NEAS[.]132cc4d201c5b77407d437c34600e490[.]exe | Triage

Sharing

General

Target

NEAS.132cc4d201c5b77407d437c34600e490.exe
Size

42KB
MD5

132cc4d201c5b77407d437c34600e490
SHA1

8c8d5086087353fcfa555e1298e41f9a83e32716
SHA256

82e278f42bf1351fddef2530a7427c616c979a83630fc824b17d7466796a7e08
SHA512

866c12286499be8f6978d7df93cec3f95d7641ee87482d2edfa732a381b69f1a7332fa5e6841675a978037dde1c0757f2e7df54466876afdc6756cf12194fe08
SSDEEP

384:1QTLlAv11o//4mQSUqhZtY8zYA4JK7dE7lbgFoFgtRMv8/TFdk:ePlAv11S/wsZtY8zYFJK7delM4q52

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.132cc4d201c5b77407d437c34600e490.exe

Files

NEAS.132cc4d201c5b77407d437c34600e490.exe
.exe windows:35376 windows x86

7a7803027531302026dedc7b5f6025f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress

Sections

jyzbzbyq
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

qjbyjzby
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jayayara
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

briazzza
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ