NEAS[.]6230450bf54139ac5e9943631da28ec0_JC[.]exe | Triage

Sharing

General

Target

NEAS.6230450bf54139ac5e9943631da28ec0_JC.exe
Size

119KB
MD5

6230450bf54139ac5e9943631da28ec0
SHA1

22b850274207cfc8cd165dd79bca7af8ca6d22ed
SHA256

543b9445c489e0827eb2fefe326ee7f1cfbce4b1520cad84a1f01f04487f0284
SHA512

c6d4dd2fb320b5a1b40319f268a2121d8f52e2a9a7b2b687e7e09df1cc62e2d4f51e877b0b930d843f6d08f3db81b49567d8b8044dfb71318b3cfd8eaff149a0
SSDEEP

3072:ytc10/ipqXihlEq6c9qdWNLvo/iIuxpX9jtnfcNR9+:Kooi0mNIiIE99fkz+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.6230450bf54139ac5e9943631da28ec0_JC.exe

Files

NEAS.6230450bf54139ac5e9943631da28ec0_JC.exe
.exe windows:4 windows x86

e03503658bf675c1b3bfe4581004971d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetSystemPowerState
GetFileMUIPath
QueryProcessAffinityUpdateMode
AppPolicyGetClrCompat
GlobalReAlloc
FindFirstChangeNotificationW
NotifyMountMgr
SetThreadStackGuarantee
LocalSize
CreateWaitableTimerW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE