3586d2b88e27847b164caebad2cc92357f88417b541d6b4f4c93f77c624e64d0_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

3586d2b88e27847b164caebad2cc92357f88417b541d6b4f4c93f77c624e64d0_NeikiAnalytics.exe
Size

1.9MB
MD5

876a8e8369b514f6b69a267eaacf5940
SHA1

3bbba220a4f7f7602a77ce4c99642182f13e7ced
SHA256

3586d2b88e27847b164caebad2cc92357f88417b541d6b4f4c93f77c624e64d0
SHA512

4fa72e7edd9e3f7b57f14c9ff33175aa892be84c4ca7dec9314b35b8a5cd4dd23fcab1112fa347679118b45584f519b7e28a6c84f5da232d7fea0b1494413023
SSDEEP

49152:bKg0sC1ebv1yZ4C3ncJCfRxDoVedqP4qV4AZNeFKIdETmX:bKg0r1eL1s4C3ncUfRxUEqP4qV4AZNei

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3586d2b88e27847b164caebad2cc92357f88417b541d6b4f4c93f77c624e64d0_NeikiAnalytics.exe

Files

3586d2b88e27847b164caebad2cc92357f88417b541d6b4f4c93f77c624e64d0_NeikiAnalytics.exe
.exe windows:6 windows x86 arch:x86

0a3c83ff263071c07a6af05a170e3d6a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GetPrivateProfileStringW
FileTimeToLocalFileTime
GetFileAttributesW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
SetErrorMode
GlobalFlags
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
GetCurrentDirectoryW
lstrcpyW
FindResourceExW
GetWindowsDirectoryW
VerSetConditionMask
VerifyVersionInfoW
GetTempFileNameW
GetTempPathW
GetTickCount
GetProfileIntW
SearchPathW
Sleep
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
OutputDebugStringW
RtlUnwind
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
QueryPerformanceFrequency
SetStdHandle
GetFileType
GetStdHandle
ExitProcess
LCMapStringW
GetTimeZoneInformation
EnterCriticalSection
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
WriteConsoleW
GetPrivateProfileIntW
lstrcmpA
GetCurrentThread
ResumeThread
SetThreadPriority
CreateEventW
WaitForSingleObject
GetVersionExW
GlobalGetAtomNameW
GetCurrentProcessId
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
FreeResource
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
lstrcmpiW
LoadLibraryW
LoadLibraryA
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetCurrentProcess
DuplicateHandle
CloseHandle
OutputDebugStringA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
WideCharToMultiByte
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
LeaveCriticalSection
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
GetConsoleCP
WritePrivateProfileStringW
MultiByteToWideChar
FindResourceW
SizeofResource
LockResource
LoadResource
DeleteCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
RaiseException
FileTimeToSystemTime
DecodePointer

user32

UnionRect
IsRectEmpty
GetSystemMenu
DeleteMenu
SetParent
SetTimer
KillTimer
WindowFromPoint
SetRect
IsClipboardFormatAvailable
MessageBeep
TrackMouseEvent
GetMenuDefaultItem
SetCapture
LockWindowUpdate
GetNextDlgGroupItem
DrawFocusRect
DrawIconEx
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongW
SetWindowRgn
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
DrawEdge
DrawFrameControl
SetCursorPos
CopyIcon
FrameRect
DrawIcon
UpdateLayeredWindow
MonitorFromPoint
GetComboBoxInfo
PostThreadMessageW
WaitMessage
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
GetUpdateRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
GetWindowLongW
PtInRect
EqualRect
CopyRect
GetSysColor
GetKeyNameTextW
ScreenToClient
MessageBoxW
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
MapDialogRect
GetWindowDC
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
IsIconic
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
LoadBitmapW
GetParent
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
UnhookWindowsHookEx
GetSystemMetrics
CharUpperW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
GetWindow
SendMessageW
UnregisterClassW
EnableWindow
SetWindowLongW
LoadIconW
UpdateWindow
TabbedTextOutW
GrayStringW
DrawTextExW
GetAsyncKeyState
GetDC
IsZoomed
DrawTextW
ReuseDDElParam
UnpackDDElParam
LoadImageW
DestroyIcon
GetWindowThreadProcessId
OffsetRect
IntersectRect
SetRectEmpty
SetCursor
InvalidateRect
InsertMenuItemW
DestroyMenu
CreatePopupMenu
LoadMenuW
TranslateAcceleratorW
LoadAcceleratorsW
ReleaseCapture
BringWindowToTop
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
SendDlgItemMessageA
CopyImage
SystemParametersInfoW
InflateRect
GetMenuItemInfoW
BeginPaint
FillRect
MoveWindow
ShowWindow
GetMonitorInfoW
RealChildWindowFromPoint
ClientToScreen
LoadCursorW
GetSysColorBrush
ShowOwnedPopups
PostQuitMessage
GetCursorPos
TranslateMessage
GetMessageW
SetForegroundWindow
MapVirtualKeyW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
MapWindowPoints
SetWindowsHookExW
ReleaseDC

shell32

SHBrowseForFolderW
ShellExecuteW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW
DragAcceptFiles
DragFinish
DragQueryFileW
SHAppBarMessage

msimg32

TransparentBlt
AlphaBlend

comctl32

ord17

shlwapi

PathFindFileNameW
PathRemoveFileSpecW
StrFormatKBSizeW
PathFindExtensionW
PathIsUNCW
PathStripToRootW

uxtheme

IsThemeBackgroundPartiallyTransparent
DrawThemeBackground
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
GetThemePartSize
IsAppThemed
GetThemeColor
GetCurrentThemeName
GetWindowTheme
GetThemeSysColor

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

gdiplus

GdiplusStartup
GdipGetImagePixelFormat
GdipAlloc
GdiplusShutdown
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCloneImage
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipFree
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

gdi32

DeleteDC
CreateFontW
GetTextMetricsW
SelectObject
GetTextExtentPoint32W
CreateCompatibleDC
DeleteObject
GetObjectW
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCW
StretchDIBits
CreateCompatibleBitmap
GetCharWidthW
GetTextFaceW
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
OffsetRgn
GetRgnBox
Rectangle
LPtoDP
CreateRoundRectRgn
Polyline
Polygon
CreatePolygonRgn
GetTextColor
Ellipse
CreateEllipticRgn
SetDIBColorTable
CreateDIBSection
StretchBlt
SetPixel
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
EnumFontFamiliesExW
GetBkColor
DPtoLP
CreateRectRgnIndirect
PatBlt
BitBlt
SetRectRgn
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
CombineRgn
CopyMetaFileW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

ole32

CoTaskMemFree
CoTaskMemAlloc
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoDisconnectObject
CoInitialize
CoCreateGuid
CoCreateInstance
CoInitializeEx
CoUninitialize
ReleaseStgMedium
OleDuplicateData

oleaut32

LoadTypeLi
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocString
SysAllocStringLen
VariantChangeType
VariantClear
VariantInit
VariantCopy
VarBstrFromDate
SysFreeString

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegEnumKeyExW

Exports

Exports

?ChangeFont@CMainFrame@@QAEXXZ

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 320KB - Virtual size: 319KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a3c83ff263071c07a6af05a170e3d6a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

msimg32

comctl32

shlwapi

uxtheme

oleacc

gdiplus

imm32

winmm

gdi32

winspool.drv

ole32

oleaut32

advapi32

Exports

Exports

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 320KB - Virtual size: 319KB

.data Size: 21KB - Virtual size: 38KB

.rsrc Size: 36KB - Virtual size: 35KB

.reloc Size: 133KB - Virtual size: 133KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 320KB - Virtual size: 319KB

.data
Size: 21KB - Virtual size: 38KB

.rsrc
Size: 36KB - Virtual size: 35KB

.reloc
Size: 133KB - Virtual size: 133KB