NEAS[.]b465798aeb2983eb2761b9504bd3c880[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.b465798aeb2983eb2761b9504bd3c880.exe
Size

857KB
MD5

b465798aeb2983eb2761b9504bd3c880
SHA1

4783ff380ecb50668a1a0f0070b2bbf0de40182e
SHA256

8d752e7e096f77cc6d1a9e13785d98320bd35c3d7294d09df99dac6768a46e87
SHA512

a6222bd6b25e7791d22c9163dd8e34ad79c4634c8059971fc034f73be391611210cc9462224a2c0e5b0c7142da78c50355a26ab0178c1a6a00058e9cae5c7531
SSDEEP

12288:RziYY3OXLjCWUcbJ3hGJFPw3SGdFcSSKH+S1G4cmp0jL:RziYmALjC2tcPw3S+Fcbsh1Js

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.b465798aeb2983eb2761b9504bd3c880.exe

Files

NEAS.b465798aeb2983eb2761b9504bd3c880.exe
.exe windows:4 windows x86

7f9feaf3acf2b3d9d55d7d9994e6a3ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mciSendCommandA

msvfw32

DrawDibOpen
DrawDibClose

msimg32

AlphaBlend

comctl32

InitCommonControlsEx
_TrackMouseEvent

ddraw

DirectDrawCreate

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

mpr

WNetGetUniversalNameW

kernel32

GlobalMemoryStatus
GlobalFree
GlobalAlloc
MultiByteToWideChar
RaiseException
GetProcessWorkingSetSize
OpenProcess
SetProcessWorkingSetSize
GetCurrentProcessId
GetLastError
HeapAlloc
HeapSetInformation
HeapCreate
HeapFree
HeapReAlloc
InterlockedExchange
SetFilePointerEx
ReadFile
GetFileSizeEx
SetFilePointer
WriteFile
CreateFileW
DeleteFileW
GetOverlappedResult
InterlockedCompareExchange
SetEndOfFile
CreateFileA
WideCharToMultiByte
FindClose
CreateMutexW
FindFirstFileW
HeapCompact
GetPrivateProfileStringA
FreeLibrary
FindResourceA
FlushFileBuffers
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindFirstFileA
GetModuleFileNameA
GetFullPathNameA
SetFileAttributesA
CopyFileA
GetOEMCP
GetACP
GetCPInfo
GetFileType
SetHandleCount
GetConsoleMode
GetConsoleCP
HeapSize
VirtualAlloc
VirtualFree
HeapDestroy
GetStdHandle
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoA
GetProcessHeap
GetCommandLineA
ExitProcess
GetLocalTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
RtlUnwind
GetLocaleInfoA
SetStdHandle
WriteConsoleA
SizeofResource
LoadResource
LockResource
SetWaitableTimer
GetTickCount
CreateWaitableTimerA
GetTempPathA
GetTempFileNameA
DeleteCriticalSection
DeleteFileA
InitializeCriticalSection
CreateEventA
GetEnvironmentStringsW
GetCurrentThread
SetThreadPriority
CreateThread
QueryPerformanceFrequency
ExitThread
LoadLibraryA
CloseHandle
Sleep
GetVersionExA
GetModuleHandleA
GetProcAddress
GetCurrentProcess
EnterCriticalSection
LeaveCriticalSection
QueryPerformanceCounter
ResetEvent
SetEvent
WaitForSingleObject
IsValidCodePage
LCMapStringA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA
GetStringTypeW
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
MulDiv

user32

PostQuitMessage
PeekMessageA
GetWindowTextA
GetDlgCtrlID
UpdateWindow
SetParent
ScreenToClient
ShowScrollBar
GetScrollInfo
SetScrollInfo
KillTimer
DestroyMenu
GetDlgItemTextA
GetDlgItemInt
SetFocus
SetDlgItemTextA
GetForegroundWindow
SetMenuItemInfoA
DialogBoxParamA
GetDlgItem
DeleteMenu
EnableMenuItem
DrawMenuBar
GetCursorPos
SetClassLongA
GetMonitorInfoA
RedrawWindow
TranslateAcceleratorA
EndDialog
GetSystemMetrics
SystemParametersInfoA
CheckMenuItem
ShowWindow
CallWindowProcA
LoadStringA
SetWindowTextA
IntersectRect
LoadAcceleratorsA
InflateRect
GetSysColor
GetClassInfoExA
GetDoubleClickTime
SetMenu
SetForegroundWindow
BringWindowToTop
GetMenuBarInfo
GetMenuItemID
RegisterClassExA
SetWindowLongA
GetWindowLongA
CreateWindowExA
GetMenuItemCount
TrackPopupMenu
InsertMenuItemA
CreatePopupMenu
EnumChildWindows
InsertMenuA
GetMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
GetCapture
GetUpdateRect
BeginPaint
EndPaint
GetParent
IsWindowEnabled
MessageBoxA
GetWindow
SetWindowPos
GetClientRect
EnableWindow
DefWindowProcA
LoadImageA
FillRect
DrawTextA
SetCursor
GetDC
GetWindowRect
ReleaseDC
MessageBeep
ReleaseCapture
SetCapture
LoadCursorA
GetIconInfo
PostMessageA
LoadIconA
SendMessageA
CreateDialogParamA
SetTimer
GetMenu
RemoveMenu
GetSubMenu
PtInRect
ClientToScreen
SendDlgItemMessageA

gdi32

SetBkColor
SetTextColor
CreateFontIndirectA
GetObjectA
DeleteDC
CreateDIBSection
CreateCompatibleDC
CreateDCA
GetDIBits
Ellipse
SelectObject
Polyline
Rectangle
TextOutA
GetTextExtentPointA
LineTo
MoveToEx
SetBkMode
CreateRectRgn
CreateRoundRectRgn
GetDeviceCaps
GetStockObject
SetStretchBltMode
BitBlt
StretchBlt
CreateSolidBrush
FillRgn
FrameRgn
GetRgnBox
CombineRgn
DeleteObject
CreateEllipticRgn
CreatePen
OffsetRgn
CreatePolygonRgn

comdlg32

GetOpenFileNameW
GetSaveFileNameA

advapi32

SetSecurityDescriptorDacl
RegDeleteKeyA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
InitializeSecurityDescriptor

shell32

DragAcceptFiles
DragQueryFileW
SHChangeNotify
FindExecutableA
ShellExecuteA

ole32

OleCreate
CoInitialize
OleSetContainedObject

oleaut32

OleLoadPicturePath
VariantInit
SysAllocString
VariantClear

Sections

.text
Size: 424KB - Virtual size: 420KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 152KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 347KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7f9feaf3acf2b3d9d55d7d9994e6a3ad

Headers

File Characteristics

Imports

winmm

msvfw32

msimg32

comctl32

ddraw

version

mpr

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 424KB - Virtual size: 420KB

.rdata Size: 152KB - Virtual size: 150KB

.data Size: 36KB - Virtual size: 347KB

.rsrc Size: 116KB - Virtual size: 114KB

.text
Size: 424KB - Virtual size: 420KB

.rdata
Size: 152KB - Virtual size: 150KB

.data
Size: 36KB - Virtual size: 347KB

.rsrc
Size: 116KB - Virtual size: 114KB