121bc2ccb4d7bd6be112faf6ea482602f6dd210f7fbd481f6eb01b9b208c3a00_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

121bc2ccb4d7bd6be112faf6ea482602f6dd210f7fbd481f6eb01b9b208c3a00_NeikiAnalytics.exe
Size

296KB
MD5

dae2dff105cba9dd9f95ae75b8708010
SHA1

5ef41bea82a1b4e5cf54c8cfdb1606bfbbfe7a94
SHA256

121bc2ccb4d7bd6be112faf6ea482602f6dd210f7fbd481f6eb01b9b208c3a00
SHA512

6cb8a70f5c5bd595e0e32161f00b17955bcbc63976c85ee5ca95add85d52852aa9fbb2212a59d75125f0be51cbbe5f16f336a0acb72cc17225c1883b2e2eacaa
SSDEEP

6144:/1ZAB3G59H8B4bV/yXG1XLAqJaVloA03mls0Oa+mFplvfc51K3egJQ7DdS+dctSJ:/1ZAB3G59H8B4bV/yXG1XLTJaVloA03l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
121bc2ccb4d7bd6be112faf6ea482602f6dd210f7fbd481f6eb01b9b208c3a00_NeikiAnalytics.exe

Files

121bc2ccb4d7bd6be112faf6ea482602f6dd210f7fbd481f6eb01b9b208c3a00_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

44fab79f588ca5ab97bf73bffb278bc8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PeekMessageA
GetMessageA
TranslateMessage
SendMessageA
wsprintfA
MessageBoxA
SetClipboardData
EmptyClipboard
CloseClipboard
GetClipboardData
OpenClipboard
ClientToScreen
GetClientRect
IsWindowVisible
IsIconic
EnumDisplaySettingsA
DrawIconEx
FillRect
LoadImageA
IsWindow
ReleaseDC
PrintWindow
GetDC
GetWindowRect
GetInputState
MsgWaitForMultipleObjects
DispatchMessageA

kernel32

GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
DeleteCriticalSection
GetFileType
CreateWaitableTimerA
SetWaitableTimer
CloseHandle
RtlMoveMemory
GetProcessHeap
HeapAlloc
RtlFillMemory
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpyn
GlobalFree
MultiByteToWideChar
lstrlenW
GetTempPathW
WideCharToMultiByte
GetModuleHandleA
ExitProcess
HeapReAlloc
GetOEMCP
IsBadReadPtr
GetTickCount
WriteFile
CreateFileA
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
LCMapStringA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
VirtualAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GlobalSize
GetACP
FlushFileBuffers
RaiseException
GetStdHandle
SetStdHandle
LCMapStringW
InterlockedIncrement
InterlockedDecrement
GetStringTypeA
GetStringTypeW
HeapFree
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetVersion
GetCommandLineA
GetStartupInfoA
SetFilePointer

gdi32

SetPixelV
GetPixel
CreateSolidBrush
GdiFlush
BitBlt
CreateDIBSection
GetDIBits
GetObjectA
DeleteDC
DeleteObject
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
SetDIBitsToDevice

gdiplus

GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromHBITMAP
GdipSaveImageToStream
GdipDisposeImage
GdiplusShutdown
GdiplusStartup

ole32

GetHGlobalFromStream
CLSIDFromString
CoUninitialize
CreateStreamOnHGlobal
CoInitialize

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

SHGetSpecialFolderPathW

oleaut32

OleLoadPicture
VariantTimeToSystemTime

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

44fab79f588ca5ab97bf73bffb278bc8

Headers

File Characteristics

Imports

user32

kernel32

gdi32

gdiplus

ole32

advapi32

shell32

oleaut32

Sections

.text Size: 116KB - Virtual size: 116KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 152KB - Virtual size: 204KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 116KB - Virtual size: 116KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 152KB - Virtual size: 204KB

.rsrc
Size: 16KB - Virtual size: 12KB