b7e343b84f8143de4b87001f63b856f29085ad0d2875a44dd2d062828af2cc0d_NeikiAnalytics[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

b7e343b84f8143de4b87001f63b856f29085ad0d2875a44dd2d062828af2cc0d_NeikiAnalytics.exe
Size

146KB
MD5

ef00aba4d5dee3bbaf914a001d0ad0e0
SHA1

e206921bd2e777cb2a6a09d9578f47119f827385
SHA256

b7e343b84f8143de4b87001f63b856f29085ad0d2875a44dd2d062828af2cc0d
SHA512

581530c7e0cdbdc11408e8f6ca660383f50b0f5bf01d9ce848bf0aabaacadf62b04edc98010804b2975ebae9ae0f2b819f162cf6f61f150d14c319db188e07f6
SSDEEP

3072:O8PO5lva7T8eT4bTTTTT4TTTTWTTTTYTTTTtRSeD6lTTTTETTTTTTTTTTTTaTTTn:O8PO5lvaemYeD6jqTWTCIVUOKY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7e343b84f8143de4b87001f63b856f29085ad0d2875a44dd2d062828af2cc0d_NeikiAnalytics.exe

Files

b7e343b84f8143de4b87001f63b856f29085ad0d2875a44dd2d062828af2cc0d_NeikiAnalytics.exe
.dll windows:6 windows x86 arch:x86

94aa7a8d39c5f4449ede18376824b2d9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

jetcam

gen_nc_laser_tech_table
gen_nc_d_o_u
gen_nc_n
gen_nc_eob
gen_nc_g
gen_nc_m
gen_nc_x_y
gen_nc_i_j
gen_nc_feedrate
gen_nc_laser_enable
gen_nc_laser_on
gen_nc_laser_off
gen_nc_ni_off
gen_nc_hit_off
prerr
round_num
cad_atoui
calc_arc_da
recalc_circle_centre_r
gen_nc_path_collision
pp_wait_for_key
kill_extra_data_in_nc_buffer
flush_nc_buffer
remove_zeros
remove_trailing_point
aaa_px1_set_la_off_comp_ok
pp_la_parms
pp_d_o_u
pp_n
pp_eob
pp_g
pp_m
pp_x_y
pp_tool
pp_index
pp_i_j
pp_let
pp_feedrate
pp_hit_on
pp_ni_on
pp_laser_enable
pp_laser_disable
pp_laser_on
pp_laser_off
pp_laser_lift_head
pp_ni_off
pp_hit_off
pp_movement
pp_movement_kind
pp_hit
pp_cut
pp_nibble_l
pp_nibble_c
pp_nibble_a
pp_grid
pp_bolt_hole_circle
pp_laser_line
pp_laser_off_sheet_line
pp_laser_arc
pp_laser_microweld
pp_laser_tech_table
pp_sheet_stop
pp_sheet_trap_door
pp_sheet_tab_break
pp_sheet_nc
pp_sheet_feedrate
pp_sheet_dwell
pp_sheet_move
pp_sheet_reposition
pp_main_questions
pp_main
pp_sub_call
pp_sub_begin
pp_sub_end
c_post_processor
c_mch_units
c_nc_buff
c_nc_x
c_nc_y
c_nc_g
c_nc_m
c_nc_laser_ttp1
c_nc_la_pass
c_repos_y
c_nc_dummy_sub_call
c_nc_laser_off_comp
c_nc_dummy_post_pass
c_nc_laser_on
c_nc_feedrate
c_nc_absolute
c_nc_block
c_initial_feedrate
c_nc_laser_head_down
c_nc_abs_sub_x
c_nc_abs_sub_y
gen_nc_let
gen_nc_laser_disable
cmsg
check_laser_tool
init_pp_variables
gen_nc_sims
gen_nc_output_all_subs
r_t_e_init_vars
pp_auto_processing_status
c_curr_sheet
c_nc_use_program_number
c_program_number
c_line_number_inc
c_n_prog_runs
c_nc_nes_name
c_bystro_sheet_detect

vcruntime140

memset
_except_handler4_common
__std_type_info_destroy_list

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

api-ms-win-crt-math-l1-1-0

_libm_sse2_sqrt_precise

api-ms-win-crt-heap-l1-1-0

free
malloc

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_execute_onexit_table
_crt_at_quick_exit
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_register_onexit_function
_cexit
terminate

kernel32

SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
UnhandledExceptionFilter

Exports

Exports

post_dll_set_pp_vars

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

94aa7a8d39c5f4449ede18376824b2d9

Headers

File Characteristics

Imports

jetcam

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

kernel32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 980B

.gfids Size: 512B - Virtual size: 28B

.rsrc Size: 119KB - Virtual size: 119KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 980B

.gfids
Size: 512B - Virtual size: 28B

.rsrc
Size: 119KB - Virtual size: 119KB

.reloc
Size: 2KB - Virtual size: 2KB