NEAS[.]37db80935e23c649b5387a5dea2f2570[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.37db80935e23c649b5387a5dea2f2570.exe
Size

119KB
MD5

37db80935e23c649b5387a5dea2f2570
SHA1

d58c772cdfc0fe91d52a47e66a252b91e05787f0
SHA256

8c8a4e555db55d839815a4ea68ed3621e38ac9f957275681c0727617acf07067
SHA512

dd0b0b88b7207760757e9555f6af22b0b543cd10e075964cec97ceb0c6456ca9cfcb4b7b7ffa415d739ffd8943ae3d49929c71daa2286edac4ff900da10729fb
SSDEEP

1536:t//EW+sb+NGY9gdG8kMvBfQqyqgP09knaBKY+FxI6fTDnuKKOVaE79kpI5AnWZv:9/d16NGYqdk+z3FHKY+lbTu/OVWpI5d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.37db80935e23c649b5387a5dea2f2570.exe

Files

NEAS.37db80935e23c649b5387a5dea2f2570.exe
.exe windows:5 windows x86

6f95f52dd5829e0057f062ec0f9980cd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
GetStringTypeW
LCMapStringW
RtlUnwind
MultiByteToWideChar
LoadLibraryW
Sleep
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
SetStdHandle
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GlobalLock
FreeEnvironmentStringsW
GetModuleFileNameA
WideCharToMultiByte
GetConsoleMode
SetConsoleMode
ReadConsoleW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
WriteConsoleW
HeapReAlloc
lstrcpyA
FileTimeToLocalFileTime
CloseHandle
EnumDateFormatsA
FindNextFileA
GetLastError
FindFirstFileA
GetStdHandle
ReadFile
CreateFileW
FileTimeToSystemTime
HeapCreate
GetCurrentProcessId
GetProcessHeap
TlsGetValue
TlsAlloc
IsValidCodePage
FlushFileBuffers
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
HeapAlloc
LoadResource
GetEnvironmentStringsW
GetFileSize
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
WriteFile
HeapFree
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
DecodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
GetProcAddress
GetModuleHandleW
ExitProcess

user32

GetWindow
ModifyMenuA
LoadCursorA
EndPaint
GetMessageA
GetSystemMenu
GetSubMenu
LoadBitmapA
GetParent
TrackMouseEvent
LoadIconA
LoadCursorW
CallNextHookEx
WindowFromPoint
SendMessageA
BeginPaint
GetDC
TranslateMessage
CreateDialogIndirectParamA
SetPropA
MessageBoxA
LoadMenuW
GetWindowLongA
EnableMenuItem
MonitorFromWindow
SetClassLongA
GetDlgItem
SendDlgItemMessageW
GetSysColor
GetCursorPos
DispatchMessageA
MessageBoxW
GetSystemMetrics
SetWindowTextA
GetDlgItemTextW
SetDlgItemTextW
SendMessageW
UpdateWindow
EnableWindow
DestroyMenu

gdi32

AddFontResourceA
BitBlt
GetTextMetricsW
ExtFloodFill
StretchBlt
RemoveFontResourceW
CreateBitmap
DeleteObject
SelectObject
CreateCompatibleDC
Rectangle
CreatePatternBrush
SetPixelFormat
CreateSolidBrush
MoveToEx

comdlg32

GetOpenFileNameA
GetOpenFileNameW
CommDlgExtendedError

ole32

CoUninitialize
CoInitialize
CoCreateInstance

oleaut32

VariantInit
VariantClear

shlwapi

StrStrIA

comctl32

ImageList_Create
CreatePropertySheetPageA
CreatePropertySheetPageW

opengl32

glBitmap
glEndList
glNewList

Sections

.text
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 640B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f95f52dd5829e0057f062ec0f9980cd

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

oleaut32

shlwapi

comctl32

opengl32

Sections

.text Size: 59KB - Virtual size: 58KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 14KB - Virtual size: 21KB

.rsrc Size: 1024B - Virtual size: 640B

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 59KB - Virtual size: 58KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 14KB - Virtual size: 21KB

.rsrc
Size: 1024B - Virtual size: 640B

.reloc
Size: 6KB - Virtual size: 6KB