NEAS[.]263a43f32b0775e27d9671244a5e3d30[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.263a43f32b0775e27d9671244a5e3d30.exe
Size

852KB
MD5

263a43f32b0775e27d9671244a5e3d30
SHA1

555d218ee1e8cadc05054be197e83b58110dbc70
SHA256

a998a5004aeae6d3677483d64796a1add2f81d7b51d71e84bf759b5db925367a
SHA512

3fffc11a6e82adf0d79ad2aad8123310a5df81b77cdcf38afa26e450acce955eecff4331c93803350826c697d5d9d63de52d02402d7f6bbc3d03c6195b6a5fc8
SSDEEP

24576:KeurZFDgRj1IBCdK/E2ALA5PGxjIFo+zEaf6Q:KeurZFs1bvLAQIFo3aj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.263a43f32b0775e27d9671244a5e3d30.exe

Files

NEAS.263a43f32b0775e27d9671244a5e3d30.exe
.exe windows:4 windows x86

6889f7fe361b02f7be9aa2aeaea778f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imagehlp

StackWalk
SymInitialize
SymCleanup

rcsc

_START_JOB@16
_GET_COMPID@12
_COPY_FILE@20

kernel32

GetFileInformationByHandle
CreateFileA
GetTempFileNameA
GetTempPathA
GetFullPathNameA
SetEndOfFile
FlushFileBuffers
IsDBCSLeadByteEx
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetCPInfo
lstrlenA
lstrcpyA
ResumeThread
GetModuleFileNameA
GetCurrentProcessId
SearchPathA
SuspendThread
GetProfileIntA
GlobalSize
MultiByteToWideChar
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
ExitProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapReAlloc
SetStdHandle
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InterlockedIncrement
InterlockedDecrement
HeapDestroy
HeapCreate
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
TerminateProcess
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
HeapSize
VirtualQuery
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
IsDebuggerPresent
GetCommandLineA
GetACP
SetErrorMode
SetConsoleCtrlHandler
SetLastError
CloseHandle
CreateProcessA
WaitForSingleObject
Sleep
DuplicateHandle
GetCurrentThread
GetCurrentProcess
TlsSetValue
SetThreadPriority
TlsGetValue
TlsAlloc
TlsFree
GetLastError
SetFilePointer
WriteFile
GetFileType
LeaveCriticalSection
EnterCriticalSection
GetFileAttributesA
ReadFile
FreeLibrary
GetStdHandle
FormatMessageA
LoadLibraryA
GetThreadLocale
GetProcAddress
GetModuleHandleA
VirtualFree
InterlockedExchange
VirtualAlloc
GetCurrentThreadId
ReleaseMutex
CreateMutexA
SetEvent
CreateEventA
ExitThread
InitializeCriticalSection
CreateThread
DeleteCriticalSection
TerminateThread
DeleteFileA
GetVersionExA

user32

AppendMenuA
GetSystemMenu
DeleteMenu
LoadCursorA
wsprintfA
SetCaretPos
AttachThreadInput
DestroyCaret
CreateCaret
PeekMessageA
WinHelpA
DefWindowProcA
GetMenuState
DefMDIChildProcA
MessageBeep
SetWindowLongA
ReleaseCapture
SetCursor
SetCapture
SetFocus
CheckMenuItem
GetMenu
GetScrollPos
SetScrollRange
SetScrollPos
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
ScrollWindow
RedrawWindow
ModifyMenuA
IsClipboardFormatAvailable
CreateMenu
RegisterClassA
LoadIconA
GetWindow
OemToCharA
SetMenuItemInfoA
GetMenuItemID
IsWindowVisible
GetClipboardData
GetFocus
IsRectEmpty
IntersectRect
DestroyWindow
EnableWindow
CreateDialogIndirectParamA
IsDialogMessageA
GetUpdateRect
SetMenu
HideCaret
ShowCaret
ScrollDC
InvalidateRgn
GetMenuItemCount
GetSubMenu
DefFrameProcA
GetDC
ReleaseDC
MoveWindow
BeginPaint
IsWindow
GetKeyState
PostQuitMessage
DestroyMenu
InvalidateRect
UpdateWindow
SetWindowsHookExA
MessageBoxA
UnhookWindowsHookEx
GetWindowRect
FindWindowExA
GetWindowTextLengthA
MapWindowPoints
CreateWindowExA
GetWindowTextA
SetWindowTextA
CallNextHookEx
ShowWindow
SetWindowPos
IsZoomed
EnumChildWindows
PostMessageA
SendMessageA
EnableMenuItem
DrawMenuBar
TranslateMDISysAccel
TranslateMessage
DispatchMessageA
GetClientRect
PtInRect
WaitMessage
GetWindowLongA
EndPaint
GetMessageA
GetSystemMetrics

gdi32

MoveToEx
LineTo
SetBkMode
GetMapMode
DPtoLP
GetDIBits
GetSystemPaletteEntries
StartPage
EndPage
EndDoc
AbortDoc
StretchDIBits
TextOutA
GetNearestColor
CreateCompatibleBitmap
SetPixel
SetPixelV
CreateBitmapIndirect
BitBlt
SetStretchBltMode
GetDeviceCaps
GetPaletteEntries
CreatePalette
SelectPalette
RealizePalette
SetMapMode
SetWindowExtEx
SetViewportExtEx
SelectClipRgn
GetStockObject
SetROP2
SetTextColor
SetBkColor
GetTextMetricsA
ExtTextOutA
CreateSolidBrush
CreatePen
Rectangle
CreateRectRgn
GdiFlush
CreateDIBitmap
CreateCompatibleDC
GetObjectA
StretchBlt
DeleteDC
DeleteObject
EnumFontFamiliesA
CreateFontIndirectA
SelectObject
SetAbortProc
StartDocA

comdlg32

GetSaveFileNameA
CommDlgExtendedError
PrintDlgA
GetOpenFileNameA

Sections

.text
Size: 692KB - Virtual size: 688KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 4KB - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6889f7fe361b02f7be9aa2aeaea778f4

Headers

File Characteristics

Imports

imagehlp

rcsc

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 692KB - Virtual size: 688KB

.rdata Size: 104KB - Virtual size: 102KB

.data Size: 28KB - Virtual size: 84KB

.trace Size: 12KB - Virtual size: 8KB

_RDATA Size: 4KB - Virtual size: 32B

.data1 Size: 4KB - Virtual size: 128B

.rsrc Size: 4KB - Virtual size: 176B

.text
Size: 692KB - Virtual size: 688KB

.rdata
Size: 104KB - Virtual size: 102KB

.data
Size: 28KB - Virtual size: 84KB

.trace
Size: 12KB - Virtual size: 8KB

_RDATA
Size: 4KB - Virtual size: 32B

.data1
Size: 4KB - Virtual size: 128B

.rsrc
Size: 4KB - Virtual size: 176B