NEAS[.]0d90e821f20164bdf74cab92b9d6ae10_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.0d90e821f20164bdf74cab92b9d6ae10_JC.exe
Size

176KB
MD5

0d90e821f20164bdf74cab92b9d6ae10
SHA1

281d4bd6d13d6e4d2afc760d5f43871c0b80d59d
SHA256

cc06658d78480949a467438180c1de9e70140537dc7942d1dea82cfe40127047
SHA512

04d7aa038f15b8ee983c6fbf740fc8dcb57d7622a21ab1d7e855a874e02ffdce8556562029560d440639134c3e92479b0530907affa53b7cdd1c52a46f69efb3
SSDEEP

3072:Ymy3c8tPxAXkFqyyC8ruHh/CsQrJo3q5h4VnxK:mRB0g86WJSq6n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.0d90e821f20164bdf74cab92b9d6ae10_JC.exe

Files

NEAS.0d90e821f20164bdf74cab92b9d6ae10_JC.exe
.exe windows:5 windows x86

98feaf0f8f73f7370e6122d9107f77bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

ShellAboutA

msvcrt

_exit
_strrev
_CxxThrowException
__CxxFrameHandler
_EH_prolog
_controlfp
??1type_info@@UAE@XZ
??3@YAXPAX@Z
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
toupper
memmove
strchr

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

kernel32

LocalReAlloc
LocalAlloc
GetCommandLineA
GetProfileIntA
GetStartupInfoA
GetModuleHandleA
LoadLibraryA
GetProcAddress
GlobalCompact
GlobalReAlloc
GlobalAlloc
GlobalFree
lstrcmpA
Sleep
WriteProfileStringA
GlobalLock
GlobalSize
GlobalUnlock
CloseHandle
CreateEventA
CreateThread
ResetEvent
SetEvent
WaitForSingleObject
lstrcpyA
LocalFree
lstrlenA
lstrcatA
GetProfileStringA

gdi32

SetBkColor
SetTextColor

user32

MessageBoxA
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
IsChild
IsDialogMessageA
GetMessageA
LoadAcceleratorsA
CreateWindowExA
LoadStringA
CharNextA
RegisterClassExA
GetSysColorBrush
LoadCursorA
LoadIconA
InvalidateRect
UpdateWindow
ShowWindow
SetDlgItemTextA
CheckMenuRadioItem
GetSubMenu
GetMenu
SetWindowPos
OffsetRect
MapWindowPoints
GetClientRect
EnableWindow
GetDlgItem
CreateDialogParamA
DestroyWindow
GetWindowRect
SetCursor
CheckRadioButton
SetFocus
MessageBeep
SendMessageA
EndDialog
DialogBoxParamA
SetWindowTextA
CloseClipboard
GetClipboardData
OpenClipboard
DestroyMenu
TrackPopupMenuEx
LoadMenuA
DefWindowProcA
ChildWindowFromPoint
ScreenToClient
PostQuitMessage
WinHelpA
EnableMenuItem
IsClipboardFormatAvailable
GetDlgCtrlID
DrawTextA
DrawEdge
GetSysColor
CheckDlgButton
SetDlgItemInt
GetWindowTextA

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

cjuj
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 76KB - Virtual size: 76KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

98feaf0f8f73f7370e6122d9107f77bd

Headers

File Characteristics

Imports

shell32

msvcrt

advapi32

kernel32

gdi32

user32

Sections

.text Size: 72KB - Virtual size: 70KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 12KB - Virtual size: 9KB

cjuj Size: 8KB - Virtual size: 4KB

Size: 76KB - Virtual size: 76KB

.text
Size: 72KB - Virtual size: 70KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 12KB - Virtual size: 9KB

cjuj
Size: 8KB - Virtual size: 4KB