NEAS[.]ca02bd5a7585c3e04e9dda43f262b410[.]exe | Triage

Sharing

General

Target

NEAS.ca02bd5a7585c3e04e9dda43f262b410.exe
Size

66KB
MD5

ca02bd5a7585c3e04e9dda43f262b410
SHA1

a3fd4ea7d0269aa05bb95b13f75d5fbe4face829
SHA256

895527082e5ebd40b662d8e7b41d874bc314b685fc7ccbd19ce8ead85a335e85
SHA512

61af9d6962953038a24b297d8ef37977d6a62d282cd585e33e1c4fab1fef8ceacc8116e8802d49c6431674d30cd88a7237490d193f5afb5b032e8fe5bae99e93
SSDEEP

1536:wKvHcDLCKLQSSu9OdtdGVDViNY88ERFiEnYiYrQrZtZ8r9tdp:T/cqKkS39AdGLiN+ENYOZtKrT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.ca02bd5a7585c3e04e9dda43f262b410.exe

Files

NEAS.ca02bd5a7585c3e04e9dda43f262b410.exe
.exe windows:4 windows x86

cb03222ce7c77111258c1c8b6bbb6ab7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandleEx
WriteConsoleOutputA
GlobalWire
TermsrvRestoreKey
FlsSetValue
SetDllDirectoryW
GetThreadErrorMode
SetTapeParameters
SetWaitableTimerEx
GetAppContainerAce
CreateHardLinkW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE