NEAS[.]4023736961bbf79051faa092a7056960[.]exe

General

Target

NEAS.4023736961bbf79051faa092a7056960.exe
Size

128KB
MD5

4023736961bbf79051faa092a7056960
SHA1

ade8591e73ca2a7a60d9cd059b83da65033bb5fc
SHA256

efb7e434b0a6e8c3f9f82adbf84f81fc938de31a7d21e78c9799dd494bc734a5
SHA512

9c2b5e8298237f7a3841d47efbe2ccb2e26e9f4153fd7e859a56320f8b4858b1b1f9268b7c1f4b4a4fa8a75a7b6dcf7d77933cad3e19004145ba0340399c4d78
SSDEEP

3072:0GgUNUHefVHU5aRXtMfieeeeeeeeeeeeeeeeeee77z:0GgUNueFUQcf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.4023736961bbf79051faa092a7056960.exe

Files

NEAS.4023736961bbf79051faa092a7056960.exe
.exe windows:4 windows x86

0674dba9bcd177326d7952f411aaa329

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClassInfoExA
LoadIconA
RegisterClassExA
FindWindowA
SetForegroundWindow
PostQuitMessage
EndDialog
GetWindowTextA
MessageBoxA
SetFocus
SetWindowTextA
ShowWindow
LoadImageA
DialogBoxParamA
GetDlgItem
SendMessageA
BeginPaint
LoadBitmapA
EnableWindow

comctl32

ImageList_Draw
ImageList_Create
ord17
ImageList_AddMasked

crypt32

CertSetCertificateContextProperty
CertCreateCertificateContext
CertGetNameStringA
CertFreeCertificateContext

gdi32

GetObjectA

kernel32

SetFilePointer
GetLastError
GetCPInfo
VirtualAlloc
WriteFile
RtlUnwind
VirtualFree
GetACP
GetOEMCP
SetStdHandle
GetStringTypeA
GetStringTypeW
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
CloseHandle
HeapReAlloc
GetCommandLineA
FreeLibrary
GetProcAddress
LoadLibraryA
CreateMutexA
OpenMutexA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
HeapFree
HeapAlloc
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0674dba9bcd177326d7952f411aaa329

Headers

File Characteristics

Imports

user32

comctl32

crypt32

gdi32

kernel32

Sections

.text Size: 36KB - Virtual size: 35KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 106KB

.rsrc Size: 80KB - Virtual size: 78KB

.text
Size: 36KB - Virtual size: 35KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 106KB

.rsrc
Size: 80KB - Virtual size: 78KB