NEAS[.]7a45160c460cb458380d026719f30530[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.7a45160c460cb458380d026719f30530.exe
Size

1.2MB
MD5

7a45160c460cb458380d026719f30530
SHA1

67b4650a7aeaa01a4a3826c30ac0f15ea9fec4e7
SHA256

06dc8f3a1516706905996d1ae0a71cec1e9d7cace294dadd2a085d9dfee66b9c
SHA512

2d1929f957ec232cde30f1f58eae540118b553d1aea4dea10eac8c76e6a4b1f637f0b5c7d7933b4b8c75d9038d272b5cf19758122040d4309a8768e15cc655f7
SSDEEP

24576:wnMD/KJBDiioOMMaAHobJXfHJuoBFK2olYezMeOHR+ehZuyuyjY:wnFGi1MMavvHYiFc6evOHRd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.7a45160c460cb458380d026719f30530.exe

Files

NEAS.7a45160c460cb458380d026719f30530.exe
.dll windows:4 windows x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

RunDllHostCallBack

Sections

Size: 316KB - Virtual size: 904KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mlfdmoob
Size: 888KB - Virtual size: 888KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xmyyrxrf
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE