NEAS[.]5dc5c4ff099003e52741096146cc6720[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.5dc5c4ff099003e52741096146cc6720.exe
Size

988KB
MD5

5dc5c4ff099003e52741096146cc6720
SHA1

cabd833838faa735f6f923911fcd72206fbdb13b
SHA256

c94aef572a25778880856a897121dedc2a4997d049df66b54ccb29388bd5d617
SHA512

75cd449e04fa5b857f1776559760a4ae2e8a0d798d4ce9a510cdbe0bad4e89810ff9d8f0b43441ebfa353c7c52f8fac27b7eec514c943efe80b5ff74a994ddf4
SSDEEP

24576:YqxNcUJRF60OczR3NCB4eNQj8ihzoir1W:ZxNcUJRdOYRAB4eNQnrQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.5dc5c4ff099003e52741096146cc6720.exe

Files

NEAS.5dc5c4ff099003e52741096146cc6720.exe
.exe windows:4 windows x86

6f4a556015d5234f9a82d8e64a077abe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

msvfw32

DrawDibOpen
MCIWndCreateA
DrawDibDraw
DrawDibClose

kernel32

HeapDestroy
HeapCreate
VirtualFree
GetACP
VirtualAlloc
HeapSize
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
GetEnvironmentStringsW
IsBadWritePtr
ExitProcess
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
FileTimeToSystemTime
FileTimeToLocalFileTime
SetStdHandle
CompareStringA
CompareStringW
TerminateProcess
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
GetSystemTime
FindNextFileA
GetLocalTime
HeapReAlloc
GetTimeZoneInformation
RaiseException
GetDriveTypeA
HeapAlloc
HeapFree
RtlUnwind
SetCurrentDirectoryA
SetEnvironmentVariableA
GetTickCount
SetHandleCount
GetStdHandle
GetCurrentDirectoryA
GetFileSize
GlobalReAlloc
FreeResource
FindResourceA
LoadResource
LockResource
SizeofResource
lstrcpyA
GetLastError
WinExec
GlobalSize
WriteFile
CreateFileA
ReadFile
CloseHandle
SetFilePointer
GetPrivateProfileIntA
GetPrivateProfileStringA
GetModuleFileNameA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
SetErrorMode
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetFileTime
GetFileAttributesA
WritePrivateProfileStringA
GetCurrentThread
lstrcmpA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
lstrcpynA
FormatMessageA
LocalFree
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
lstrlenA
LoadLibraryA
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
GetProfileIntA
GetProfileStringA
LoadLibraryExA
FindResourceExA
FreeLibrary
MulDiv
FreeEnvironmentStringsW
GetEnvironmentStrings

user32

MessageBeep
WindowFromPoint
RegisterClipboardFormatA
GetDCEx
PostThreadMessageA
GetNextDlgGroupItem
SetParent
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
DestroyMenu
TranslateAcceleratorA
LoadAcceleratorsA
MapDialogRect
SetWindowContextHelpId
GetMessageA
ValidateRect
GetCursorPos
ShowOwnedPopups
PostQuitMessage
InflateRect
LoadStringA
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
CharUpperA
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetNextDlgTabItem
IsWindowEnabled
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
GetFocus
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
CharNextA
CopyAcceleratorTableA
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
GetSysColorBrush
GetClassNameA
GetDlgCtrlID
GetKeyState
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
DefWindowProcA
RegisterClassExA
CreateWindowExA
ShowWindow
DestroyWindow
IsRectEmpty
LoadImageA
DrawFocusRect
PtInRect
ClientToScreen
LockWindowUpdate
ScreenToClient
SetWindowRgn
AppendMenuA
CreatePopupMenu
GetWindowLongA
GrayStringA
DrawTextA
TabbedTextOutA
RedrawWindow
EnumWindows
GetWindowTextA
LookupIconIdFromDirectory
CreateIconFromResourceEx
CreateIconFromResource
DrawIconEx
MessageBoxA
RegisterWindowMessageA
LoadIconA
DestroyIcon
LoadBitmapA
SetScrollInfo
GetDlgItem
MessageBoxExA
GetSysColor
DrawStateA
FrameRect
ReleaseDC
GetDC
EqualRect
PeekMessageA
TranslateMessage
DispatchMessageA
GetDesktopWindow
KillTimer
SetTimer
GetWindowRect
PostMessageA
CopyRect
OffsetRect
SetRectEmpty
MoveWindow
wsprintfA
UpdateWindow
FillRect
SendMessageA
LoadCursorA
EnableWindow
GetParent
SetCapture
InvalidateRect
GetClientRect
SetRect
SetCursor
ReleaseCapture
GetWindowTextLengthA
GetClassInfoA
EnableMenuItem
DefDlgProcA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
IsWindowUnicode

gdi32

GetObjectA
SelectObject
SelectPalette
GetTextExtentPoint32A
CreateBitmap
CreateFontA
CreateSolidBrush
GetTextExtentPointA
CreateFontIndirectA
GetDIBits
GetSystemPaletteEntries
CreateDCA
GetClipBox
SetTextColor
SetBkColor
PatBlt
CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
Escape
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
SetRectRgn
CombineRgn
GetTextMetricsA
LPtoDP
ExtTextOutA
TextOutA
RectVisible
PtVisible
SetPixelV
SetBrushOrgEx
CreatePalette
SetDIBitsToDevice
StretchDIBits
CreateDIBSection
SetDIBColorTable
StretchBlt
DeleteDC
SetStretchBltMode
UpdateColors
GetPaletteEntries
GdiFlush
CreateHalftonePalette
CreateDIBitmap
DeleteObject
CreatePen
SetPixel
GetTextColor
BitBlt
DPtoLP
GetPixel
GetBkMode
GetBkColor
GetMapMode
GetDeviceCaps
CreateCompatibleDC
RealizePalette
CreateCompatibleBitmap
GetStockObject
GetDIBColorTable
CreateRoundRectRgn

comdlg32

GetOpenFileNameA
PrintDlgA
GetSaveFileNameA
GetFileTitleA
CommDlgExtendedError

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA

shell32

DragQueryFileA
DragFinish
ShellExecuteA

comctl32

ord17

oledlg

ord8

ole32

StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CreateStreamOnHGlobal
CLSIDFromString
CoGetClassObject
CoTaskMemFree
CoTaskMemAlloc
CreateILockBytesOnHGlobal
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoRegisterMessageFilter

olepro32

ord253
ord251

oleaut32

SysStringLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString
SysAllocStringByteLen

winmm

waveOutClose
mixerGetID
mixerGetControlDetailsA
mixerGetLineInfoA
waveOutOpen
mixerGetLineControlsA
mixerGetNumDevs
mixerOpen
mixerGetDevCapsA
sndPlaySoundA
mciSendStringA
mciGetErrorStringA
mixerClose
mixerSetControlDetails

Sections

.text
Size: 504KB - Virtual size: 502KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 364KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f4a556015d5234f9a82d8e64a077abe

Headers

File Characteristics

Imports

version

msvfw32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

winmm

Sections

.text Size: 504KB - Virtual size: 502KB

.rdata Size: 92KB - Virtual size: 89KB

.data Size: 24KB - Virtual size: 72KB

.rsrc Size: 364KB - Virtual size: 363KB

.text
Size: 504KB - Virtual size: 502KB

.rdata
Size: 92KB - Virtual size: 89KB

.data
Size: 24KB - Virtual size: 72KB

.rsrc
Size: 364KB - Virtual size: 363KB