NEAS[.]52cf5e7a0b7973ea30d28a864d96c6c0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.52cf5e7a0b7973ea30d28a864d96c6c0.exe
Size

41KB
MD5

52cf5e7a0b7973ea30d28a864d96c6c0
SHA1

f8240fd501bbefe6054d0b0e96b15d93d7ddacf2
SHA256

ab84ba0d1f075bf498207ab20a5d3fa331bdb9332ed4cdab2dc44328284f5268
SHA512

5fcf20ac26403c2b88be1bb0899e553d58214d137165a7b76abe2c88e69c94c94837784ebfa3d468c7b08307bd7ed0e2222367675909043e242973af601adfcd
SSDEEP

768:tnsY19U95NODq88ag96tAx1VhBUWBp72:JsK2ag96tAZT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.52cf5e7a0b7973ea30d28a864d96c6c0.exe

Files

NEAS.52cf5e7a0b7973ea30d28a864d96c6c0.exe
.exe windows:41207 windows x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

rqiqaryq
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

qjbyjzby
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jayayara
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

briazzza
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ