NEAS[.]62bdd6923baee1afc3d69b4ff16e46f0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.62bdd6923baee1afc3d69b4ff16e46f0.exe
Size

119KB
MD5

62bdd6923baee1afc3d69b4ff16e46f0
SHA1

ff96f84da7db50aa38f5c186997ef2c3bcdaadeb
SHA256

a9a380403b84854cc60a20f8871cfe8b450b04cb7cb0c4ae65acd913f174431f
SHA512

b8c3f0aac8e451f01642a68b1b34905c9cd021205b50cddbc9a367c50b610b03a7118823f839d7e85a40d024ef2c38c2345364cb9c9308965b7dc47ced1ed2ea
SSDEEP

3072:wxowpcJXaWssCJo/sOEdpjjfK0ZBO/Uv7GU5Q83WHl:3wOJX9ssx/0jjfRZBO/UTV5jA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.62bdd6923baee1afc3d69b4ff16e46f0.exe

Files

NEAS.62bdd6923baee1afc3d69b4ff16e46f0.exe
.exe windows:4 windows x86

42be805bdc4ab378dafd7029e2f2bbfe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
HeapWalk
WerGetFlags
RaiseFailFastException
FatalAppExitA
IsValidLanguageGroup
BackupSeek
FreeUserPhysicalPages
ReplaceFileA
GetCurrentThreadStackLimits
GetThreadLocale
GetConsoleHistoryInfo

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE