8defb288a567a5e07b5ce25746ac623ae6c345411292423ef93ecd9289c8dbe4_NeikiAnalytics[.]exe

General

Target

8defb288a567a5e07b5ce25746ac623ae6c345411292423ef93ecd9289c8dbe4_NeikiAnalytics.exe
Size

324KB
MD5

1746df58b34e3fbb83ae7863707954c0
SHA1

94e6daa7d7999401386b58d08241675a6d674a37
SHA256

8defb288a567a5e07b5ce25746ac623ae6c345411292423ef93ecd9289c8dbe4
SHA512

f7de813c158dae85a6b8e6aedee47c8d0304463709f031862d48b2c5dcd21a122de7a496aae62a8929429a15a6538fc6c59a822e84dc4ec0a903d7c4d478ab18
SSDEEP

6144:4X3lwFm7NLSVnadnCFG/Z11evfikqy60ZSqWioqZGnuYpFEeVW:4lwFmB2adnvR1C5qmSqHlGnh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8defb288a567a5e07b5ce25746ac623ae6c345411292423ef93ecd9289c8dbe4_NeikiAnalytics.exe

Files

8defb288a567a5e07b5ce25746ac623ae6c345411292423ef93ecd9289c8dbe4_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

c1e9e91a530cf330814e67cf88369993

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
GetSystemTimeAsFileTime
GetLastError
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
HeapFree
HeapAlloc
GetModuleHandleW
Sleep
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetStartupInfoA
EnterCriticalSection
LeaveCriticalSection
RaiseException
RtlUnwind
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
FatalAppExitA
VirtualAlloc
HeapReAlloc
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetCurrentThread
WriteFile
GetStdHandle
GetModuleFileNameA
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetHandleCount
GetFileType
CloseHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
LCMapStringA
MultiByteToWideChar
LCMapStringW
HeapSize
GetLocaleInfoW
GetLocaleInfoA
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
SetEndOfFile
GetProcessHeap
ReadFile
CompareStringA
CompareStringW
SetEnvironmentVariableA

Sections

.text
Size: 278KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c1e9e91a530cf330814e67cf88369993

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 278KB - Virtual size: 277KB

.rdata Size: 38KB - Virtual size: 38KB

.data Size: 7KB - Virtual size: 16KB

.text
Size: 278KB - Virtual size: 277KB

.rdata
Size: 38KB - Virtual size: 38KB

.data
Size: 7KB - Virtual size: 16KB