Static task
static1
General
-
Target
NEAS.60bee754523d1a1057690d1f91c35320.exe
-
Size
75KB
-
MD5
60bee754523d1a1057690d1f91c35320
-
SHA1
208a35a98276a1a49f0d88000d3d0a7ad6530be5
-
SHA256
67e279c460b8ac0d559515beec892dc1e64a1f5e26c4b7cdaf6e05053af997ed
-
SHA512
9b426b0d05f95d5cd78e9e89ad4d2603316472051dc1a7fb831e6f3fcaf63134312dbf301be3789349f192d134bb823915cebac242ff27f32a36eab1d7fc94d1
-
SSDEEP
1536:hJnug5MjdOcfDs5KL/Eqn54Aqju0A492sTBB76rtn4Zz+L:buwcfwAL/Ed9n6rpe+L
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource NEAS.60bee754523d1a1057690d1f91c35320.exe
Files
-
NEAS.60bee754523d1a1057690d1f91c35320.exe.sys windows:5 windows x86
4d5ca666e333299d80e2e05c2afd96f3
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
DbgPrint
ExAllocatePool
ExFreePool
Sections
.fengyue Size: - Virtual size: 132KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.packed Size: 75KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE