NEAS[.]5b1c4cff48674863d091e2a640c47b70[.]exe | Triage

Sharing

General

Target

NEAS.5b1c4cff48674863d091e2a640c47b70.exe
Size

66KB
MD5

5b1c4cff48674863d091e2a640c47b70
SHA1

376f64e53f5bcc2547a9e096e2ade836f9781dc6
SHA256

989282b2fc5ac151c49f943327da51cb2efd915554bc4944edaf41c47149f4b9
SHA512

b6548b974264517bd43fafbd7183b63248b264da5bbf2d0c71dd3a6233728df207585d7f03364df1fe107a1d58a492b7624d252fdae4b0b6370e11e89af3821a
SSDEEP

1536:7qZAKq7CLa5PWFZo3EhCJyIZJuf7scPjg7VaQQ6PhyYDTp:733tWFm3vZJufQM07w6Phys

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.5b1c4cff48674863d091e2a640c47b70.exe

Files

NEAS.5b1c4cff48674863d091e2a640c47b70.exe
.exe windows:4 windows x86

8d7cd1dcf97134a8117496e73a6fb21e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetNamedPipeHandleState
SetProcessWorkingSetSizeEx
GetLastError
GetFileAttributesW
GetConsoleCP
SetConsoleCursorPosition
GetFileSizeEx
CreateHardLinkTransactedA
FindFirstFileA
CreateDirectoryA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 51KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE