NEAS[.]62a93600f9441304c530f5fabca65710[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.62a93600f9441304c530f5fabca65710.exe
Size

220KB
MD5

62a93600f9441304c530f5fabca65710
SHA1

1bc700974b5dbf0b002d5d24f652ff2e30252c8b
SHA256

d51fc98610d2ab9df7c5f761c2a461439098c546f65ec490ebda9bf088f08449
SHA512

3030a0a4a589dfb02d172664a3510a6fddbb32a0877c2e50a032cc2213095d301bee12950410afc1dc4d999862a1183f31bc2043eee4618b920eb835fa9cad60
SSDEEP

3072:qrqn2Nyh0DRFxG2qiJB94NYD8gFDk1fKFll1BN9Ag0FuLBNE8tGd:92NvFxZVoqsYbnAO1+d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.62a93600f9441304c530f5fabca65710.exe

Files

NEAS.62a93600f9441304c530f5fabca65710.exe
.exe windows:4 windows x86

6c02889f0f57a4071709b1b590a8786a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
CreateToolbarEx
ord6

kernel32

SetFilePointer
ReadFile
CreateFileA
GetVersionExA
HeapReAlloc
Sleep
GetProcAddress
LoadLibraryA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
IsValidCodePage
GetOEMCP
GetCPInfo
InitializeCriticalSection
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
HeapSize
GetModuleFileNameA
ExitProcess
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
LeaveCriticalSection
EnterCriticalSection
WriteFile
CloseHandle
HeapFree
GetProcessHeap
HeapAlloc
LoadLibraryExA
FreeLibrary
SetFileAttributesA
GetFileAttributesA
QueryPerformanceFrequency
QueryPerformanceCounter
GetCurrentDirectoryA
GetLastError
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
DeleteFileA
GetStartupInfoA
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
GetACP
GetLocaleInfoA
GetThreadLocale
RaiseException
VirtualAlloc
GetModuleHandleA
RtlUnwind
TerminateProcess

user32

ReleaseDC
SetDlgItemTextA
GetDC
GetDlgItem
EndDialog
SendMessageA
GetSysColor
SetWindowPos
SetRectEmpty
WindowFromDC
DrawTextA
SetRect
FillRect
LoadStringA
FindWindowA
GetMessageA
DispatchMessageA
TranslateMessage
PostQuitMessage
BeginPaint
EndPaint
DestroyWindow
MessageBoxExA
GetForegroundWindow
SetForegroundWindow
DialogBoxParamA
ScreenToClient
DefWindowProcA
GetCursor
SetCursor
SetTimer
GetKeyState
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
LoadMenuA
SetMenu
ShowWindow
UpdateWindow
ClientToScreen
SetCursorPos
InvalidateRect
SetScrollInfo
EnableScrollBar
ShowScrollBar
GetClientRect
CopyRect

gdi32

SetBkMode
SetPixelV
SetTextColor
TextOutA
Rectangle
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
DeleteDC
CreateFontIndirectA
CreateBrushIndirect
CreatePen
SelectObject
CreateRectRgn
SelectClipRgn
DeleteObject
GetTextExtentPoint32A
Polyline
SetROP2
MoveToEx
LineTo
GetTextExtentPointA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 77B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c02889f0f57a4071709b1b590a8786a

Headers

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

advapi32

Sections

.text Size: 156KB - Virtual size: 155KB

.rdata Size: 53KB - Virtual size: 52KB

.data Size: 7KB - Virtual size: 51KB

.tls Size: 512B - Virtual size: 77B

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 156KB - Virtual size: 155KB

.rdata
Size: 53KB - Virtual size: 52KB

.data
Size: 7KB - Virtual size: 51KB

.tls
Size: 512B - Virtual size: 77B

.rsrc
Size: 2KB - Virtual size: 2KB