NEAS[.]bfa5fb41ced2a445d07f37aee19c1820[.]exe | Triage

Sharing

General

Target

NEAS.bfa5fb41ced2a445d07f37aee19c1820.exe
Size

20KB
MD5

bfa5fb41ced2a445d07f37aee19c1820
SHA1

d61f5e4fc762445d04c1e6a281effe6ba81d47ea
SHA256

c5af2ceefdb5330b8d5664817e7e9ac395395225d9d33fe2314553332471b6ac
SHA512

74f499311d8c51cfc530902d09cb292e568bfec3c3c859c30a26e5859f280b2fada566756f8ac80150a79c57757cd71f7111294f4caa5dfecc2051f79650383e
SSDEEP

96:ofkOtgdoxKGktboynHIlW9q/oMTNsTH9ey/RcNX:6tgaTk1oynWyDLRA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.bfa5fb41ced2a445d07f37aee19c1820.exe

Files

NEAS.bfa5fb41ced2a445d07f37aee19c1820.exe
.exe windows:4 windows x86

e781b010a28d6ee9bf6c5f3c7372a6c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetModuleHandleA
GetShortPathNameA

user32

DialogBoxParamA
EndDialog
wsprintfA

comdlg32

GetOpenFileNameA

comctl32

ord17

winmm

mciSendStringA

msvcrt

__setusermatherr
_controlfp
_except_handler3
_exit
_XcptFilter
exit
__set_app_type
__getmainargs
_initterm
_acmdln
_adjust_fdiv
__p__commode
__p__fmode

Sections

.text
Size: 4KB - Virtual size: 828B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ