NEAS[.]f69244c8927f62bdc92b706b676d4490[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

NEAS.f69244c8927f62bdc92b706b676d4490.exe
Size

1.3MB
MD5

f69244c8927f62bdc92b706b676d4490
SHA1

905a1fc8c220bd15815bac600d9a33e914f169dc
SHA256

e85925f4a838606284f186cc51ef5c939c7c06707dd530d36b892bf436e68fad
SHA512

6e0ddddd871348daa08d7c6c5cc0a422bde7f9362a2f43d4a81628caa7f462170f0762283918e14c0fcbba19e3813574e6249b8d65a7d2401a3134510cb1cbfa
SSDEEP

24576:6Ed3surUOguSNLIlL6ZWBGtqqtWqXQtcMIHHDQA+deDAdnmngGv+SoEWB8:xlVyTtWqXgIHHDQXgDAUg6+SoEW+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.f69244c8927f62bdc92b706b676d4490.exe

Files

NEAS.f69244c8927f62bdc92b706b676d4490.exe
.exe windows:4 windows x86

3f83a25fe4a5141a9bfe41d721c47d24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeSetEvent
mmioClose
mmioAscend
mmioRead
mmioDescend
mmioOpenA
mmioSeek
mmioSetInfo
mmioAdvance
mmioGetInfo
timeKillEvent

dsound

ord1

kernel32

GetStartupInfoA
GetCommandLineA
RaiseException
CreateThread
TerminateProcess
ExitThread
HeapSize
HeapReAlloc
GetACP
GetTimeZoneInformation
GetDriveTypeA
GetEnvironmentVariableA
SetCurrentDirectoryA
ExitProcess
UnhandledExceptionFilter
HeapFree
SetEnvironmentVariableA
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
HeapDestroy
HeapCreate
HeapAlloc
CreateFileMappingA
CompareStringA
CompareStringW
GetCurrentDirectoryA
RtlUnwind
WritePrivateProfileStringA
SetErrorMode
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCPInfo
SizeofResource
GetOEMCP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
TlsGetValue
MulDiv
GetFileAttributesA
GlobalLock
GlobalUnlock
Sleep
IsBadReadPtr
IsBadWritePtr
OutputDebugStringA
GlobalReAlloc
GetSystemInfo
GetTickCount
GetModuleHandleA
GetVersionExA
GetModuleFileNameA
CopyFileA
GetTempFileNameA
LocalReAlloc
LocalAlloc
LocalFree
GlobalAlloc
GlobalSize
DeleteFileA
GetTempPathA
GlobalFree
InterlockedExchange
GetProcessVersion
GlobalFlags
LeaveCriticalSection
TlsSetValue
EnterCriticalSection
DeleteCriticalSection
TlsFree
GlobalHandle
GetCurrentThread
TlsAlloc
InitializeCriticalSection
SuspendThread
lstrcmpA
CreateEventA
SetEvent
SetThreadPriority
ResumeThread
FormatMessageA
WaitForSingleObject
FindNextFileA
GetFileSize
GetFileTime
GetThreadLocale
FindFirstFileA
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
FindClose
FlushFileBuffers
UnlockFile
LockFile
ReadFile
SetFilePointer
WriteFile
DuplicateHandle
CreateFileA
GetCurrentProcess
lstrlenA
MultiByteToWideChar
WideCharToMultiByte
SetLastError
InterlockedDecrement
InterlockedIncrement
FindResourceA
LoadLibraryA
FreeLibrary
GetVersion
LoadResource
LockResource
GlobalGetAtomNameA
lstrcatA
GetCurrentThreadId
GlobalFindAtomA
lstrcmpiA
GlobalAddAtomA
GetProcAddress
GlobalDeleteAtom
lstrcpyA
CreateMutexA
WinExec
lstrcpynA
OpenFileMappingA
GetLastError
ReleaseMutex
CloseHandle
VirtualFree
UnmapViewOfFile
MapViewOfFile
GetProfileStringA
VirtualAlloc
SetStdHandle

user32

CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
MessageBeep
GetDCEx
LockWindowUpdate
RegisterClipboardFormatA
SetParent
PostThreadMessageA
ReleaseCapture
SetCapture
GetSysColorBrush
GetDesktopWindow
GetClassNameA
DestroyMenu
WindowFromPoint
KillTimer
SetTimer
MapDialogRect
SetWindowContextHelpId
SetRectEmpty
PostQuitMessage
LoadStringA
GetMessageA
ValidateRect
CharUpperA
wvsprintfA
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
SetActiveWindow
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
IsWindowVisible
GetTopWindow
IsChild
GetCapture
WinHelpA
RegisterClassA
GetMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetKeyState
DefWindowProcA
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
RegisterWindowMessageA
GetWindowPlacement
FindWindowA
GetDlgCtrlID
SetWindowPos
IsIconic
GetSystemMenu
AppendMenuA
LoadIconA
PeekMessageA
TranslateMessage
DispatchMessageA
GetKeyboardState
GrayStringA
DrawTextA
TabbedTextOutA
RedrawWindow
ScreenToClient
PtInRect
LoadImageA
SetCursor
IsWindow
UnhookWindowsHookEx
SetWindowsHookExA
CallNextHookEx
GetCursorPos
DrawIconEx
SystemParametersInfoA
PostMessageA
wsprintfA
LoadCursorA
CreateIconIndirect
GetDC
EndDeferWindowPos
BeginDeferWindowPos
GetClassInfoA
MessageBoxA
ReleaseDC
GetIconInfo
DrawIcon
GetSystemMetrics
FillRect
DestroyIcon
IntersectRect
IsRectEmpty
OffsetRect
EnableWindow
GetWindowRect
UpdateWindow
CopyRect
GetFocus
GetParent
GetWindowLongA
SendMessageA
LoadBitmapA
InvalidateRect
SetRect
GetClientRect
InflateRect
DrawFocusRect
GetSysColor
DrawStateA
GetSubMenu
GetMenuItemCount
ShowCaret
ExcludeUpdateRgn
HideCaret
IsWindowUnicode
UnregisterClassA
DefDlgProcA

gdi32

DeleteObject
FrameRgn
CreateFontIndirectA
StretchBlt
RectInRegion
GetTextExtentPointA
CreateDCA
CreateFontA
CreateCompatibleBitmap
BitBlt
CreatePen
GetObjectA
CreateCompatibleDC
SelectPalette
CreatePalette
GetDeviceCaps
SetDIBits
SetDIBitsToDevice
DeleteDC
SetBkColor
GetMapMode
DPtoLP
SetMapMode
GetClipBox
SetTextColor
SaveDC
RestoreDC
SetBkMode
SetViewportOrgEx
OffsetViewportOrgEx
ScaleViewportExtEx
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
IntersectClipRect
SelectClipRgn
MoveToEx
Escape
LineTo
ExtTextOutA
GetViewportExtEx
GetWindowExtEx
PatBlt
CreatePatternBrush
StretchDIBits
GetCharWidthA
SetRectRgn
GetTextColor
GetBkColor
GetTextMetricsA
LPtoDP
RectVisible
PtVisible
TextOutA
RealizePalette
GetDIBits
PtInRegion
Ellipse
CreateBitmap
Polygon
CreatePolygonRgn
CreateEllipticRgnIndirect
CreateRectRgn
GetStockObject
CreateSolidBrush
Rectangle
CombineRgn
SelectObject
FillRgn
OffsetRgn
CreateRectRgnIndirect
CreateEllipticRgn
GetTextExtentPoint32A
CreateRoundRectRgn
CreateDIBitmap

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteA

comctl32

ImageList_Destroy
_TrackMouseEvent
ord17
ImageList_Create
ImageList_Replace
ImageList_AddMasked

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
CoTaskMemAlloc
CoFreeUnusedLibraries
CoTaskMemFree
CreateILockBytesOnHGlobal
OleInitialize
OleUninitialize
CLSIDFromProgID
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString

olepro32

ord253

oleaut32

SysAllocString
SysFreeString
SysAllocStringByteLen
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysStringLen

Sections

.text
Size: 476KB - Virtual size: 472KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f83a25fe4a5141a9bfe41d721c47d24

Headers

File Characteristics

Imports

winmm

dsound

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 476KB - Virtual size: 472KB

.rdata Size: 68KB - Virtual size: 64KB

.data Size: 28KB - Virtual size: 43KB

.rsrc Size: 56KB - Virtual size: 55KB

.text
Size: 476KB - Virtual size: 472KB

.rdata
Size: 68KB - Virtual size: 64KB

.data
Size: 28KB - Virtual size: 43KB

.rsrc
Size: 56KB - Virtual size: 55KB