NEAS[.]bced77f2600bc6c20be5cae3bb318b40[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.bced77f2600bc6c20be5cae3bb318b40.exe
Size

9KB
MD5

bced77f2600bc6c20be5cae3bb318b40
SHA1

a45ef6b22572c86d131fe563eea0f774dd2988d3
SHA256

66d0f1153eec638dad1b9e180374a693e0d5ccf2a9d86f09b196547c76f63377
SHA512

952b24427fb61f8a36a832a0094a8ea53fcda412fc5ef8f1f30d6e870b90d0e8652441687fef4baf3dd5e450a87289f5b1d06b28887c97a0093c321b2b3e0132
SSDEEP

96:lrDiRcJB90bPKxjtS4/wkVMuV6frQoGk3LhLe9mEYX898WavEJIC16Hkwu7o4:tGRcr9mCxjtSI+tekKZ1nwu7L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.bced77f2600bc6c20be5cae3bb318b40.exe

Files

NEAS.bced77f2600bc6c20be5cae3bb318b40.exe
.exe windows:4 windows x86

1e4ade61b9989163fb47b7823269d70f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cygwin1

__main
_impure_ptr
calloc
cygwin_internal
dll_crt0__FP11per_process
free
malloc
printf
realloc
scanf

kernel32

GetModuleHandleA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 64B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE