NEAS[.]13f728b46b745bc82e618f16f1feea80[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.13f728b46b745bc82e618f16f1feea80.exe
Size

56KB
MD5

13f728b46b745bc82e618f16f1feea80
SHA1

78f0c6f25f53b32132e97927f38d99728e9d3fb1
SHA256

a52a7be987879d2c76013b4914daf2649f359272bc905c9b4ec161f9b4fc6ba3
SHA512

df006117950e7a9109722b4fffabfa56719dfab6695f92e59b33ea54fc206f3a6c66c3b0004f60fd82378e2af3a3cb453c810b3a49cf0f361f2f5561be110a25
SSDEEP

1536:OB9pINfiaC5rTuJkJgXDgFWN+OVllt8aeRPU5t:OB9pINfiaKaJkJgXUFi+OVll3eRPU5t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.13f728b46b745bc82e618f16f1feea80.exe

Files

NEAS.13f728b46b745bc82e618f16f1feea80.exe
.exe windows:4 windows x86

2c5db96c160e3ba1ed0fc8b4718de4a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToDosDateTime
SetThreadPriority
GetThreadLocale
UTRegister
GetFileSizeEx
SetThreadIdealProcessor
GetLocalTime
ReadConsoleOutputAttribute
VirtualQueryEx
CreateFileMappingW
SetConsoleHardwareState

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE