NEAS[.]88d34d2a2cfdb15858234f73cf384040[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.88d34d2a2cfdb15858234f73cf384040.exe
Size

119KB
MD5

88d34d2a2cfdb15858234f73cf384040
SHA1

848dd65d64d3ace2ead14025509ca90520a7e2dd
SHA256

965472ff5b95ec6f13d0031ff76e9f1b50e2df84994374bbebea3497f79299c3
SHA512

2df7c6b53c2eab5e37835074662a3ec0a21705a312ae6b910ca5be4fce93e1e778c20a390336678acc04bb9426e78aa2f6ec1d8d838c064acf88276705990b64
SSDEEP

3072:fZiQoD1owyUFHeFKXBzHq8uCDLnYvszHdPns8u2jTWw6cUHm0B:fkBoS+FqzK8NnYEzHdPns8u2/fUG0B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.88d34d2a2cfdb15858234f73cf384040.exe

Files

NEAS.88d34d2a2cfdb15858234f73cf384040.exe
.exe windows:4 windows x86

f1c6b740ace55b5a8dad3359e1ccac2d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
GetCurrentConsoleFontEx
RemoveVectoredContinueHandler
PssFreeSnapshot
GetExitCodeThread
AdjustCalendarDate
FatalAppExitA
EndUpdateResourceW
UnlockFileEx
GetNumberFormatEx
NlsEventDataDescCreate

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE