NEAS[.]d4eadb9de10ae00b046c423d289d78c0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.d4eadb9de10ae00b046c423d289d78c0.exe
Size

35KB
MD5

d4eadb9de10ae00b046c423d289d78c0
SHA1

579a1ca2417b7d225877c952b3b586c3578a1e14
SHA256

0e196c4db32a8b3ee456cbc129ae6c3bcef080902ef9739fce4c5a69c7f0b9bd
SHA512

7097efba3f6c2ba6c4223263c4111392e5ecc58daf3a87779cadeefe4ba94496e6d0180ca8980432d24fa136d7b9fb5e419ecb503ed40f6d76d3f67396084877
SSDEEP

384:oMv8DBwU9wnG+we4SjxDKDVgZ+L0eaF5ZwK8lxyMzGKjxIBXeaKI9jvWnv6qZ:oM0DN6pWVX21EXyMzBYghvl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.d4eadb9de10ae00b046c423d289d78c0.exe

Files

NEAS.d4eadb9de10ae00b046c423d289d78c0.exe
.exe windows:4 windows x86

60bffc8e3a9dbbf8e31ec224c956576b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord183
ord583
ord669
ord702
EVENT_SINK_AddRef
DllFunctionCall
ord563
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord717
ProcCallEngine
ord537
ord644
ord570
ord648
ord649
ord100
ord432

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ