NEAS[.]097413ca0296c2aa6546c4a6423be270_JC[.]exe | Triage

Sharing

General

Target

NEAS.097413ca0296c2aa6546c4a6423be270_JC.exe
Size

23KB
MD5

097413ca0296c2aa6546c4a6423be270
SHA1

9af568e30358e3d67fad5bd1a9eb47addf413d33
SHA256

b8849211b47e779bda9d5a7ad785e05bad1e9408a19c41e77a3e68e572b0db0c
SHA512

10932af0535de2a5815cd4986b0aafba2b50a5f20c7e853a9f811fc7024c0978fb390eb655e1725a15f0ac53c93f93b580e0edf7ed9ecadcfdb327f4a0b95c95
SSDEEP

384:OlEhuYwzOQpf2XTM+L8X/SPFDNuDlg0NYVCmONEhU5WD2blzCm:phuYmOOi5LKSpNuDlVmONryIlzCm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.097413ca0296c2aa6546c4a6423be270_JC.exe

Files

NEAS.097413ca0296c2aa6546c4a6423be270_JC.exe
.exe windows:4 windows x86

f6d3b47abe7b0b2ed1a0851cadc8d405

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
ShowWindow
DefWindowProcW
LoadIconW
LoadCursorW
DispatchMessageW
TranslateMessage
GetMessageW
CreateWindowExW
RegisterClassExW
PostMessageA

kernel32

GetModuleHandleW
FindClose
FindFirstFileW
DeleteFileW
CreateFileW
FindNextFileW
SetFilePointer
ReadFile
GetStartupInfoA

gdi32

CreatePen

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ