NEAS[.]67a50c99dcccf9e4b41a0005a46d62b0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.67a50c99dcccf9e4b41a0005a46d62b0.exe
Size

65KB
MD5

67a50c99dcccf9e4b41a0005a46d62b0
SHA1

e840977faff60c944ed533b604b9cb4413e13a9a
SHA256

d00b3732e5e4ebd4a0726dcddceb024e4d9e3f59855b0e3f17225492c44ed3e3
SHA512

3e61945ab85d4b448a9490ff98b125a453f1f7477582bf6b581ed7b333b02d2a6a30abbc146fbc555b9ce6af845e3f2781c504b3717908535aa2f8b3da11bab8
SSDEEP

768:hQAG+3HJPqwBcNpYje8KnUqWBGuwSG4lNKNeEbMbap2WUTzqi5nEwekfE9n:hRXJPQDZORb+ecmqRwwR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.67a50c99dcccf9e4b41a0005a46d62b0.exe

Files

NEAS.67a50c99dcccf9e4b41a0005a46d62b0.exe
.exe windows:4 windows x86

871f566131c40f544851d687e3ef38f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
GlobalAlloc
GlobalFree
LoadLibraryA

user32

MessageBoxA

Sections

Size: - Virtual size: 160KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SoftComp
Size: 891B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 249B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE