7fd4853b4f299112dbf344b778c576c6f0304d4db915f14613e4799292adf64d_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

7fd4853b4f299112dbf344b778c576c6f0304d4db915f14613e4799292adf64d_NeikiAnalytics.exe
Size

1.1MB
MD5

8821d912c64be422f8fd3b1baab0fca0
SHA1

5db97087fddd2c5dcce79fca9b58b95fa1aa1115
SHA256

7fd4853b4f299112dbf344b778c576c6f0304d4db915f14613e4799292adf64d
SHA512

6ad9b6b4ee912cad2c36ad3c49a91d040bb7cacd69e026cd411eb45f60c93d2e011f5879c9c77bb5724dd552432a9cd30a99fe70a50c860568a74e665e2fa8ca
SSDEEP

24576:gtYBHj8RnqGTEjd6iMOMRMBJDw1LmkfYBk8z:EqTjo/mYX8z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7fd4853b4f299112dbf344b778c576c6f0304d4db915f14613e4799292adf64d_NeikiAnalytics.exe

Files

7fd4853b4f299112dbf344b778c576c6f0304d4db915f14613e4799292adf64d_NeikiAnalytics.exe
.exe windows:1 windows x86 arch:x86

1d1d70bac955b9b44051e7057081417d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

ChangeServiceConfigA
CloseServiceHandle
ControlService
CreateServiceA
DeleteService
OpenSCManagerA
OpenServiceA
QueryServiceStatus
RegCloseKey
RegCreateKeyA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegisterServiceCtrlHandlerA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueA
RegQueryValueExA
RegSetValueA
RegSetValueExA
SetServiceStatus
StartServiceA
StartServiceCtrlDispatcherA

comctl32

ImageList_Draw
InitCommonControls

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA
PageSetupDlgA
PrintDlgA

gdi32

BitBlt
CloseEnhMetaFile
CloseMetaFile
CombineRgn
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
CreateEnhMetaFileA
CreateFontA
CreateFontIndirectA
CreateICA
CreatePalette
CreatePatternBrush
CreatePen
CreateRectRgn
CreateRectRgnIndirect
CreateSolidBrush
DeleteDC
DeleteEnhMetaFile
DeleteMetaFile
DeleteObject
Ellipse
EndDoc
EndPage
EnumFontFamiliesA
EnumFontFamiliesExA
EnumMetaFile
Escape
ExcludeClipRect
ExtSelectClipRgn
ExtTextOutA
GetBkColor
GetBkMode
GetCharWidthA
GetClipBox
GetCurrentPositionEx
GetDeviceCaps
GetMapMode
GetNearestColor
GetObjectA
GetPaletteEntries
GetStockObject
GetSystemPaletteEntries
GetTextColor
GetTextExtentPoint32A
GetTextExtentPointA
GetTextFaceA
GetTextMetricsA
GetWinMetaFileBits
IntersectClipRect
LineTo
MoveToEx
PatBlt
PlayMetaFile
PlayMetaFileRecord
Polygon
RealizePalette
Rectangle
RectVisible
ResizePalette
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetMetaFileBitsEx
SetPaletteEntries
SetRectRgn
SetStretchBltMode
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StartDocA
StartPage
StretchDIBits
UnrealizeObject

kernel32

AreFileApisANSI
CloseHandle
CopyFileA
CreateFileA
CreateMutexA
CreateSemaphoreA
CreateToolhelp32Snapshot
DeleteCriticalSection
DeleteFileA
DosDateTimeToFileTime
DuplicateHandle
EnterCriticalSection
EnumResourceNamesA
ExitProcess
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindResourceA
FlushFileBuffers
FormatMessageA
FreeLibrary
FreeResource
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetEnvironmentVariableA
GetFileAttributesA
GetFileSize
GetFileTime
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetPriorityClass
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetProfileIntA
GetProfileStringA
GetShortPathNameA
GetStartupInfoA
GetTempPathA
GetThreadPriority
GetTickCount
GetVersion
GetVersionExA
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFree
GlobalGetAtomNameA
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalFileTimeToFileTime
LockFile
LockResource
lstrcmpA
lstrcmpiA
MoveFileA
MulDiv
MultiByteToWideChar
OpenFile
OpenMutexA
OpenProcess
OutputDebugStringA
Process32First
Process32Next
QueryPerformanceCounter
QueryPerformanceFrequency
ReadFile
ReleaseMutex
ReleaseSemaphore
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetFilePointer
SetFileTime
SetLastError
SetPriorityClass
SetThreadPriority
SizeofResource
Sleep
SleepEx
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnlockFile
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WinExec
WriteFile
WritePrivateProfileStringA
WriteProfileStringA
_hread
_hwrite
_lclose
_lcreat
_llseek
_lopen
_lread
_lwrite

ole32

CoInitialize
CoUninitialize
CreateILockBytesOnHGlobal
GetClassFile
OleGetClipboard
StgCreateDocfileOnILockBytes

oleaut32

SysAllocStringLen
SysFreeString
SysStringLen
VariantChangeType
VariantClear
VariantCopy
VariantInit

oledlg

OleUIAddVerbMenuA
OleUIInsertObjectA
OleUIPasteSpecialA

shell32

DragAcceptFiles
DragQueryFileA
ExtractIconA
SHBrowseForFolderA
ShellExecuteA
SHGetFileInfoA
SHGetMalloc
SHGetPathFromIDListA

user32

ActivateKeyboardLayout
AdjustWindowRect
AdjustWindowRectEx
BeginDeferWindowPos
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcA
CharLowerA
CharNextA
CharPrevA
CharToOemA
CharToOemBuffA
CharUpperA
CheckMenuItem
ChildWindowFromPointEx
ClientToScreen
CloseClipboard
CopyIcon
CopyRect
CreateCaret
CreateDialogParamA
CreateIconFromResourceEx
CreateMenu
CreatePopupMenu
CreateWindowExA
DefDlgProcA
DeferWindowPos
DefWindowProcA
DeleteMenu
DestroyCaret
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxIndirectParamA
DialogBoxParamA
DispatchMessageA
DrawFocusRect
DrawFrameControl
DrawIcon
DrawIconEx
DrawMenuBar
DrawStateA
DrawTextA
DrawTextExA
EmptyClipboard
EnableMenuItem
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EnumChildWindows
EnumThreadWindows
EqualRect
FillRect
FrameRect
FreeDDElParam
GetActiveWindow
GetAsyncKeyState
GetCapture
GetClassInfoExA
GetClassLongA
GetClassNameA
GetClientRect
GetClipboardData
GetClipboardFormatNameA
GetCursor
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItem
GetDlgItemTextA
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyboardLayout
GetKeyState
GetMenu
GetMenuCheckMarkDimensions
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMessageA
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetTopWindow
GetUpdateRect
GetWindow
GetWindowDC
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
HideCaret
InflateRect
InSendMessage
InsertMenuA
IntersectRect
InvalidateRect
InvertRect
IsCharAlphaA
IsCharUpperA
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsMenu
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
keybd_event
KillTimer
LoadBitmapA
LoadCursorA
LoadCursorFromFileA
LoadIconA
LoadImageA
LoadStringA
LookupIconIdFromDirectoryEx
MapVirtualKeyA
MapWindowPoints
MessageBeep
MessageBoxA
ModifyMenuA
MoveWindow
MsgWaitForMultipleObjects
OemToCharA
OemToCharBuffA
OffsetRect
OpenClipboard
PackDDElParam
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClassExA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
ScrollWindowEx
SendDlgItemMessageA
SendMessageA
SendNotifyMessageA
SetActiveWindow
SetCapture
SetCaretPos
SetClassLongA
SetClipboardData
SetCursor
SetCursorPos
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetMenu
SetMenuDefaultItem
SetParent
SetPropA
SetRect
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongA
SetWindowPos
SetWindowsHookExA
SetWindowTextA
ShowCaret
ShowScrollBar
ShowWindow
SystemParametersInfoA
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnpackDDElParam
UnregisterClassA
UpdateWindow
VkKeyScanA
WindowFromPoint
WinHelpA
wsprintfA
wvsprintfA

winspool.drv

ClosePrinter
DeviceCapabilitiesA
DocumentPropertiesA
OpenPrinterA

Sections

.text
Size: 814KB - Virtual size: 814KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cwtls
Size: 512B - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d1d70bac955b9b44051e7057081417d

Headers

File Characteristics

Imports

advapi32

comctl32

comdlg32

gdi32

kernel32

ole32

oleaut32

oledlg

shell32

user32

winspool.drv

Sections

.text Size: 814KB - Virtual size: 814KB

.data Size: 111KB - Virtual size: 126KB

.cwtls Size: 512B - Virtual size: 19KB

.idata Size: 14KB - Virtual size: 13KB

.rsrc Size: 123KB - Virtual size: 122KB

.reloc Size: 32KB - Virtual size: 31KB

.text
Size: 814KB - Virtual size: 814KB

.data
Size: 111KB - Virtual size: 126KB

.cwtls
Size: 512B - Virtual size: 19KB

.idata
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 123KB - Virtual size: 122KB

.reloc
Size: 32KB - Virtual size: 31KB