NEAS[.]f6f903bbbc6d7015a9ddc881fe782020[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.f6f903bbbc6d7015a9ddc881fe782020.exe
Size

147KB
MD5

f6f903bbbc6d7015a9ddc881fe782020
SHA1

aad90f5a29fc7b583cff874f76e02d4e04dcb8df
SHA256

1d8c0eebbdce1283772d38c8426bb32a43f0db09fb0f83b9ea4fa15d1917a8fe
SHA512

a2c0c5978130c69cf1b82b9acee9a5b848b89688f9863bb22832781fde272b2b619c084a59f39f6fb91f54104064a9e9b9bf0ad68cbc9a76213ffc784bae92c9
SSDEEP

3072:qODqZA4ZQEzXtFoZVK5sLMX4HFEMkOmVV1s8k0GkEeRArHROq5NxP:zOZlra5LMXUFEc21dGveqDROqbxP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.f6f903bbbc6d7015a9ddc881fe782020.exe

Files

NEAS.f6f903bbbc6d7015a9ddc881fe782020.exe
.exe windows:4 windows x86

e444ed4da613409680b089d9d07aef71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CopyRect
DialogBoxParamW
GetDC
InsertMenuA
GetDlgItem
CalcMenuBar
DrawIcon
IsWindow
AppendMenuW
IsMenu
GetWindowTextLengthA
CreateIcon
AlignRects
LoadMenuA
CloseWindow
CopyImage
EndDialog
GetCursor
DrawIconEx
GetWindowTextA
DialogBoxParamA
GetMenu
GetFocus
DrawTextA
LoadCursorA
BlockInput
DrawTextW
AppendMenuA
CopyIcon
AppendMenuW
CopyRect
InsertMenuA
AppendMenuA
GetDC
CopyImage
GetDlgItem
BlockInput
GetWindowTextA
DrawTextW
GetWindowTextLengthA
DialogBoxParamW
CalcMenuBar
DrawTextA
CloseWindow
CreateIcon
IsMenu
GetCursor
DialogBoxParamA
CopyIcon
IsWindow
DrawIconEx
EndDialog
GetMenu
LoadMenuA
LoadCursorA
DrawIcon
AlignRects
GetFocus

advapi32

RegQueryValueExA
RegOpenKeyA
RegLoadKeyW
RegGetKeySecurity
RegQueryInfoKeyW
RegFlushKey
RegDeleteValueW
RegQueryInfoKeyA
RegEnumValueW
RegDeleteKeyW
RegQueryValueA
RegCreateKeyExW
RegEnumKeyExA
RegQueryValueExW
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyW
RegEnumKeyExW
RegQueryValueW
RegReplaceKeyA
RegDeleteKeyA
RegReplaceKeyW
RegEnumKeyW
RegCreateKeyExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExW
RegOpenKeyW
RegLoadKeyA
RegReplaceKeyW
RegQueryValueExA
RegEnumValueW
RegOpenKeyA
RegQueryValueA
RegCreateKeyW
RegFlushKey
RegDeleteKeyA
RegQueryValueW
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueW
RegOpenKeyW
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW
RegEnumKeyA
RegReplaceKeyA
RegOpenKeyExA
RegCreateKeyExA
RegEnumKeyW
RegQueryInfoKeyW
RegEnumValueA
RegDeleteValueA
RegQueryValueExW
RegGetKeySecurity
RegLoadKeyA
RegDeleteKeyW
RegLoadKeyW

kernel32

CloseHandle
GetLocalTime
CloseHandle
GetStringTypeW
CloseHandle
DeleteFileA
CloseHandle
GetLastError
CloseHandle
HeapAlloc
CloseHandle
lstrcmpiA
CloseHandle
lstrlenA
CloseHandle
WideCharToMultiByte
CloseHandle
GetStringTypeA

Sections

.t0xt
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.da3a
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rd26a
Size: 512B - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rs1c
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e444ed4da613409680b089d9d07aef71

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.t0xt Size: 10KB - Virtual size: 10KB

.da3a Size: 126KB - Virtual size: 126KB

.rd26a Size: 512B - Virtual size: 184KB

.rs1c Size: 6KB - Virtual size: 5KB

.t0xt
Size: 10KB - Virtual size: 10KB

.da3a
Size: 126KB - Virtual size: 126KB

.rd26a
Size: 512B - Virtual size: 184KB

.rs1c
Size: 6KB - Virtual size: 5KB