Static task
static1
Behavioral task
behavioral1
Sample
NEAS.296b6f53d75d7cf11a83e21fc2c618897adcc24314a3a5587afe422b1cb6f758exe_JC.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
NEAS.296b6f53d75d7cf11a83e21fc2c618897adcc24314a3a5587afe422b1cb6f758exe_JC.exe
Resource
win10v2004-20231020-en
General
-
Target
NEAS.296b6f53d75d7cf11a83e21fc2c618897adcc24314a3a5587afe422b1cb6f758exe_JC.exe
-
Size
514KB
-
MD5
69f82fb1bb5bf5002ceb3681cf885cd2
-
SHA1
ea249abb8d980d184ae50b0bcb9729ba43966aae
-
SHA256
296b6f53d75d7cf11a83e21fc2c618897adcc24314a3a5587afe422b1cb6f758
-
SHA512
50153ddb2d401b99255339cc0729027a05f7f961738538a48e7b2600883b8cdccfbc1edc20895ee9523197d72962ff138c2718848097f0c9e1ba6aaf3e046334
-
SSDEEP
6144:Cq/YUzsjq8wJtwihAFb8E5F6TvhzvMChl2c5EthpiD3ViXA5StXN9J1ryPmBcKOZ:L/jRwyc5Fevhzvl9OWmXtd/1r7IWR+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource NEAS.296b6f53d75d7cf11a83e21fc2c618897adcc24314a3a5587afe422b1cb6f758exe_JC.exe
Files
-
NEAS.296b6f53d75d7cf11a83e21fc2c618897adcc24314a3a5587afe422b1cb6f758exe_JC.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 508KB - Virtual size: 507KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ