NEAS[.]672cec027d25910940f2bfe196585850[.]exe | Triage

Sharing

General

Target

NEAS.672cec027d25910940f2bfe196585850.exe
Size

119KB
MD5

672cec027d25910940f2bfe196585850
SHA1

42e0e603a139d0ff93523079e7cdb48e8eb4ab0c
SHA256

50333b560799675ff250d3ed7730f207e05c38d3acec51da740ae77cf47da19b
SHA512

3173ded181ff086e2108412212a09b5a4d16cc189cbde8c4de6d0ad1d1af654f55a52e2b31a9c9809c7a6b3fc328cf4f9330a79e7819c77a69670a2e3d7a7037
SSDEEP

3072:baLpjF+4GqbQStXOBeue+m9xBGgxHIeMQzuYXHi:bap04J5a1e+cggueMQNXC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.672cec027d25910940f2bfe196585850.exe

Files

NEAS.672cec027d25910940f2bfe196585850.exe
.exe windows:4 windows x86

22913927771e9277cb6af1670cce53ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleTitleW
OpenConsoleW
GetStateFolder
ReadFileEx
CreateTapePartition
QueryThreadProfiling
MoveFileA
InterlockedPopEntrySList
CreateDirectoryExW
SetUnhandledExceptionFilter
LZDone

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE