NEAS[.]270c2ae1b8ddda9154c0f48d8feafef0[.]exe | Triage

Sharing

General

Target

NEAS.270c2ae1b8ddda9154c0f48d8feafef0.exe
Size

72KB
MD5

270c2ae1b8ddda9154c0f48d8feafef0
SHA1

cca2ec47e6a5147357c09baf26dec63ca5719f3b
SHA256

f529f531d30e52dd5ed0f4a96c70b8c36ce4a1475b09f4a4689f1dfb0c97753a
SHA512

508476fd494f233fe5b49aa8293502a28a1a7938ea21632af19687717afaff63f1546e3a453eaa0c20fd9f9d0c3f3acd58a50de52956956bbe6cf4eb8eccf027
SSDEEP

768:PTksTn76p/x5qqVYyElhT5wMk0I9uY+caAZ18FZW7nsFqG7bnn:PTksg/x5qq3Mk0Kys18FG2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.270c2ae1b8ddda9154c0f48d8feafef0.exe

Files

NEAS.270c2ae1b8ddda9154c0f48d8feafef0.exe
.exe windows:4 windows x86

7d3ff8cecfe44cb81309c6acbce9520f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

EVENT_SINK_GetIDsOfNames
MethCallEngine
EVENT_SINK_Invoke
ord517
ord661
ord663
Zombie_GetTypeInfo
EVENT_SINK2_Release
ord598
ord631
EVENT_SINK_AddRef
ord561
Zombie_GetTypeInfoCount
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord605
ord319
ord536
EVENT_SINK2_AddRef
ord685
ord100
ord610
ord320
ord321
ord616
ord650
ord546

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ