NEAS[.]f5aafa02d6a8b9f2cafe2e38714241f0[.]exe | Triage

Sharing

General

Target

NEAS.f5aafa02d6a8b9f2cafe2e38714241f0.exe
Size

37KB
MD5

f5aafa02d6a8b9f2cafe2e38714241f0
SHA1

4da9cab27ff9d08a31f03df9417c3c9eec9ca9df
SHA256

1e9595a0662d184ced635e2d88b2d952175010d0b3bd1232efafe4d754eb2da4
SHA512

99254e08f14fd870b89514c66fe7b8dd68a791ac67e8fd9c8a7f4fa5e896332d88c18d2f483345acb47a34bd3fda1dfbdc5cccd4f692bbc2c5da1e386d302537
SSDEEP

768:7qP0V5P1wD0CbS0HaUpJVuq9Jzo78x+pu9fWWq53E7l0nX:720V7wdS0P79Jc78x+pu9fWWq539

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.f5aafa02d6a8b9f2cafe2e38714241f0.exe

Files

NEAS.f5aafa02d6a8b9f2cafe2e38714241f0.exe
.exe windows:5 windows x86

b05c854936e80ba3420f36ed569f7216

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalAlloc
GetModuleHandleA
GetLastError
ExitProcess

user32

DefWindowProcA
CreateWindowExA
EndPaint
GetMessageA
LoadCursorA
MessageBoxA
RegisterClassExA
TranslateMessage
BeginPaint
AdjustWindowRectEx
DispatchMessageA

gdi32

GetStockObject
TextOutA

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ