NEAS[.]83fd45e1f6bbba6808c61e3d47d1add0[.]exe

General

Target

NEAS.83fd45e1f6bbba6808c61e3d47d1add0.exe
Size

1.4MB
MD5

83fd45e1f6bbba6808c61e3d47d1add0
SHA1

326e28819ecfc5c3567a2d01c722407c37620baa
SHA256

e3cf78c6c0767fa16be16a37a969efd0bc774b9f3f00e0aac581a9e1497400ae
SHA512

a0374c6767f9a0305e22abedfa2ac68827716e33f041128ec8c01ed0479e1a1334c7232f300a61cb853d960f52f205bc2f6032545da1986b8f6349fbaedd91cb
SSDEEP

24576:+FMozB6aD2W+oK+HEju+Xn2EdK9O6wxNqRMN8k:BoB6aD2WfKRhX2sK9Ommh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.83fd45e1f6bbba6808c61e3d47d1add0.exe

Files

NEAS.83fd45e1f6bbba6808c61e3d47d1add0.exe
.exe windows:1 windows x86

74cf383cc1d55e93850837ffd561182d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

wininet

InternetCloseHandle
InternetGetConnectedState
InternetOpenA
InternetOpenUrlA
InternetReadFile

kernel32

FindClose
FindFirstFileA
FindNextFileA
GetComputerNameA
GetDriveTypeA
GetLastError
GetTempPathA
GetTickCount
CopyFileA
RtlUnwind
SetCurrentDirectoryA
SetFileAttributesA
Sleep
WinExec
CreateMutexA

advapi32

GetUserNameA
RegCreateKeyA
RegCloseKey
RegSetValueExA

ws2_32

gethostbyname

crtdll

_iob
_itoa
__GetMainArgs
_strnicmp
atoi
exit
fclose
fflush
fopen
fputc
fwrite
localeconv
localtime
memcpy
memmove
memset
pow
raise
signal
strcat
strchr
strftime
strstr
strtol
time
wcslen
wctomb

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

74cf383cc1d55e93850837ffd561182d

Headers

File Characteristics

Imports

shell32

wininet

kernel32

advapi32

ws2_32

crtdll

Sections

.text Size: 27KB - Virtual size: 27KB

.bss Size: - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.text
Size: 27KB - Virtual size: 27KB

.bss
Size: - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB