0d7bd88d46ecfb070e5fa567ed6b7eb201a18ecb0e51cb7c9d697d8f9167e836_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

0d7bd88d46ecfb070e5fa567ed6b7eb201a18ecb0e51cb7c9d697d8f9167e836_NeikiAnalytics.exe
Size

40KB
MD5

61debf519bb9acf601cd5d9582148f70
SHA1

4207475e45ff95eda76d883e9f1c59577a66c2c2
SHA256

0d7bd88d46ecfb070e5fa567ed6b7eb201a18ecb0e51cb7c9d697d8f9167e836
SHA512

5d0badf2b8e98d9bfde51f3e122c54156efaceacd762a3f8424eddce8d0c6518f54789ac88b9d8c07a2d2a2982f192d002d688864c31f70277c1d92695aeeba6
SSDEEP

768:Ncl0Zy0QIvJGryzbtM1jb6o9Ws8z5bc8oWVAa+kDRKWDMgO:N86QMwryz5M1jb6er8oYA1k1KWDMgO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d7bd88d46ecfb070e5fa567ed6b7eb201a18ecb0e51cb7c9d697d8f9167e836_NeikiAnalytics.exe

Files

0d7bd88d46ecfb070e5fa567ed6b7eb201a18ecb0e51cb7c9d697d8f9167e836_NeikiAnalytics.exe
.dll windows:6 windows x64 arch:x64

0fa13ec15bfad9a9bb9b384ac21016a5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

sdl2

SDL_MapRGBA

python312

_Py_NotImplementedStruct
PyExc_AttributeError
PyExc_IndexError
PyExc_OverflowError
PyExc_RuntimeError
PyTuple_New
PyExc_ValueError
PyExc_DeprecationWarning
PySequence_GetItem
PyCapsule_Type
PySlice_Type
_Py_NoneStruct
PyFloat_AsDouble
PyFloat_FromDouble
PyBool_FromLong
PyLong_AsUnsignedLong
PyLong_AsLongAndOverflow
PySequence_Size
PyTuple_SetItem
PyObject_IsInstance
PySequence_Check
PyNumber_Float
PyNumber_AsSsize_t
PyIndex_Check
PyType_Ready
_PyObject_CallMethod_SizeT
PyImport_ImportModule
PyModule_Create2
PyModule_AddObject
_Py_BuildValue_SizeT
_PyArg_ParseTupleAndKeywords_SizeT
_PyArg_ParseTuple_SizeT
PyErr_WarnEx
PySlice_AdjustIndices
PySlice_Unpack
PyCapsule_GetPointer
PyCapsule_New
PyDict_GetItem
PySequence_Fast
PyTuple_Type
PyLong_AsLong
PyLong_FromUnsignedLong
PyLong_FromLong
PyErr_Format
PyErr_ExceptionMatches
PyErr_Clear
PyErr_Occurred
PyErr_SetString
PyUnicode_AsASCIIString
PyUnicode_AsUTF8AndSize
PyUnicode_FromFormat
PyUnicode_FromObject
PyBytes_AsString
_Py_Dealloc
PyObject_GenericSetAttr
PyObject_GenericGetAttr
PyObject_GetAttrString
PyExc_TypeError

vcruntime140

memset
__std_type_info_destroy_list
__C_specific_handler
memcpy

api-ms-win-crt-math-l1-1-0

ceil
floor
fmod
pow
round

api-ms-win-crt-string-l1-1-0

toupper
strcmp

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_cexit
_execute_onexit_table
_initialize_narrow_environment

kernel32

GetCurrentProcessId
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
RtlCaptureContext
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter

Exports

Exports

PyInit_color

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 284B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fa13ec15bfad9a9bb9b384ac21016a5

Headers

DLL Characteristics

File Characteristics

Imports

sdl2

python312

vcruntime140

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-runtime-l1-1-0

kernel32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 3KB

.pdata Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 284B

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 3KB

.pdata
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 284B