381e1679f6ccd5a7743551c1d687f0c8088dcc4f484765f3e6916ed885a81708_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

381e1679f6ccd5a7743551c1d687f0c8088dcc4f484765f3e6916ed885a81708_NeikiAnalytics.exe
Size

342KB
MD5

14f2c310e6a10dc34aea3b3c68458300
SHA1

b9be494eca2a4ab897e5dc6c221f7d4f86a43297
SHA256

381e1679f6ccd5a7743551c1d687f0c8088dcc4f484765f3e6916ed885a81708
SHA512

191aef96a4d096fd50eacc8fe7949742dfb2a0f5681770500d3f3ceddfdd85cc8fb63106581406bc80fe72e98865588e7caa1657d13df8cce3dc50f6efdbad52
SSDEEP

6144:zHhFFDDg7xQmqH8NLnT5z0gOBhEi4e1DKZQOXfcildSiDtYxoQ51HY3dQsKLuyIP:zRDg7edMTT5z0gOBhEip1DK5fcildSIB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
381e1679f6ccd5a7743551c1d687f0c8088dcc4f484765f3e6916ed885a81708_NeikiAnalytics.exe

Files

381e1679f6ccd5a7743551c1d687f0c8088dcc4f484765f3e6916ed885a81708_NeikiAnalytics.exe
.dll windows:6 windows x86 arch:x86

83cda76c5dd0c838e3b1814fc8545e8e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\MDVRPlayer\x86\AVILib.pdb

Imports

kernel32

MultiByteToWideChar
OutputDebugStringW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
InterlockedPushEntrySList
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
EncodePointer
RaiseException
SetEndOfFile
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
CloseHandle
SetFilePointerEx
CreateFileW
GetFileType
ReadFile
GetConsoleMode
ReadConsoleW
WriteFile
GetConsoleOutputCP
SetStdHandle
HeapAlloc
HeapFree
GetStdHandle
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetCurrentThread
HeapReAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetProcessHeap
SetConsoleCtrlHandler
FlushFileBuffers
GetFileSizeEx
GetStringTypeW
HeapSize
WriteConsoleW
DecodePointer

Exports

Exports

AR_BackwardIFrame
AR_CloseFile
AR_ForwardIFrame
AR_GetLastPos
AR_GetTotalTime
AR_Get_Total_Time
AR_OpenFile
AR_ReadFirstIFrame
AR_ReadFrame
AR_ReadHeader
AR_Seek_Begin
AR_Seek_End
AR_Seek_FirstIFrame
AR_Seek_IFrame
AR_TSIhead
AW_CloseFile
AW_OpenFile
AW_SetBit
AW_SetTotalTime
AW_Set_Audio
AW_Set_Video
AW_WriteFrame
AW_WriteHeader
AW_set_index

Sections

.text
Size: 287KB - Virtual size: 287KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83cda76c5dd0c838e3b1814fc8545e8e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 287KB - Virtual size: 287KB

.rdata Size: 41KB - Virtual size: 40KB

.data Size: 2KB - Virtual size: 11KB

.rsrc Size: 1024B - Virtual size: 792B

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 287KB - Virtual size: 287KB

.rdata
Size: 41KB - Virtual size: 40KB

.data
Size: 2KB - Virtual size: 11KB

.rsrc
Size: 1024B - Virtual size: 792B

.reloc
Size: 9KB - Virtual size: 9KB