b976b895c4815dab1ca5685bd4af0b302b9249ef65e76ae1da575af85c73df52_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

b976b895c4815dab1ca5685bd4af0b302b9249ef65e76ae1da575af85c73df52_NeikiAnalytics.exe
Size

1.1MB
MD5

9d179102a8280836b51f4074ce8ee1d0
SHA1

794d7c079b586a2fe30415e4b7960cb50c3613a8
SHA256

b976b895c4815dab1ca5685bd4af0b302b9249ef65e76ae1da575af85c73df52
SHA512

d1137c2932632e0ebed3230ab6f666e40ddde2c4621f7f18ba253524f2a623747db248f3878185e0b0ec573f26de64505267819d066e37044ac03e0539d9f2d8
SSDEEP

24576:O89K7k99LoXymiA+jOVr0Q8lN79P/GDD5ELKQO7vsUV3XplP9G1:ck99kXymiA+qVr0NH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b976b895c4815dab1ca5685bd4af0b302b9249ef65e76ae1da575af85c73df52_NeikiAnalytics.exe

Files

b976b895c4815dab1ca5685bd4af0b302b9249ef65e76ae1da575af85c73df52_NeikiAnalytics.exe
.dll windows:4 windows x86 arch:x86

7e23ba051c4340850c8472ba0595fd20

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFindAtomW
GlobalAddAtomW
FreeResource
lstrlenW
InterlockedExchange
CompareStringA
lstrcmpA
EnumResourceLanguagesW
GetModuleFileNameW
ConvertDefaultLocale
GetCurrentThread
GlobalDeleteAtom
LocalFree
FormatMessageW
CopyFileW
GlobalGetAtomNameW
GetFileAttributesW
SetFileTime
GetFileTime
GetTempFileNameW
GetFullPathNameW
GetDiskFreeSpaceW
GetModuleHandleA
lstrlenA
GlobalReAlloc
GetProfileIntW
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
SetErrorMode
GlobalFlags
MoveFileW
DeleteFileW
GetStringTypeExW
lstrcmpiW
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
FindFirstFileW
GetVolumeInformationW
GetShortPathNameW
CreateFileW
FileTimeToSystemTime
SystemTimeToFileTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
HeapAlloc
HeapFree
GetCommandLineA
GetProcessHeap
RtlUnwind
GetSystemTimeAsFileTime
RaiseException
ExitProcess
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
VirtualAlloc
Sleep
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStdHandle
GetModuleFileNameA
VirtualFree
HeapDestroy
HeapCreate
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetTimeFormatA
GetDateFormatA
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
FreeLibrary
CompareStringW
LoadLibraryA
GetLastError
SetLastError
lstrcmpW
GetVersionExA
GetThreadLocale
InterlockedDecrement
InterlockedIncrement
GlobalFree
GetNumberFormatW
GetVersion
GetLocaleInfoW
GlobalAlloc
GlobalSize
GetCurrentProcess
SetProcessWorkingSetSize
GetCurrentProcessId
GetCurrentThreadId
LoadLibraryW
GetPrivateProfileStringW
GetPrivateProfileIntW
UnmapViewOfFile
CloseHandle
MapViewOfFile
CreateFileMappingW
MulDiv
GetVersionExW
WideCharToMultiByte
MultiByteToWideChar
GlobalUnlock
GlobalLock
GetTickCount
FindResourceW
LoadResource
LockResource
SizeofResource
GetProcAddress
WritePrivateProfileStringW
GetModuleHandleW

user32

ReuseDDElParam
UnpackDDElParam
SetDlgItemTextW
IsDialogMessageW
SetWindowTextW
MoveWindow
ScrollWindowEx
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
GetWindowDC
BeginPaint
EndPaint
DrawIcon
SetWindowRgn
RedrawWindow
DefMDIChildProcW
DrawMenuBar
WindowFromPoint
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamW
GetTabbedTextExtentA
GetSysColorBrush
GetMenuItemInfoW
DestroyIcon
CharUpperW
SetParent
CopyAcceleratorTableW
CreateMenu
PostThreadMessageW
GetDCEx
LockWindowUpdate
UnregisterClassA
ShowOwnedPopups
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
GetMessageW
GetActiveWindow
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
GetDlgItem
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
LoadMenuW
SetForegroundWindow
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxW
GetClassInfoExW
AdjustWindowRectEx
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowLongW
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetWindow
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
GetDesktopWindow
FindWindowW
SystemParametersInfoW
ShowCaret
ReleaseDC
GetDC
MapWindowPoints
MessageBeep
SetCursor
DestroyCursor
ValidateRect
IsZoomed
ChildWindowFromPoint
InflateRect
DrawEdge
WindowFromDC
PostQuitMessage
wsprintfW
IsIconic
SetClipboardData
GetClipboardData
IsClipboardFormatAvailable
RegisterClipboardFormatW
GetTopWindow
EqualRect
IsWindowVisible
SetRectEmpty
SetRect
IsRectEmpty
DefWindowProcW
GetClassInfoW
IsWindowEnabled
DestroyMenu
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
BringWindowToTop
GetCursorPos
PeekMessageW
SetFocus
RegisterWindowMessageW
LoadBitmapW
GetOpenClipboardWindow
DrawStateW
GetMessagePos
UnionRect
PtInRect
DrawFocusRect
IntersectRect
HideCaret
IsChild
GetKeyState
GetParent
SetCapture
SetTimer
PostMessageW
SetActiveWindow
EndDeferWindowPos
BeginDeferWindowPos
GetDlgCtrlID
CreateWindowExW
DeferWindowPos
GetSysColor
GetWindowRect
FillRect
LoadCursorW
GetClientRect
SetMenu
ShowWindow
TranslateAcceleratorW
GetWindowThreadProcessId
GetScrollPos
InvertRect
OpenClipboard
EmptyClipboard
CloseClipboard
UpdateWindow
RegisterClassW
SetWindowLongW
ShowScrollBar
CallWindowProcW
UnregisterClassW
OffsetRect
EnableWindow
SendMessageW
GetCapture
ReleaseCapture
ClientToScreen
InvalidateRect
ScreenToClient
CopyRect
KillTimer
GetFocus
IsWindow
TranslateMessage
DispatchMessageW
GetSystemMetrics
ScrollWindow

gdi32

Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
ScaleViewportExtEx
SetWindowOrgEx
GetTextColor
SetViewportExtEx
SetWindowExtEx
SetMapMode
CreatePen
SetBrushOrgEx
StretchBlt
GetStockObject
DeleteDC
EnumFontFamiliesW
EnumFontFamiliesExW
CreateICW
GetViewportExtEx
GetWindowExtEx
CreatePenIndirect
ExtCreatePen
CreateBrushIndirect
GetTextAlign
DeleteObject
GetClipBox
SetTextColor
SetBkColor
CopyMetaFileW
CreateDCW
GetViewportOrgEx
Rectangle
CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode
ExtTextOutW
SetROP2
SetStretchBltMode
TextOutW
RectVisible
PtVisible
StartDocW
GetPixel
CreateRectRgn
SelectClipRgn
GetWindowOrgEx
GetTextExtentPoint32A
GetTextFaceW
GetStretchBltMode
GetROP2
GetPolyFillMode
GetBkMode
GetNearestColor
GetBkColor
CreateSolidBrush
GetTextMetricsW
GetTextExtentPoint32W
GetDeviceCaps
CreateCompatibleDC
PatBlt
GetObjectW
DPtoLP
StretchDIBits
CreateBitmap
CreateCompatibleBitmap
GetMapMode
BitBlt
SetPixel
SetTextAlign
GetCharWidthW
CombineRgn
SetRectRgn
ExcludeClipRect
IntersectClipRect
LineTo
SetPolyFillMode
CreateFontIndirectW
EndDoc
AbortDoc
SetAbortProc
EndPage
StartPage
Ellipse
ScaleWindowExtEx
GetCurrentPositionEx
CreatePatternBrush
CreateEllipticRgn
LPtoDP
MoveToEx

advapi32

RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegCreateKeyW
RegSetValueW
RegOpenKeyW
RegEnumKeyW
RegQueryValueW
SetFileSecurityW
GetFileSecurityW

ole32

DoDragDrop
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
OleDestroyMenuDescriptor
CreateStreamOnHGlobal
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes

oleaut32

SysFreeString
VariantInit
VarDateFromStr
VarR8FromStr
VarBstrFromDate
VarUdateFromDate
VariantClear
VariantChangeType

comctl32

ord17

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

winspool.drv

DocumentPropertiesW
OpenPrinterW
GetJobW
ClosePrinter

comdlg32

GetFileTitleW

shell32

SHGetFileInfoW
ExtractIconW
DragQueryFileW
DragFinish

Exports

Exports

PDGRID_Init
PDGRID_PreTranslateMessage
PDGRID_SGridSetFontChanged

Sections

.text
Size: 716KB - Virtual size: 715KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 188KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e23ba051c4340850c8472ba0595fd20

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

comctl32

shlwapi

winspool.drv

comdlg32

shell32

Exports

Exports

Sections

.text Size: 716KB - Virtual size: 715KB

.rdata Size: 188KB - Virtual size: 185KB

.data Size: 20KB - Virtual size: 52KB

.rsrc Size: 96KB - Virtual size: 93KB

.reloc Size: 84KB - Virtual size: 80KB

.text
Size: 716KB - Virtual size: 715KB

.rdata
Size: 188KB - Virtual size: 185KB

.data
Size: 20KB - Virtual size: 52KB

.rsrc
Size: 96KB - Virtual size: 93KB

.reloc
Size: 84KB - Virtual size: 80KB