91aafb84fd682c09a5882d83a833adc2af07d3a2a6662389fa498949a3714bb8_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

91aafb84fd682c09a5882d83a833adc2af07d3a2a6662389fa498949a3714bb8_NeikiAnalytics.exe
Size

2.2MB
MD5

987d06efcdcce86bdf518480e0586e80
SHA1

57d72ebf82ad161b8cd370fcc43bdf62e832d66e
SHA256

91aafb84fd682c09a5882d83a833adc2af07d3a2a6662389fa498949a3714bb8
SHA512

54a7a98c57cdd292e88eac8290c337c491a1a187633e74733402cabba80baedc92a0ed94eba64a6b5f1a5f3aed618bc6e5bef276c0d72fbd3a8f4103acafe08a
SSDEEP

49152:ydoxBSytBtI9+N3B8O17b9vLAOJ72vCMfoLGojCmN61Vjzd6eJr0zI:y6bjeOFxJCmN61Vjz8euzI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
91aafb84fd682c09a5882d83a833adc2af07d3a2a6662389fa498949a3714bb8_NeikiAnalytics.exe

Files

91aafb84fd682c09a5882d83a833adc2af07d3a2a6662389fa498949a3714bb8_NeikiAnalytics.exe
.exe windows:5 windows x86 arch:x86

f1c1ed4072a45d7fa1298a17767de5b6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Work\AGS\AGSSource\GIT\GITHUB-AGS\ags\Solutions\.build\Release\acwin.pdb

Imports

quartz

AMGetErrorTextA

winmm

joyGetPosEx
joyGetDevCapsA
joyGetNumDevs
waveOutClose
waveOutWrite
waveOutPause
waveOutGetVolume
waveOutGetPosition
waveOutRestart
waveOutReset
waveOutSetVolume
waveOutUnprepareHeader
waveOutOpen
waveOutPrepareHeader
midiInStop
midiOutGetNumDevs
midiInClose
midiOutSetVolume
midiInReset
midiOutGetDevCapsA
midiInGetDevCapsA
midiInStart
midiInOpen
midiOutClose
midiOutShortMsg
midiOutOpen
midiOutReset
midiInGetNumDevs
midiOutGetVolume
timeEndPeriod
timeBeginPeriod
mciGetErrorStringA
mciSendStringA
timeGetTime

shlwapi

SHSetValueA
SHDeleteKeyA
PathRemoveFileSpecA

opengl32

glMatrixMode
glViewport
glVertexPointer
glReadPixels
glTexParameteri
wglMakeCurrent
glColor4f
glDrawArrays
glShadeModel
glGetString
glDisable
glTexImage2D
glBindTexture
glScalef
glScissor
glOrtho
glTexParameterf
glTexSubImage2D
glClearColor
glClear
glEnableClientState
glTranslatef
glTexCoordPointer
glEnable
wglGetProcAddress
glGenTextures
glLoadIdentity
glBlendFunc
glFinish
glDisableClientState
wglCreateContext
glGetIntegerv
glDeleteTextures

kernel32

GetVersion
DuplicateHandle
ResetEvent
GetThreadPriority
QueryPerformanceFrequency
GetVersionExA
PulseEvent
CreateFileW
FindFirstFileW
FindResourceA
FreeLibrary
LoadResource
SizeofResource
LeaveCriticalSection
GetProcAddress
EnterCriticalSection
LoadLibraryA
LockResource
GetModuleHandleA
OutputDebugStringA
WaitForSingleObject
CreateMutexA
ReleaseMutex
CloseHandle
ResumeThread
CreateThread
MultiByteToWideChar
lstrlenA
GetCurrentProcessId
CreateFileA
PeekNamedPipe
WriteFile
ReadFile
GetCommandLineW
WideCharToMultiByte
GetShortPathNameW
LocalFree
Sleep
GetModuleFileNameA
GetDiskFreeSpaceExA
GetLastError
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentProcess
LoadLibraryW
GetCurrentThreadId
GetTempPathA
SetEvent
CreateEventA
InitializeCriticalSection
SetThreadPriority
WaitForMultipleObjects
DeleteCriticalSection
FindNextFileW
GetSystemTimeAsFileTime
HeapAlloc
HeapReAlloc
MoveFileA
GetDriveTypeA
GetFullPathNameA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
ExitProcess
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
FindClose
ExitThread
RtlUnwind
GetCommandLineA
GetStartupInfoA
HeapCreate
VirtualFree
VirtualAlloc
RaiseException
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
GetStdHandle
HeapSize
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetCurrentDirectoryA
SetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetHandleCount
GetFileType
GetFileAttributesA
SetFilePointer
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
GetExitCodeProcess
CreateProcessA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
GetProcessHeap
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetDriveTypeW
GetFullPathNameW
DeleteFileW
DeleteFileA
CreateDirectoryA
HeapFree

user32

GetClientRect
GetDC
EndPaint
SetWindowLongA
GetWindowLongA
ClientToScreen
DestroyWindow
RegisterWindowMessageA
GetMessageA
SetTimer
BeginPaint
PostQuitMessage
IsIconic
KillTimer
GetWindowInfo
CreateWindowExA
PeekMessageA
DefWindowProcA
SetWindowPos
GetActiveWindow
DispatchMessageA
SystemParametersInfoA
UpdateWindow
CallWindowProcA
AdjustWindowRect
RegisterClassA
SetCursor
SetCursorPos
SetForegroundWindow
GetCursorPos
GetSystemMetrics
LoadCursorA
GetKeyNameTextA
ToAscii
GetKeyboardState
PostMessageA
InvalidateRect
GetForegroundWindow
CreateIconIndirect
DestroyIcon
GetSystemMenu
ReleaseDC
EnableMenuItem
RedrawWindow
MessageBoxW
SetWindowTextA
GetClassLongA
GetWindowRect
MapDialogRect
SendDlgItemMessageA
LoadIconA
SetFocus
SendMessageA
SetClassLongA
GetDlgItem
EndDialog
ShowWindow
EnableWindow
DialogBoxParamA
MoveWindow
MapVirtualKeyA
VkKeyScanA
MessageBoxA
MsgWaitForMultipleObjects

gdi32

SelectPalette
SetPaletteEntries
DeleteDC
SetPixel
CreateBitmap
StretchDIBits
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
SetPixelFormat
ChoosePixelFormat
RealizePalette
SwapBuffers
CreatePalette
GetSystemPaletteEntries
BitBlt
DeleteObject
CreateSolidBrush

advapi32

RegSetValueA

shell32

CommandLineToArgvW
SHChangeNotify
SHGetSpecialFolderPathW
SHGetSpecialFolderPathA

ole32

CoUninitialize
GetRunningObjectTable
CoTaskMemFree
IIDFromString
CoCreateInstance
CoInitialize

oleaut32

SysAllocString
SysFreeString

ddraw

DirectDrawCreate

dinput

DirectInputCreateA

dsound

ord1
ord2

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 235KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 123KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1c1ed4072a45d7fa1298a17767de5b6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

quartz

winmm

shlwapi

opengl32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

ddraw

dinput

dsound

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 235KB - Virtual size: 235KB

.data Size: 123KB - Virtual size: 1.6MB

.rsrc Size: 39KB - Virtual size: 39KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 235KB - Virtual size: 235KB

.data
Size: 123KB - Virtual size: 1.6MB

.rsrc
Size: 39KB - Virtual size: 39KB