NEAS[.]02e2cd8d1fe4d5136ceb1a9f207907b0_JC[.]exe

General

Target

NEAS.02e2cd8d1fe4d5136ceb1a9f207907b0_JC.exe
Size

231KB
MD5

02e2cd8d1fe4d5136ceb1a9f207907b0
SHA1

d65449a43f4ebd560e12e4dc90480b098a0ca1af
SHA256

5dcbe729a5adedc6a1abb9251adbf02e9875293bc60eb5f54b338d059246a6af
SHA512

94f0b1372e4f6696d14dd69395873b1a0343df10e07c036255f74de1f8a9c1dfb970665d14d34f2e2e80c806e498336bf8266d0ce93b69720ed188fb3d2c843e
SSDEEP

3072:e46R07Cn6w0rGbzlRJOT6ryPdianR92JT+1G3F+LX/jPkP+8+tY8aDUyEZVk48M8:a1Fr01nv2o1GV+LXrPMaF7z8sI9Zk6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.02e2cd8d1fe4d5136ceb1a9f207907b0_JC.exe

Files

NEAS.02e2cd8d1fe4d5136ceb1a9f207907b0_JC.exe
.exe windows:4 windows x86

255b4ed2fc646f5e0bce7138304f0e69

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
GetSystemDirectoryA
Sleep
VirtualFreeEx
DuplicateHandle
RaiseException
UnlockFile
CloseHandle
SetFileAttributesA
GetTimeZoneInformation
GetProcAddress
LoadLibraryA
GetFileType
WaitForSingleObjectEx
WaitForSingleObject
SetCurrentDirectoryA
VirtualAllocEx
GetModuleFileNameA
GetCurrentThreadId
GlobalLock
CreateDirectoryA
WriteFileEx
SetFileTime
ExpandEnvironmentStringsA
GetSystemTimeAdjustment
LockFile
TlsFree
CreateThread
SetEvent
FileTimeToSystemTime
GetCurrentProcessId
GetTickCount
SetFilePointer
GetLocalTime
SleepEx
VirtualAlloc
GetCommandLineW
GetACP
LockResource
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetOEMCP
HeapAlloc
HeapReAlloc
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Sections

.text
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

255b4ed2fc646f5e0bce7138304f0e69

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.text Size: 214KB - Virtual size: 213KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 10KB - Virtual size: 19KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 214KB - Virtual size: 213KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 10KB - Virtual size: 19KB

.rsrc
Size: 2KB - Virtual size: 2KB