NEAS[.]46b0fb502065c9ff54be91d8ef447d80[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.46b0fb502065c9ff54be91d8ef447d80.exe
Size

106KB
MD5

46b0fb502065c9ff54be91d8ef447d80
SHA1

2228d11fd05c27790e6766dc02c55ae89eefe974
SHA256

e94837ed453085b8f169c51e34a2530bcd6cd0c36a06d76f41bf2e3d95b8226a
SHA512

d220baa6aff068aa9450af758af099b82dc4e45baa3a0df380c96e49e26d41a45062160db87f461d95c907435ac7a14256d848b709758241e021a25b70e5193e
SSDEEP

1536:9M8X2Bj6XZG5xC++7VxW1uSZ9jEXEsjp2sxWQ/2y+VCECVCcaxcL+:WBOYHCleP9wUlsuDVCECVCcaxcy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.46b0fb502065c9ff54be91d8ef447d80.exe

Files

NEAS.46b0fb502065c9ff54be91d8ef447d80.exe
.exe windows:4 windows x86

123bce43d78213a5b2d9be9295625878

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

sndPlaySoundA
mciSendStringA

kernel32

FlushFileBuffers
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
ReadFile
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
SetFilePointer
GetCurrentProcess
CreateFileA
ExitProcess
WriteFile
CloseHandle
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetStartupInfoA
GetModuleHandleA
CreateDirectoryA
SetCurrentDirectoryA
SetEnvironmentVariableA
GetLastError
GetFullPathNameA
GetCurrentDirectoryA
GetDriveTypeA
HeapAlloc
HeapFree
GetLocaleInfoA
VirtualProtect
VirtualQuery
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCommandLineA
GetModuleFileNameA
FreeLibrary
LoadLibraryA
RtlUnwind
GetProcAddress
WinExec
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
GetLocalTime
GetSystemInfo
GlobalMemoryStatus
GetVersion
GetComputerNameA
GetWindowsDirectoryA
GetTickCount
Sleep
GlobalAlloc
GlobalFree
SetEndOfFile
HeapSize
TerminateProcess

user32

AppendMenuA
SendMessageA
DestroyWindow
GetSystemMenu
SetFocus
SetWindowTextA
TranslateMessage
PeekMessageA
FindWindowA
GetFocus
DispatchMessageA
GetMessageA
SetTimer
LoadIconA
RegisterClassA
UpdateWindow
SetScrollRange
ShowScrollBar
ScrollWindow
SetScrollPos
KillTimer
PostQuitMessage
DefWindowProcA
InvalidateRect
GetActiveWindow
ShowWindow
SetActiveWindow
SetWindowPos
GetAsyncKeyState
ShowCursor
SetCursorPos
GetClientRect
GetDlgCtrlID
GetDlgItemTextA
GetWindowTextA
IsDlgButtonChecked
EnumDisplaySettingsA
ChangeDisplaySettingsA
GetCursorPos
MessageBoxA
wsprintfA
FillRect
LoadCursorA
SetCursor
BeginPaint
EndPaint
GetDC
ReleaseDC
GetSystemMetrics
MoveWindow
GetWindowRect
GetWindowLongA
SetWindowLongA
CallWindowProcA
CreateWindowExA
PostMessageA
GetMenu

gdi32

TextOutA
MoveToEx
LineTo
SetPixel
GetPixel
SetStretchBltMode
StretchBlt
StretchDIBits
Rectangle
RealizePalette
BitBlt
DeleteDC
SelectPalette
GetTextExtentPoint32A
CreatePalette
SetBkMode
SetTextColor
CreatePen
GetTextMetricsA
SelectObject
GetStockObject
CreateFontIndirectA
DeleteObject
CreateCompatibleDC
CreateDIBSection
GetDeviceCaps
SetDIBColorTable
CreateSolidBrush
GetTextExtentPointA

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

advapi32

GetUserNameA

shell32

ShellExecuteA
ShellExecuteExA

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

123bce43d78213a5b2d9be9295625878

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Sections

.text Size: 88KB - Virtual size: 88KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 3KB - Virtual size: 26KB

.rsrc Size: 1024B - Virtual size: 944B

.text
Size: 88KB - Virtual size: 88KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 3KB - Virtual size: 26KB

.rsrc
Size: 1024B - Virtual size: 944B