NEAS[.]26e8b875034079befd66bc38d647cf90_JC[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.26e8b875034079befd66bc38d647cf90_JC.exe
Size

44KB
MD5

26e8b875034079befd66bc38d647cf90
SHA1

e96223f8fd9a8223d83acb624ea0cce46fa59dfb
SHA256

cfc9f195878642e15ef0b70bc6bb7445941295a9a18227fdc37baeb5c37443ee
SHA512

a315f63f21ebdd2be2f2f0108ac93a1129c90c905d8d41f9a9e2ec861ae2f131a028afac52bafdb5a52b7beb18471358fe34b2e2e5d21e0c133029ef81268c9d
SSDEEP

768:zTAiYUVaQDKVRRZgqq6UFFAKcls0ceVA1qud:HAqamKVO6s0hVA1ld

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.26e8b875034079befd66bc38d647cf90_JC.exe

Files

NEAS.26e8b875034079befd66bc38d647cf90_JC.exe
.exe windows:5 windows x86

b54757880e34d193f6c36b5f50a2be11

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cabinet

ord13

mscms

CreateColorTransformW
CreateProfileFromLogColorSpaceW
CreateDeviceLinkProfile

gdi32

SetWindowOrgEx
GetWindowOrgEx
CreateDCA
CheckColorsInGamut

kernel32

ExitProcess
GetConsoleCursorInfo
GetProcAddress
GetModuleHandleW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ