NEAS[.]ac72861aa006fabe69450183b5d7fda0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ac72861aa006fabe69450183b5d7fda0.exe
Size

66KB
MD5

ac72861aa006fabe69450183b5d7fda0
SHA1

a115d808c379c7e745ed743a86a0c8a6ab8f5e13
SHA256

200badb05ddacd3b5e48a10f6dd1c2e3101629fd2082230a49e4f2926658c50b
SHA512

f76ff684867c3b22f40f9246fb8c43b7f33607afcdf3d95de37f32efcc6119f2df1febf56480c20ca85412c1201d3b81309bdb9c84ce17bceb1001ec2a4f0261
SSDEEP

768:2nw6Yvxusd2X6UsIlAk6WColnKKO2IheaekmwLaiCn4d1mlcPFV6edPtVSu22L4g:i+q6cS2ITmwvC4rCde5tz4fcsF31mp/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.ac72861aa006fabe69450183b5d7fda0.exe

Files

NEAS.ac72861aa006fabe69450183b5d7fda0.exe
.exe windows:4 windows x86

3abc1ef64dbb9882db23b2a1fdf5f489

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleOutputCharacterA
GetThreadPriorityBoost
BaseFormatObjectAttributes
FindNextFileNameW
GetLongPathNameTransactedA
EndUpdateResourceA
lstrcpy
SetConsoleOutputCP
GetCalendarWeekNumber
GetCurrentActCtxWorker

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE