NEAS[.]9f7f8672bf10b4654b8c428491ed68b0[.]exe | Triage

Sharing

General

Target

NEAS.9f7f8672bf10b4654b8c428491ed68b0.exe
Size

110KB
MD5

9f7f8672bf10b4654b8c428491ed68b0
SHA1

9bd9a7758f986724164d2939be74e3f2f4958beb
SHA256

e2f15f55b2fd2bdb1528b92679de84c2660bbab7f435beb9c2a887b0318e6d27
SHA512

7ba07456060d8842cec836767fe67ed402f7ff0252978b99bcae44ea9ba2dbd14d8b8cfae791e44587d0831d8a4d1d0d0af28004270f846a7ed9b613aa87ed3c
SSDEEP

768:x1z6aRK1z6pLe1j999999996cgoYkytbdH4zE0A:zQweh999999996FoYkytbdH4zEh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.9f7f8672bf10b4654b8c428491ed68b0.exe

Files

NEAS.9f7f8672bf10b4654b8c428491ed68b0.exe
.exe windows:4 windows x86

42c4dbd295c85503c861f4931dbd756d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SetFocus
MessageBoxA
EndDialog
DispatchMessageW
SendMessageW
GetDlgItem
DialogBoxParamW
SetCapture
GetWindowTextW
TrackPopupMenu
FlashWindowEx
TranslateAcceleratorA
GetKeyState
GetMessageW
GetDlgItemTextA

kernel32

GetModuleHandleW
HeapAlloc
GetProcessHeap
CloseHandle
HeapFree
GetVersionExW
ExitProcess

comctl32

ord17

Sections

.MPRESS1
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE