NEAS[.]c81cf22745c8ddfa58f6a0157c858aa0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.c81cf22745c8ddfa58f6a0157c858aa0.exe
Size

5KB
MD5

c81cf22745c8ddfa58f6a0157c858aa0
SHA1

699024c4c86ba090d57e67c11a3c573607fa4a16
SHA256

2bd865c4b9b0d971219d833fc1a1537c623c7d375c339d8aa91c56d0c82d0959
SHA512

2ec4bce11135c43a6c81fb250fa93b612fc56a078a65adababc80f149640b114e5cab6be84f1ee2a0036eb9415e0a5fc427e688953ab4506dff87bf0cffe53ae
SSDEEP

48:SKLA9oyTnXz+ihZjufr37LVJKOzmyfzqsKGN3b3OTkCSVMNHk/cQ4:eTnXzvufD7LSGXKGxbeTIYkET

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.c81cf22745c8ddfa58f6a0157c858aa0.exe

Files

NEAS.c81cf22745c8ddfa58f6a0157c858aa0.exe
.dll windows:5 windows x86

e97a70102cce77bfe0dc571cb46a4352

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileW
VirtualAlloc
ReadFile

user32

MessageBoxA

shell32

ShellExecuteW

msvcrt

_adjust_fdiv
free
_initterm
malloc

Exports

Exports

crys

Sections

.text
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ