NEAS[.]f92da16044079247e1c4fd931259c9d0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.f92da16044079247e1c4fd931259c9d0.exe
Size

31KB
MD5

f92da16044079247e1c4fd931259c9d0
SHA1

cc80662df6fdd573383ce7a579c1da3b169f5b6c
SHA256

850c37fff5b19cc9baafdc2e1176c706b8605a064ac41c70939c489c0653cc2d
SHA512

8e026804190dfdd4818eded474510be882ce36c65b8931f9b8cb0f231b9c377e937d6ef5ba755a4d56f5d4c611e6dec12ee05e005dfde23e2118956d11b8f03c
SSDEEP

384:ukkHfMx3TUMQkOatgoldmPBrX/D1ekhOtq6:u4B9F2LD1ekUtf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.f92da16044079247e1c4fd931259c9d0.exe

Files

NEAS.f92da16044079247e1c4fd931259c9d0.exe
.exe windows:5 windows x86

d304ef8e9e8393c0028c6e2332cf21b3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostMessageA
DialogBoxParamA
SetScrollInfo
MessageBoxA
SetWindowTextA
EndDialog
GetDlgItem
ScrollWindow
DestroyCursor
CharLowerA
ShowCursor
SendMessageA
DestroyMenu

kernel32

GetProcessHeap
CloseHandle
GetStartupInfoA
CreateDirectoryA
GetVersionExA
ExitProcess

comctl32

InitCommonControlsEx

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ