NEAS[.]65a1665993c807e02ef056205f3907a0[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.65a1665993c807e02ef056205f3907a0.exe
Size

141KB
MD5

65a1665993c807e02ef056205f3907a0
SHA1

ade77904f032777283179613ad88995b6c3aeb9d
SHA256

229e5e5a43cc2f1896140d3076bb75e2b9656880d3ab9633f58bdd52b4db4ef8
SHA512

e0b42dd76028a2d9c6d59ea15a20d90c5c6663cf5006f90465b53f516d4a87210085639604f50e0c2f5074babbfc743cce3eb20913b458f2a0fa097f0b64f010
SSDEEP

3072:Qi+49rufJxTJ5t3IewHsaS6Un/Pb2ajLBR2amX1p/pNe:Qi3qhxV5tOMaqb2ajLj29Ro

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.65a1665993c807e02ef056205f3907a0.exe

Files

NEAS.65a1665993c807e02ef056205f3907a0.exe
.exe windows:4 windows x86

ce931a1588ca650b2cd743120c26c1c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
lstrcpyA
ExitProcess
GlobalAddAtomA
LocalFree
VirtualAlloc
GetTickCount
LoadLibraryA
GetEnvironmentStrings
GetCPInfo
GetStdHandle
WideCharToMultiByte
GetDiskFreeSpaceA
LoadResource
EnumCalendarInfoA
MoveFileExA
GetThreadLocale
GetModuleHandleW
GetLocaleInfoA
SizeofResource
VirtualFree
GetCommandLineW
GetVersion
IsBadHugeReadPtr
GetCommandLineA

comdlg32

GetOpenFileNameA
GetFileTitleA
ChooseColorA
GetSaveFileNameA
FindTextA

user32

TranslateMDISysAccel
DrawTextA
GetWindowDC
GetDC
TranslateMessage
LoadStringA
IntersectRect
OemToCharA
ClientToScreen
DrawIconEx
DrawMenuBar
GetForegroundWindow
DestroyIcon
ScreenToClient
TrackPopupMenu
SetPropA
IsMenu
RegisterClipboardFormatA
GetMenuStringA
IsWindowEnabled
ShowWindow
GetMenu
MessageBoxA
GetCursorPos
DrawFrameControl
SetFocus
InsertMenuItemA
GetClipboardData
InflateRect
ShowScrollBar
FrameRect
GetSysColorBrush
IsIconic
DestroyWindow
GetWindowThreadProcessId
RegisterWindowMessageA
RedrawWindow
EqualRect
DrawEdge
KillTimer
CharLowerBuffA
MessageBeep
MoveWindow
SetWindowPlacement
CreateMenu
GetSystemMetrics
WindowFromPoint
SetWindowTextA
EnableMenuItem
SystemParametersInfoA
IsZoomed
GetClassInfoA
ScrollWindow
DispatchMessageA
SetRect
GetKeyboardLayout
GetMenuItemInfoA
GetPropA
OffsetRect
GetFocus
FillRect
CreateWindowExA
GetDlgItem

Exports

Exports

zTaAiBDMC@12
__BfnJZlhOOL@12

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce931a1588ca650b2cd743120c26c1c2

Headers

File Characteristics

Imports

kernel32

comdlg32

user32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.data Size: 11KB - Virtual size: 143KB

.edata Size: 107KB - Virtual size: 107KB

.adata Size: 1024B - Virtual size: 596B

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 9KB - Virtual size: 8KB

.data
Size: 11KB - Virtual size: 143KB

.edata
Size: 107KB - Virtual size: 107KB

.adata
Size: 1024B - Virtual size: 596B

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 8KB - Virtual size: 8KB