NEAS[.]fb5db0f759007fd8685f2182525a7950_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.fb5db0f759007fd8685f2182525a7950_JC.exe
Size

646KB
MD5

fb5db0f759007fd8685f2182525a7950
SHA1

572ac08f566879d60e5f5c68a0705dd961a71f44
SHA256

9d1d8616a51f91267f51bb9021a459263071ef28b28811d28732818bf2a246c3
SHA512

f4dc195528ef2b3e7c550779ab6e74ae1daec12b5e3667d8e12845ed798d5bbddc89ba2057ea70bad404f7b4d369400d78abf5676dc261f1f83bf6bdb9548a85
SSDEEP

12288:8l0hGiRBy9aEPVwDAR/S3IMoBL7oinmF5y4C1Emy:8l1iRY9vyDAR/S3cBfoimF5y4C1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.fb5db0f759007fd8685f2182525a7950_JC.exe

Files

NEAS.fb5db0f759007fd8685f2182525a7950_JC.exe
.exe windows:4 windows x86

979fd70592ab9223aa5eb1d62da34f7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

ChoosePixelFormat
CreateFontA
DeleteDC
GetStockObject
SelectObject
SetPixelFormat
SwapBuffers

kernel32

CloseHandle
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeLibrary
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
ReleaseSemaphore
SetLastError
SetUnhandledExceptionFilter
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_fdopen
_fstat
_lseek
_read
_write
__getmainargs
__lc_codepage
__mb_cur_max
__p__environ
__p__fmode
__set_app_type
_beginthread
_cexit
_endthread
_errno
_filbuf
_flsbuf
_iob
_onexit
_setmode
_winmajor
abort
atan2
atexit
calloc
cos
fclose
fflush
floor
fopen
fputc
fputs
fread
free
fseek
ftell
fwrite
getenv
getwc
iswctype
localeconv
malloc
memchr
memcpy
memmove
putwc
rand
realloc
setlocale
setvbuf
signal
sin
sprintf
strcmp
strcoll
strcpy
strerror
strftime
strlen
strxfrm
towlower
towupper
ungetc
ungetwc
vfprintf
wcscoll
wcsftime
wcslen
wcsxfrm

opengl32

glAlphaFunc
glBegin
glBindTexture
glBlendFunc
glCallLists
glClear
glClearColor
glColor4ub
glCullFace
glDisable
glEnable
glEnd
glEndList
glFrontFace
glGenLists
glGenTextures
glLineWidth
glListBase
glLoadIdentity
glMatrixMode
glNewList
glOrtho
glPixelStorei
glPopAttrib
glPopMatrix
glPushAttrib
glPushMatrix
glRotated
glScaled
glScissor
glShadeModel
glTexCoord2f
glTexImage2D
glTexParameteri
glTexSubImage2D
glTranslated
glVertex2d
glVertex2f
glVertex2i
glViewport
wglCreateContext
wglDeleteContext
wglMakeCurrent
wglShareLists
wglUseFontOutlinesA

user32

AdjustWindowRectEx
ChangeDisplaySettingsA
CreateWindowExA
DefWindowProcA
DestroyWindow
DispatchMessageA
GetClientRect
GetCursorPos
GetDC
GetSystemMetrics
GetWindowRect
LoadCursorA
LoadIconA
MoveWindow
PeekMessageA
PostMessageA
RegisterClassA
SetCursorPos
SetWindowPos
ShowCursor
ShowWindow
TranslateMessage
UpdateWindow

winmm

timeGetTime

Sections

.text
Size: 515KB - Virtual size: 514KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

979fd70592ab9223aa5eb1d62da34f7e

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

opengl32

user32

winmm

Sections

.text Size: 515KB - Virtual size: 514KB

.data Size: 25KB - Virtual size: 24KB

.rdata Size: 31KB - Virtual size: 31KB

.eh_fram Size: 68KB - Virtual size: 67KB

.bss Size: - Virtual size: 6KB

.idata Size: 5KB - Virtual size: 4KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.text
Size: 515KB - Virtual size: 514KB

.data
Size: 25KB - Virtual size: 24KB

.rdata
Size: 31KB - Virtual size: 31KB

.eh_fram
Size: 68KB - Virtual size: 67KB

.bss
Size: - Virtual size: 6KB

.idata
Size: 5KB - Virtual size: 4KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B