b9c6fae2cc4909ef9bba88da8d6a7767816a1f46d5ef0bc1fcb38708470c7829_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

b9c6fae2cc4909ef9bba88da8d6a7767816a1f46d5ef0bc1fcb38708470c7829_NeikiAnalytics.exe
Size

33KB
MD5

926e69153190d2d91388be03ed6bf190
SHA1

00487f14d8ed970280eb63fafbdcdda77dbc0aa3
SHA256

b9c6fae2cc4909ef9bba88da8d6a7767816a1f46d5ef0bc1fcb38708470c7829
SHA512

0dd078dc72f2c68b127a59d9f6973ddd9d3f4d7b07dac85e30c50b5e41cc0451b3d5fb97eef7c9e9d1ed0e05ed9827949e6c9e765d1b9df67cd6ef024a319b6c
SSDEEP

768:5RJv9y3QAmb+cfAbhR8kqDKdp5tTGEnettsx:5RJv9kQ0cfAbhiPDYp5tf2sx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9c6fae2cc4909ef9bba88da8d6a7767816a1f46d5ef0bc1fcb38708470c7829_NeikiAnalytics.exe

Files

b9c6fae2cc4909ef9bba88da8d6a7767816a1f46d5ef0bc1fcb38708470c7829_NeikiAnalytics.exe
.dll regsvr32 windows:4 windows x86 arch:x86

7e2c6ae696157cdebb683a39fd5aae2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetDateFormatA
GetTimeFormatA
OutputDebugStringA
GetTempPathA
GetFileAttributesA
DeleteFileA
GetTickCount
SetCurrentDirectoryA
EnterCriticalSection
GetProcAddress
LoadLibraryA
DisableThreadLibraryCalls
DeleteCriticalSection
lstrlenA
GetModuleFileNameA
InitializeCriticalSection
lstrlenW
lstrcpynA
MultiByteToWideChar
WideCharToMultiByte
LeaveCriticalSection
GetCurrentThreadId
lstrcpyA
HeapDestroy
FreeLibrary
lstrcatA

user32

GetDesktopWindow
RegisterClassA
SetParent
LoadCursorA
wvsprintfA
wsprintfA
RegisterClassExA
SetWindowLongA
GetWindowLongA
SetWindowPos
DestroyWindow
ShowWindow
GetParent
DefWindowProcA
GetClientRect
SetTimer
CallWindowProcA
KillTimer
MoveWindow
IsWindow
CharNextA
CreateWindowExA
GetClassInfoExA
SendMessageA

oleaut32

RegisterTypeLi
LoadTypeLi

msvcrt

memcpy
??3@YAXPAX@Z
??2@YAPAXI@Z
strcat
memset
free
strrchr
_purecall
strcpy
_splitpath
strstr
abs
memcmp
vsprintf
_initterm
_adjust_fdiv
malloc

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
UCFCreateInstance
UCFFreeSnapShotResource
UCFGetModuleVersion

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e2c6ae696157cdebb683a39fd5aae2c

Headers

File Characteristics

Imports

kernel32

user32

oleaut32

msvcrt

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 2KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 2KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB