NEAS[.]baef109879246dfce9929fdf0b3f88f0[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.baef109879246dfce9929fdf0b3f88f0.exe
Size

119KB
MD5

baef109879246dfce9929fdf0b3f88f0
SHA1

c79737f73d2df913e101d5f8c0825f73df3423f2
SHA256

f36d17d4306a5e529c457c3300fe8cb138918b1ae64e5c2abd58f2685f133668
SHA512

d16efcc4cbbcc0966edc6c3fae75b482c3774439a00a063359529c452273b76df481ef7e6a990badd753d1c6ec6a0d00d996263aaf4f32077d3c0a7fd376fee3
SSDEEP

3072:JJnH/94LpwYNixeE/z8noVfBAQh7vemWSSQYWMS:JJnHV4WyiwEYnoVfBAQ8eSQ2S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.baef109879246dfce9929fdf0b3f88f0.exe

Files

NEAS.baef109879246dfce9929fdf0b3f88f0.exe
.exe windows:4 windows x86

7797537ab538d16556f7f8ce61aab1b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddLocalAlternateComputerNameA
GetWindowsDirectoryA
GetSystemDefaultLangID
SetComputerNameEx2W
InitAtomTable
AddIntegrityLabelToBoundaryDescriptor
WriteTapemark
CancelWaitableTimer
GetSystemCpuSetInformation

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE