NEAS[.]e4cc0629bb37a2abf2c47fe8363e07e0_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.e4cc0629bb37a2abf2c47fe8363e07e0_JC.exe
Size

1.1MB
MD5

e4cc0629bb37a2abf2c47fe8363e07e0
SHA1

e488160748a3a5e849b657c451f74399395c8bbe
SHA256

41f23bb775081bbcc0944f38b0d584eee7d9af280409d477bb72f48b7b2d4cd9
SHA512

23ed4aaa72cf5656fa416ac7a801491866d5e428c46e80d9f8bb9216c1863b67891acbed2a2741d0334f8dec14bc915aca4894332d2c2c94dc790f2347571b35
SSDEEP

24576:7A4VhtUf8fvLjScbpBsIFhmP5iUfKi+rac+bHEIX8u5ohKHC1Xc:7qevLjBVFnHHj+bHELkoP1X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.e4cc0629bb37a2abf2c47fe8363e07e0_JC.exe

Files

NEAS.e4cc0629bb37a2abf2c47fe8363e07e0_JC.exe
.exe windows:4 windows x86

eefb93388633b6c3a3acfe70ba25255f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
FindResourceA
LoadResource
GetTickCount
RaiseException
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
MultiByteToWideChar
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetProcAddress
HeapSize
SetEndOfFile
SetStdHandle
GetStdHandle
SetHandleCount
GetCurrentProcess
TerminateProcess
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
ExitProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
GetSystemTime
GetTimeZoneInformation
SetFilePointer
RtlUnwind
DeleteFileA
GetFileType
CloseHandle
CreateFileA
WriteFile
GetLastError
ReadFile
GetCommandLineA
SearchPathA
LockResource
SizeofResource
FindFirstFileA
FindNextFileA
FindClose
GetFileAttributesA
GetDriveTypeA
GetLocalTime
lstrcmpiA
HeapFree
HeapAlloc
FlushFileBuffers
CompareStringW
lstrcmpA
CompareStringA
SetEnvironmentVariableA

user32

SendMessageA
DestroyMenu
GetDC
ReleaseDC
GetSystemMetrics
PostMessageA
SetCursor
ClientToScreen
SetCursorPos
MoveWindow
ScreenToClient
GetCursorPos
GetWindowRect
MessageBoxA
SetWindowTextA
EndDialog
GetWindowTextA
SetFocus
GetDlgItem
DialogBoxParamA
AppendMenuA
CreatePopupMenu
SetTimer
DestroyWindow
ShowCursor
GetSystemMenu
DeleteMenu
GetMenuItemInfoA
SetMenuItemInfoA
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
PostQuitMessage
GetCursor
EnableWindow
KillTimer
SetClassLongA
GetClientRect
ShowWindow
InvalidateRect
BeginPaint
EndPaint
SetCapture
ReleaseCapture
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
SetWindowLongA
GetWindowLongA
DefWindowProcA
TrackPopupMenu
CheckMenuItem

gdi32

GetTextExtentPoint32A
DeleteEnhMetaFile
SetTextColor
SetBkColor
CreateSolidBrush
GetStockObject
SetWinMetaFileBits
SetEnhMetaFileBits
PlayEnhMetaFile
CreatePalette
DeleteObject
CreateDIBitmap
SetDIBitsToDevice
BitBlt
SelectPalette
SetSystemPaletteUse
RealizePalette
GetDeviceCaps

ddraw

DirectDrawCreate

dsound

ord1

avifil32

AVIStreamGetFrameClose
AVIFileInit
AVIFileExit
AVIStreamInfoA
AVIStreamReadFormat
AVIStreamLength
AVIStreamRead
AVIStreamGetFrame
AVIFileGetStream
AVIStreamRelease
AVIFileRelease
AVIFileOpenA
AVIFileInfoA
AVIStreamGetFrameOpen

shell32

ShellExecuteA

comdlg32

GetOpenFileNameA
ChooseColorA
GetSaveFileNameA

Sections

.text
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 808KB - Virtual size: 806KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eefb93388633b6c3a3acfe70ba25255f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ddraw

dsound

avifil32

shell32

comdlg32

Sections

.text Size: 280KB - Virtual size: 276KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 20KB - Virtual size: 69KB

.rsrc Size: 808KB - Virtual size: 806KB

.text
Size: 280KB - Virtual size: 276KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 20KB - Virtual size: 69KB

.rsrc
Size: 808KB - Virtual size: 806KB