3e9ee0853f0d50fb5a4f8589b271a7ef6031c2df95b7ec633a0b98ec740c1a65_NeikiAnalytics[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

3e9ee0853f0d50fb5a4f8589b271a7ef6031c2df95b7ec633a0b98ec740c1a65_NeikiAnalytics.exe
Size

807KB
MD5

d3125d2b47b3ed12d126f0189a93ad80
SHA1

2805a12841bca1fbd33bfe77d300da0d4443f4e4
SHA256

3e9ee0853f0d50fb5a4f8589b271a7ef6031c2df95b7ec633a0b98ec740c1a65
SHA512

68cd6a7a4fceb4bea52984d9901c66d1e637dedb27c49aa08661d3c50625f7cc5539977ba345db10f91eaa167ab99f7c7c8dd8ee887be12072ba16ce2355cffa
SSDEEP

12288:lUuYeCnbVORxl+WWYuUX8Vd+UbFs+Pj6j7K5LUO1RQHplsvTuqilK:lxUtlYQrFs1jYUO1RQHQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e9ee0853f0d50fb5a4f8589b271a7ef6031c2df95b7ec633a0b98ec740c1a65_NeikiAnalytics.exe

Files

3e9ee0853f0d50fb5a4f8589b271a7ef6031c2df95b7ec633a0b98ec740c1a65_NeikiAnalytics.exe
.exe windows:4 windows x86 arch:x86

62469323f0a51923876593a3d225a80a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
ExitProcess
GetModuleFileNameA
MultiByteToWideChar
GetCurrentDirectoryA
SetCurrentDirectoryA
GetTickCount
MulDiv
GetProfileStringA
TerminateProcess
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
HeapReAlloc
HeapFree
InterlockedDecrement
InterlockedIncrement
HeapAlloc
MoveFileA
LeaveCriticalSection
FindFirstFileA
FindNextFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
InitializeCriticalSection
SetStdHandle
GetFileType
SetConsoleCtrlHandler
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
RtlUnwind
HeapDestroy
HeapCreate
UnlockFileEx
EnterCriticalSection
GlobalReAlloc
SetCommMask
WideCharToMultiByte
LCMapStringA
LCMapStringW
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
SetFilePointer
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
LockFileEx
TerminateThread
GetVersion
CreateThread
ClearCommError
Beep
Sleep
VirtualFree
GetCommModemStatus
ClearCommBreak
GetDriveTypeA
SetCommBreak
DeleteCriticalSection
SetCommTimeouts
SetupComm
CloseHandle
SetCommState
GetCommState
WaitCommEvent
EscapeCommFunction
FindResourceA
LoadResource
GetDiskFreeSpaceA
SetLocalTime
GetSystemDirectoryA
GetWindowsDirectoryA
GlobalSize
CreateNamedPipeA
CreateEventA
ConnectNamedPipe
GetOverlappedResult
ResetEvent
CreateFileA
DisconnectNamedPipe
ReadFile
WriteFile
FlushFileBuffers
LoadLibraryA
GetProcAddress
FreeLibrary
_lopen
GetLastError
_llseek
_lread
GlobalAlloc
GlobalLock
_lclose
GlobalMemoryStatus
GlobalUnlock
GlobalFree
GetLocalTime
CreateProcessA
GetExitCodeProcess
VirtualAlloc
DeleteFileA
GetCurrentProcessId
RemoveDirectoryA
CreateDirectoryA
GetFullPathNameA
SetEnvironmentVariableW

user32

MoveWindow
GetActiveWindow
CreateDialogIndirectParamA
DialogBoxIndirectParamA
GetDialogBaseUnits
SendMessageA
DrawTextA
FillRect
InvalidateRect
InvalidateRgn
ScrollDC
PtInRect
CallWindowProcA
UpdateWindow
GetScrollInfo
SetScrollInfo
SetRect
GetTabbedTextExtentA
InvertRect
TabbedTextOutA
GetCapture
ReleaseDC
MessageBoxA
GetWindowDC
GetParent
IsDialogMessageA
CreateDialogParamA
EndDialog
GetWindowRect
GetClientRect
ReleaseCapture
SetCapture
GetSystemMetrics
GetMenuState
GetSubMenu
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenu
AdjustWindowRect
BringWindowToTop
CreateMenu
CreatePopupMenu
AppendMenuA
DestroyMenu
KillTimer
SetTimer
GetWindowLongA
SetWindowLongA
GetFocus
SetFocus
GetUpdateRect
BeginPaint
EndPaint
SetCursor
DefWindowProcA
LoadAcceleratorsA
LoadCursorA
RegisterClassExA
GetDesktopWindow
GetDC
CreateWindowExA
DestroyWindow
PeekMessageA
TranslateMessage
TranslateAcceleratorA
DispatchMessageA
SetDlgItemTextA
GetDlgItem
ShowWindow
PostMessageA
OpenClipboard
GetClipboardData
CloseClipboard
EmptyClipboard
SetClipboardData
HideCaret
CreateCaret
SetCaretPos
ShowCaret
DestroyCaret
GetSysColor
EnableWindow
SetWindowTextA
GetWindowTextA
SetMenu
DrawMenuBar
GetKeyState
IsIconic

gdi32

GetNearestColor
DeleteObject
ExtFloodFill
GetPixel
SelectObject
CreateSolidBrush
DeleteDC
GetDIBits
RealizePalette
SelectPalette
CreatePalette
GetSystemPaletteEntries
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
SetDIBits
GetDeviceCaps
SetBitmapBits
StretchBlt
StretchDIBits
GetStockObject
GetTextMetricsA
EndDoc
CreateDCA
SetBkMode
GetTextExtentPointA
Polygon
LineTo
Arc
Ellipse
Pie
Polyline
Rectangle
RoundRect
MoveToEx
GetRgnBox
CreateRectRgn
SetBkColor
SelectClipRgn
SetROP2
CreatePenIndirect
CreateBrushIndirect
SetTextColor
SetPaletteEntries
ResizePalette
EnumFontFamiliesExA
GetClipBox
EndPage
GetPaletteEntries
StartDocA
StartPage
SetAbortProc
CreateFontIndirectA

comdlg32

ChooseFontA
CommDlgExtendedError
PrintDlgA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

OpenPrinterA
ClosePrinter

Sections

.text
Size: 472KB - Virtual size: 470KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62469323f0a51923876593a3d225a80a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

Sections

.text Size: 472KB - Virtual size: 470KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 40KB - Virtual size: 102KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 472KB - Virtual size: 470KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 40KB - Virtual size: 102KB

.rsrc
Size: 16KB - Virtual size: 12KB