NEAS[.]4b25c19f28a28a75a3e0130eb82709f0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.4b25c19f28a28a75a3e0130eb82709f0.exe
Size

716KB
MD5

4b25c19f28a28a75a3e0130eb82709f0
SHA1

7d45e20a1ce73d881aa7abf3615f35b257d8a69b
SHA256

4dd70a029b61cd716bf22274ca5ba603ee0f28bb3587f1044bbcb7b6a5298b3c
SHA512

ca9b65978cc00e6eea9f3353c1b6dd5116ea6778ed451a45180fc7b6ce2484aef45abdd34efd72d6f3aa9c2fbd54e3ce9ce005e9db8b924160ffed36e3605bbc
SSDEEP

12288:AYVUQPy0AQbUVSiFb01woPwhrtQBuCzGd3O9/K/bOuJ7:AYVpkQbUVSiFewkwhRQsCzzS5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.4b25c19f28a28a75a3e0130eb82709f0.exe

Files

NEAS.4b25c19f28a28a75a3e0130eb82709f0.exe
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 410KB - Virtual size: 410KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

vsxlb
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 84KB - Virtual size: 84KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE