NEAS[.]fdfb1cc4e5e0235cbb4a4ee3b36b4ed0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.fdfb1cc4e5e0235cbb4a4ee3b36b4ed0.exe
Size

424KB
MD5

fdfb1cc4e5e0235cbb4a4ee3b36b4ed0
SHA1

400b3e119449f62de2f0a372712f6a56922b72bf
SHA256

0a858098dc6fe6ae34f4a5806f9540ee69abe57deb938af56c69709acd7827fb
SHA512

5250188b44b0e5d130db5dd2cd80bf8e0fb3cf598f0f9a4d4683e5dab97dd125a233fe9a4092e52c09ad10ce7e45e877d03a90f292f29014a25e8dc0ea014d16
SSDEEP

6144:/pW2bgbbV28okoS1oWMkdlZQ5wQTbHikAnzmAb8a:/pW2IoioS6Easr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.fdfb1cc4e5e0235cbb4a4ee3b36b4ed0.exe

Files

NEAS.fdfb1cc4e5e0235cbb4a4ee3b36b4ed0.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ