NEAS[.]c793bbca19b629d7f68098cfcd8df1d0_JC[.]exe

General

Target

NEAS.c793bbca19b629d7f68098cfcd8df1d0_JC.exe
Size

67KB
MD5

c793bbca19b629d7f68098cfcd8df1d0
SHA1

bf8530f4cdd865e8c7e9a1fca27b3cbd9db83ccf
SHA256

8b11ff3fef72fa0d8c1c85271cfbe63ebb94d08f337037dbde83565e0e949528
SHA512

03b2913a6893b4a489572325d625ac248d5074018d145aa0f4c8fb1e4a6f292ccaef6a74d455a0ace34ce571f3be7cd282e96c9ef6ae558a6867dd490b3ec3c8
SSDEEP

768:hHPZ37bn3M6yyLhKRVzWAjq/dt/enmvgJmLYqVaHHIFIF:9PZ33n3MMFo9jTJmDVaIFI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.c793bbca19b629d7f68098cfcd8df1d0_JC.exe

Files

NEAS.c793bbca19b629d7f68098cfcd8df1d0_JC.exe
.dll windows:6 windows x86

c39e16213fd584d12bfcd5f959a340df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

cudart32_55

__cudaRegisterFunction
__cudaRegisterVar
__cudaUnregisterFatBinary
__cudaRegisterFatBinary
cudaMemcpyToSymbol
cudaLaunch
cudaSetupArgument
cudaConfigureCall

msvcr110

strchr
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
__CppXcptFilter
_amsg_exit
free
_malloc_crt
_initterm
_initterm_e
_except_handler4_common
__clean_type_info_names_internal
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess

kernel32

IsDebuggerPresent
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
DecodePointer
EncodePointer

Exports

Exports

B
C
G
I
M

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nv_fatb
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nvFatBi
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c39e16213fd584d12bfcd5f959a340df

Headers

DLL Characteristics

File Characteristics

Imports

cudart32_55

msvcr110

kernel32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 512B - Virtual size: 15KB

.nv_fatb Size: 42KB - Virtual size: 42KB

.nvFatBi Size: 512B - Virtual size: 16B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 512B - Virtual size: 15KB

.nv_fatb
Size: 42KB - Virtual size: 42KB

.nvFatBi
Size: 512B - Virtual size: 16B

.reloc
Size: 4KB - Virtual size: 3KB