadMessageW
InflateRect
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuW
SetRectEmpty
UnhookWindowsHookEx
GetSystemMetrics
SetCapture
SetFocus
ReleaseCapture
SetActiveWindow
EnableWindow
SendMessageW
CopyAcceleratorTableW
GetMenuStringW
DeleteMenu
InsertMenuW
WindowFromPoint
GetWindowThreadProcessId
WaitMessage
DestroyMenu
GetSysColorBrush
GetDesktopWindow
PtInRect
GetDialogBaseUnits
SetWindowContextHelpId
GetMessageW
ValidateRect
GetCursorPos
ShowOwnedPopups
PostQuitMessage
GrayStringW
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
wvsprintfW
EndDialog
CreateDialogIndirectParamW
GetActiveWindow
GetAsyncKeyState
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
GetPropW
CheckMenuItem
CallWindowProcW
GetScrollRange
SetMenuItemBitmaps
DefWindowProcA
DefDlgProcA
GetPropA
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
SetPropA
GetWindowLongA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA

gdi32

GetTextMetricsW
EndPage
AbortDoc
StartPage
CreateFontIndirectW
GetObjectW
EndDoc
DeleteObject
DeleteDC
GetStockObject
SelectObject
CreateCompatibleDC
StretchDIBits
GetDCOrgEx
GetClipBox
CreateCompatibleBitmap
SetBkColor
CreateBitmap
SetTextColor
RestoreDC
SelectPalette
SaveDC
SetPolyFillMode
SetROP2
SetBkMode
SetMapMode
SetViewportOrgEx
SetStretchBltMode
CreateFontW
SetViewportExtEx
OffsetViewportOrgEx
SetWindowOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipRgn
SetWindowExtEx
IntersectClipRect
OffsetClipRgn
ExcludeClipRect
LineTo
SetTextAlign
MoveToEx
SetTextCharacterExtra
SetMapperFlags
SetTextJustification
ArcTo
SetArcDirection
GetCurrentPositionEx
PolylineTo
SetColorAdjustment
PolyDraw
GetClipRgn
CreateRectRgn
PolyBezierTo
ExtSelectClipRgn
PlayMetaFileRecord
SelectClipPath
EnumMetaFile
PlayMetaFile
GetObjectType
GetWindowExtEx
CreatePen
GetViewportExtEx
CreateSolidBrush
CreateHatchBrush
ExtCreatePen
CreateDIBPatternBrushPt
PtVisible
CreatePatternBrush
TextOutW
ExtTextOutW
RectVisible
CreateDCW
GetTextExtentPoint32W
Escape
GetTextColor
GetBkColor
EnumFontFamiliesExW
LPtoDP
CopyMetaFileW
DPtoLP
PatBlt
SetRectRgn
GetMapMode
CreateRectRgnIndirect
CombineRgn
BitBlt
GetTextExtentPointA
CreateDIBitmap
StartDocW
ExtTextOutA
GetDeviceCaps

comdlg32

GetSaveFileNameW
PageSetupDlgW
GetFileTitleW
PrintDlgW
GetOpenFileNameW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegOpenKeyW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueW
RegEnumKeyW
RegCreateKeyW

shell32

ExtractIconW
DragQueryFileW
DragFinish
SHGetFileInfoW
DragAcceptFiles
SHGetDesktopFolder
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListW
FindExecutableW
ShellExecuteW

comctl32

ord17
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW

oledlg

OleUIBusyW

ole32

OleUninitialize
OleInitialize
CLSIDFromProgID
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoDisconnectObject
OleDuplicateData
CreateBindCtx
CLSIDFromString
WriteFmtUserTypeStg
WriteClassStg
OleRegGetUserType
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
ReleaseStgMedium
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRegisterClassObject
CoRevokeClassObject
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
SetConvertStg
CoCreateInstance
OleRun

olepro32

ord253

oleaut32

SysAllocString
SysFreeString
SafeArrayCopy
SysAllocStringLen
VariantCopy
VariantChangeType
SysReAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
SysStringByteLen
SysAllocStringByteLen
VarCyFromStr
VarBstrFromCy
VarDateFromStr
VarBstrFromDate
VariantClear
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VariantTimeToSystemTime
SysStringLen
LoadTypeLi
GetErrorInfo
SetErrorInfo
CreateErrorInfo
VariantInit

Sections

.text
Size: 388KB - Virtual size: 387KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_CODE
Size: 4KB - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 408KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d28d1479d5128d4fc0c7f3b6e2da943

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 388KB - Virtual size: 387KB

.rdata Size: 84KB - Virtual size: 81KB

.data Size: 28KB - Virtual size: 45KB

_CODE Size: 4KB - Virtual size: 196B

.rsrc Size: 408KB - Virtual size: 404KB

.text
Size: 388KB - Virtual size: 387KB

.rdata
Size: 84KB - Virtual size: 81KB

.data
Size: 28KB - Virtual size: 45KB

_CODE
Size: 4KB - Virtual size: 196B

.rsrc
Size: 408KB - Virtual size: 404KB