NEAS[.]0ff02e578b946881a6f80a1c511dc890[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

NEAS.0ff02e578b946881a6f80a1c511dc890.exe
Size

317KB
MD5

0ff02e578b946881a6f80a1c511dc890
SHA1

99cafeb256475dfe4809dab942092b3095f7e1b7
SHA256

965c8ad9a47a0c82ceef371c2f6915573a536548368cca39c86c6bb3fb7f7cb3
SHA512

9091c2e388108160b59d8a60c047cd1c815c7885553fc1502ee211ed4f7d6131e508c2222721fcb8166fb8e78660485a1b881e8341bb4ebf4d49af56f8840493
SSDEEP

6144:MVXm4i6pO0v/YBxK8eFLj3qJ5/TX2oK/aQq:Ms4++8ijaJRO/y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.0ff02e578b946881a6f80a1c511dc890.exe

Files

NEAS.0ff02e578b946881a6f80a1c511dc890.exe
.exe windows:4 windows x86

e37fbf0ec7f8764cac67230c3e83bb27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
GetOverlappedResult
IsBadHugeWritePtr
ExitProcess
GetProfileStringW
GetLastError
DeleteTimerQueueTimer
GetVersionExW
GetProcessTimes
WaitForSingleObjectEx
LocalSize
IsProcessorFeaturePresent
MoveFileExA
MoveFileA
GlobalFix
IsValidLocale
GetDateFormatW
GetFileTime
ResumeThread
GetVolumePathNameW
RemoveDirectoryA
HeapWalk
GetLocaleInfoA
GetVolumeInformationW
EndUpdateResourceA
VerSetConditionMask
Sleep
DeleteFileW
WaitNamedPipeA
InterlockedExchangeAdd

user32

SetMessageExtraInfo
GetWindowTextLengthA
TrackPopupMenuEx
GetMenuInfo
OpenInputDesktop
DeleteMenu
BroadcastSystemMessageA
GetQueueStatus
FindWindowW
GetClipCursor
DdeFreeDataHandle
VkKeyScanExW
SetDeskWallpaper
GetInputState
SendIMEMessageExA
UnionRect
RealGetWindowClassA
EnumDisplayMonitors
ValidateRect
GetSysColor
AttachThreadInput
CallMsgFilterW
CloseDesktop
ReplyMessage
GetMenuItemCount
SetMenuInfo
SetScrollPos
IMPSetIMEW
GetClassNameA
DrawFrame
LoadCursorW
CharUpperW
GetClassInfoA
ChangeMenuW
IsWindowVisible
CreateCaret
OpenWindowStationA
DdeGetData
DdeImpersonateClient
DialogBoxParamW
TileWindows
LoadIconA
CreateDesktopA
LoadBitmapA
GetSubMenu
CharLowerBuffA
PostMessageA
ShowOwnedPopups
GetDoubleClickTime
ExcludeUpdateRgn
LockWorkStation
GetUserObjectInformationA
GetMonitorInfoW
CreateIconFromResourceEx
OemKeyScan
CharToOemW
DefMDIChildProcA
SetCaretBlinkTime
DrawAnimatedRects
DdeSetQualityOfService
WINNLSEnableIME
MessageBoxExW
RemovePropA
SetWindowRgn
AppendMenuA
GetKeyboardLayoutNameA
SetDlgItemInt
DlgDirListA
DrawTextW
SetMenuItemInfoW
SetActiveWindow
GetMenuItemInfoA
ShowCaret
VkKeyScanExA
DrawFrameControl
DlgDirListComboBoxA
GetMouseMovePointsEx
GetCursorInfo
DdeConnect
SetWindowLongA
DdeQueryStringW
SetFocus
GetMessageTime
MsgWaitForMultipleObjects
CreateDesktopW
WindowFromPoint
CallWindowProcW
FreeDDElParam
TranslateAcceleratorW
SendMessageCallbackA
SetDlgItemTextW
InvalidateRgn
DdeInitializeW
HiliteMenuItem
LoadCursorFromFileW
GetWindowRect
ShowWindowAsync
DialogBoxParamA
DdeSetUserHandle
IsCharLowerA
DrawCaption
GetWindowRgn
EnableMenuItem
GetKeyboardType
ShowScrollBar
EnumPropsExW
UnregisterClassA

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 137KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e37fbf0ec7f8764cac67230c3e83bb27

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 95KB - Virtual size: 95KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 137KB - Virtual size: 140KB

.text
Size: 95KB - Virtual size: 95KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 137KB - Virtual size: 140KB