NEAS[.]e34538e12b15529c99ea64164372c2f0_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.e34538e12b15529c99ea64164372c2f0_JC.exe
Size

1.2MB
MD5

e34538e12b15529c99ea64164372c2f0
SHA1

c07959b7c32883fa2e9048dc239d60efd8c2f518
SHA256

1cad7b7657531ec589edb296b45d5da44ab174dd9c4a570aefe46ee47bed3d9c
SHA512

b6068560403339860b75330190859241db8d4530091fc5d0649a1110f7bdbb6d8f8c2c059ab05c3d84ecbe67bb29d40c8de3bc58819d55da8cdc49c7b03d2b13
SSDEEP

12288:3oiJw/9Rrw0R1u4V/0YG3wx6EcJHUEhPUotFZr+1izHGNe8jKk34z:3a/TwSfVcYG3K/cJHlnFR+IGNe8j3Iz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.e34538e12b15529c99ea64164372c2f0_JC.exe

Files

NEAS.e34538e12b15529c99ea64164372c2f0_JC.exe
.exe windows:4 windows x86

cf7033d55ec80c9c39c1dd7fd4c1bcfc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow

shell32

ShellExecuteA

msvcrt

_adjust_fdiv
strstr
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_controlfp
__p__commode
__p__fmode
__set_app_type
_except_handler3

kernel32

GetStartupInfoA
GetModuleHandleA

Sections

.text
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE