NEAS[.]0d4cfc04b8ac24ee9945cf77d76353e0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.0d4cfc04b8ac24ee9945cf77d76353e0.exe
Size

84KB
MD5

0d4cfc04b8ac24ee9945cf77d76353e0
SHA1

796133d06934853ed887c2de81593777ce145e90
SHA256

2dc3071336bdc75ac1bdc72cb662ca5417c0c348b2086690950a25ca6a5edf90
SHA512

9e47f134d355471ab4b03f83dbcdaeab4e9d021fdefb3d2ad4b636b31efdd9765eb6bd63ca8e900b4c7c9ab9c310782c7af45bd492dd1f2b9e31585cd9999481
SSDEEP

1536:ryoCyBkdLGd2mti5qAGJmwz43NkkI1jbfKEBGXMhO/nv7z52OLdLTJLHb+MfSL1o:hBGScmti50J6KkINrKEIXMOPXL3bCra

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.0d4cfc04b8ac24ee9945cf77d76353e0.exe

Files

NEAS.0d4cfc04b8ac24ee9945cf77d76353e0.exe
.exe windows:4 windows x86

5e5e71424d76e8f954312ca3a2ba0232

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
HeapSummary
SetVDMCurrentDirectories
SetConsoleCursor
GlobalAlloc
GetFileSizeEx
GlobalUnWire
UnlockFileEx
FindResourceW
SetCalendarInfoA
TrimVirtualBuffer
GetVolumeInformationA

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 70KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE