NEAS[.]07b9f6494de7225ad112e402210de7f0_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.07b9f6494de7225ad112e402210de7f0_JC.exe
Size

66KB
MD5

07b9f6494de7225ad112e402210de7f0
SHA1

b7010e7589d8aee7cda7e0349adca53487981d7d
SHA256

53a5e6e8c846d7bc32af4a526f42ff78635051682add9dc541359cfb8acaae5f
SHA512

86e585ce972baa7cc59f7c58a5fb76e37744d821a4c2c27de0b1477cb1911ea99767542934d39a65e6166c8dc90fc762b9c11878742018749724c322dc249c53
SSDEEP

1536:s4SLngAd3BkBFN7OVA447f7rlj4U0eT4CZIud60y5MbuX:s4yld3B87OID7r4eT5Iud05AU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.07b9f6494de7225ad112e402210de7f0_JC.exe

Files

NEAS.07b9f6494de7225ad112e402210de7f0_JC.exe
.exe windows:4 windows x86

d2be3ce235193b2580e36a48a341cdc0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumaAvailableMemoryNodeEx
GetSystemTimeAdjustment
SetThreadInformation
SetComputerNameA
SetEnvironmentStringsW
SetVolumeMountPointW
GetNumaProximityNodeEx
Heap32Next
CommConfigDialogA
FreeLibraryAndExitThread

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE