NEAS[.]dd4d91d6adeb7803521f860c037f9d60_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.dd4d91d6adeb7803521f860c037f9d60_JC.exe
Size

506KB
MD5

dd4d91d6adeb7803521f860c037f9d60
SHA1

62dbfda34322169859c45188319db9c15a7b74ab
SHA256

4c1608f711db2e350e926016b06a1c46315b784dda6190fa8336c7953b42a326
SHA512

f587b7754eb1e9dd26bbee8fd8b05535c30586aae165ae0fa54c32bebc821354f63c4c3b9d6f78153216cf552af4c5eaca01880648d71dbf352c092586614fdb
SSDEEP

6144:RPRrUAEGGppMdQF3nCTvHS0nvx0/nm627lY9kTLP3eaxSIa1mOwuxN:R5UjGVUuG4lMkT6Unaqu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.dd4d91d6adeb7803521f860c037f9d60_JC.exe

Files

NEAS.dd4d91d6adeb7803521f860c037f9d60_JC.exe
.exe windows:5 windows x86

c34e97067835555a530de43992cdb0d8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBkColor
SetTextAlign
GetRandomRgn
GetMapMode
GetFontUnicodeRanges
GetDCBrushColor
SetTextJustification
SetTextCharacterExtra
GetStretchBltMode
GetTextCharsetInfo
GetFontLanguageInfo
GetTextAlign
SetSystemPaletteUse
SetTextColor
GetPixelFormat

user32

GetForegroundWindow
SetWindowTextA
GetCursor
GetWindowContextHelpId
GetDialogBaseUnits
GetMenu
LoadIconA
GetKeyboardType
GetMenuItemCount
WindowFromDC
GetInputState
BeginPaint
IsWindowEnabled
GetMenuContextHelpId
GetQueueStatus
GetWindowDC
IsWindowUnicode
GetDlgItemInt
EnableWindow
CallWindowProcA
RemovePropA
ShowWindow
SetFocus
GetWindowLongA
PostMessageA
CheckDlgButton
DrawTextA
EndDialog
SetDlgItemTextA
GetScrollPos
GetMenuCheckMarkDimensions
GetDlgItem
SendMessageA

kernel32

GetFullPathNameA
ReadConsoleW
ReadFile
SetEndOfFile
GetTimeZoneInformation
WriteConsoleW
SetStdHandle
CreateFileW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFullPathNameW
PeekNamedPipe
GetFileInformationByHandle
FileTimeToLocalFileTime
GetStringTypeW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
HeapSize
SetFilePointerEx
OutputDebugStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetModuleFileNameA
GetFileType
GetConsoleMode
GetConsoleCP
RtlUnwind
GetProcAddress
GetModuleHandleA
DeleteFileA
GetCurrentThreadId
SizeofResource
GetLastError
SetFilePointer
CloseHandle
GetVersion
LocalFlags
FlushFileBuffers
GetCurrentProcessId
LoadResource
GetCurrentProcess
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
HeapReAlloc
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
GetCommandLineA
IsProcessorFeaturePresent
GetProcessHeap
GetStdHandle
WriteFile
GetModuleFileNameW
IsDebuggerPresent
SetLastError
GetCurrentThread
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
FatalAppExitA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
CreateEventW
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetTickCount
GetModuleHandleW
CreateSemaphoreW
SetConsoleCtrlHandler
FreeLibrary
LoadLibraryExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
FindClose
FindFirstFileExW
GetDriveTypeW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
SetEnvironmentVariableA

Sections

.text
Size: 439KB - Virtual size: 438KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c34e97067835555a530de43992cdb0d8

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 439KB - Virtual size: 438KB

.rdata Size: 25KB - Virtual size: 24KB

.data Size: 41KB - Virtual size: 142KB

.text
Size: 439KB - Virtual size: 438KB

.rdata
Size: 25KB - Virtual size: 24KB

.data
Size: 41KB - Virtual size: 142KB