NEAS[.]2bf2209a516ffebf1a758c4b1b37b540_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2bf2209a516ffebf1a758c4b1b37b540_JC.exe
Size

264KB
MD5

2bf2209a516ffebf1a758c4b1b37b540
SHA1

4a08bdcf7336d4b794b3994133912c34c08e41e3
SHA256

77b52c9b26942eeced1dd31a650e3e0f8a69e3d07b9c7507b013e3c9b5c31c19
SHA512

5c6a71331b0d012eba20f54f64348c2908c06e61dfcd8ee13c74256d7423d02af4cf8489f14d1d9c4d1584c544f8f82c8bbdcb7b14b2f6f1861757fea8113162
SSDEEP

3072:ZFTS93+IKP5JVkW2Jj1kPqKMteVPHuZtPVfJxCu52arJyjIKK6U8:ZFS93IP5J2nUPqKMtEHuL952rJK6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.2bf2209a516ffebf1a758c4b1b37b540_JC.exe

Files

NEAS.2bf2209a516ffebf1a758c4b1b37b540_JC.exe
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ