NEAS[.]0f4a3e7a3e113540d8429d7c712ca860_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.0f4a3e7a3e113540d8429d7c712ca860_JC.exe
Size

88KB
MD5

0f4a3e7a3e113540d8429d7c712ca860
SHA1

fbd4b08b6be203c07dc13fe690ac46046e7e9127
SHA256

1b51dc453dcb63af86556a7c1f0c347bef6ef4cc4f1fc6053ed6448bb7a3456e
SHA512

e7d096c424f635b92217bd0ae1d20f96a0135450b1324be285ff8e568b62bfab032ef02cbcf6e4b27349b285f6ff25ee17664548d0bd38f17b106c29120db693
SSDEEP

1536:obDXDJ3wapiPJqOctgkHKzWXBlCTAZOgySZthYONwKHcPSxJtOR:oXX1P0qOqHMqBcycSZfwKHcPS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.0f4a3e7a3e113540d8429d7c712ca860_JC.exe

Files

NEAS.0f4a3e7a3e113540d8429d7c712ca860_JC.exe
.exe windows:4 windows x86

031c4e277e3e3a64b2cf4c9f8974a9b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextA
LoadMenuA
CopyIcon
GetFocus
CopyRect
DrawTextA
GetCursor
GetDlgItem
AppendMenuW
GetWindowTextLengthA
AppendMenuA
InsertMenuA
GetDC
CreateIcon
BeginPaint
GetMenu
InsertMenuA
IsMenu
GetWindowTextA
DrawIconEx
GetDlgItem
LoadCursorA
AppendMenuA
GetCursor
AlignRects
DialogBoxParamA
AppendMenuW
BeginPaint
CopyImage
InsertMenuA
CopyIcon
CloseWindow
GetMenu
CreateIcon
GetDlgItem
GetWindowTextLengthA
AppendMenuW
DrawIconEx
LoadMenuA
GetWindowTextA
IsMenu
DrawTextA
GetCursor
DialogBoxParamA

kernel32

AddAtomA
GetFileType
FatalExit
GetFileTime
OpenFile
ExitThread
GetLastError
DeleteFileW
OpenFileMappingA
CreateDirectoryA
GetCPInfo
FindAtomW
ExitProcess
DeleteFileA
CopyFileExA
CopyFileExW
DeleteAtom
GetPriorityClass
FindAtomA
FlushFileBuffers
CopyFileExA
WriteFile
GetCPInfo
FindClose
AddAtomA
ExitThread
GetLastError
OpenFile
GetLocalTime
GetFileTime
AddAtomW
GetPriorityClass
GetCommandLineA
OpenFileMappingA
CreateDirectoryA
FreeResource
GetLocalTime
FlushFileBuffers
ExitProcess
DeleteAtom
GetCommandLineA
AddAtomW
CopyFileExW
ExitThread
GetStdHandle
FatalExit
GetLastError
CreateDirectoryA
FindClose
OpenFileMappingA
DeleteFileA
WriteFile
GetLocalTime
OpenFile
CreateDirectoryA
GetFileType
DeleteFileW
ReadFile
DeleteAtom
FlushFileBuffers
CopyFileA
FindAtomA
CopyFileExW
FindClose
GetStdHandle
GetCommandLineA
FatalExit

advapi32

RegQueryValueExA
RegReplaceKeyW
RegOpenKeyExA
RegQueryValueExW
RegLoadKeyA
RegQueryInfoKeyA
RegDeleteKeyW
RegEnumValueW
RegCreateKeyExA
RegEnumKeyExA
RegOpenKeyA
RegEnumKeyA
RegDeleteValueA
RegCreateKeyA

Sections

.itext
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 49KB - Virtual size: 348KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 655B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

031c4e277e3e3a64b2cf4c9f8974a9b6

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Sections

.itext Size: 26KB - Virtual size: 26KB

.edata Size: 4KB - Virtual size: 3KB

.init Size: 49KB - Virtual size: 348KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 655B

.itext
Size: 26KB - Virtual size: 26KB

.edata
Size: 4KB - Virtual size: 3KB

.init
Size: 49KB - Virtual size: 348KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 655B