NEAS[.]4a3bd25b9f33a5e10e840a16f85130e0[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.4a3bd25b9f33a5e10e840a16f85130e0.exe
Size

4.6MB
MD5

4a3bd25b9f33a5e10e840a16f85130e0
SHA1

0b8258fc33a22c5f6f30bd73f2a1f1d722ec407e
SHA256

e1cc5e77b1be258dee1258818fa036507d82cec2212ba109f507481341d44a4e
SHA512

d8a4e3fa1c7056e8d5157e64a423b721abe8acb4aaef342554cea51f111365593b72fbdf8143d37cd31f3ef60f7a4c401a39e3eab5196230384b59babe7e4632
SSDEEP

12288:wpZExAsfuUQVRcrT1k+5/OF7L/GAGwZVUXG2dv/C+6zTWcV3a2PlFyJL6ZoCpGjr:f6XRUU7C4ZSdQqs3q6Zo3ii07o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.4a3bd25b9f33a5e10e840a16f85130e0.exe

Files

NEAS.4a3bd25b9f33a5e10e840a16f85130e0.exe
.exe windows:4 windows x64

14be261d8cb4824f74c1c62713afdbb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

libegl

eglBindAPI
eglChooseConfig
eglCreateContext
eglCreatePbufferSurface
eglCreateWindowSurface
eglDestroySurface
eglGetDisplay
eglGetError
eglInitialize
eglMakeCurrent
eglSwapBuffers
eglSwapInterval

libglesv2

glActiveTexture
glAttachShader
glBindAttribLocation
glBindBuffer
glBindFramebuffer
glBindRenderbuffer
glBindTexture
glBlendColor
glBlendFunc
glBlendFuncSeparate
glBlitFramebufferANGLE
glCheckFramebufferStatus
glClear
glClearColor
glClearStencil
glColorMask
glCompileShader
glCreateProgram
glCreateShader
glDeleteFramebuffers
glDepthFunc
glDisable
glDisableVertexAttribArray
glDrawArrays
glEnable
glEnableVertexAttribArray
glFramebufferRenderbuffer
glFramebufferTexture2D
glGenFramebuffers
glGenRenderbuffers
glGenTextures
glGetIntegerv
glGetProgramiv
glGetShaderiv
glGetUniformLocation
glIsTexture
glLineWidth
glLinkProgram
glReadPixels
glRenderbufferStorage
glRenderbufferStorageMultisampleANGLE
glSampleCoverage
glScissor
glShaderSource
glStencilFunc
glStencilMask
glStencilOp
glTexImage2D
glTexParameteri
glUniform1i
glUniform4fv
glUniformMatrix4fv
glUseProgram
glVertexAttribPointer
glViewport

gdi32

CreateCompatibleDC
CreateRectRgn
DeleteDC
SetStretchBltMode
StretchDIBits

kernel32

CloseHandle
CreateEventW
CreateMutexW
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetPrivateProfileStringW
GetProcAddress
GetStartupInfoW
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryW
QueryPerformanceCounter
ReleaseMutex
RtlAddFunctionTable
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetEvent
SetUnhandledExceptionFilter
Sleep
SleepEx
TerminateProcess
TerminateThread
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WritePrivateProfileStringW
__C_specific_handler

msvcrt

__dllonexit
__iob_func
__lconv_init
__set_app_type
__setusermatherr
__wgetmainargs
__winitenv
_amsg_exit
_beginthreadex
_cexit
_clearfp
_control87
_fmode
_initterm
_lock
_onexit
_unlock
_wcmdln
_wfopen
abort
calloc
clock
exit
fclose
fopen
fprintf
free
fwrite
malloc
memcpy
memset
printf
puts
signal
strlen
strncmp
swprintf
swscanf
vfprintf
wcscat
wcscmp
wcsrchr
wcstol

user32

AdjustWindowRect
CloseTouchInputHandle
CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageW
EnableWindow
GetDC
GetForegroundWindow
GetKeyState
GetMessageW
GetSystemMetrics
GetTouchInputInfo
GetWindowLongPtrW
GetWindowLongW
GetWindowRect
IsIconic
LoadCursorW
LoadIconW
MessageBoxA
PostMessageW
RegisterClassW
RegisterTouchWindow
ReleaseCapture
ReleaseDC
SetCapture
SetCursor
SetCursorPos
SetFocus
SetWindowLongPtrW
SetWindowLongW
SetWindowPlacement
SetWindowPos
ShowCursor
TranslateMessage
UnregisterClassW
UpdateWindow

Sections

.text
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 217KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 512B - Virtual size: 137B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 512B - Virtual size: 301B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14be261d8cb4824f74c1c62713afdbb4

Headers

File Characteristics

Imports

libegl

libglesv2

gdi32

kernel32

msvcrt

user32

Sections

.text Size: 188KB - Virtual size: 187KB

.data Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 1.4MB - Virtual size: 1.4MB

.pdata Size: 9KB - Virtual size: 8KB

.xdata Size: 13KB - Virtual size: 12KB

.bss Size: - Virtual size: 217KB

.idata Size: 7KB - Virtual size: 7KB

.CRT Size: 512B - Virtual size: 104B

.tls Size: 512B - Virtual size: 104B

.rsrc Size: 1.4MB - Virtual size: 1.4MB

/4 Size: 512B - Virtual size: 80B

/19 Size: 4KB - Virtual size: 3KB

/31 Size: 512B - Virtual size: 137B

/45 Size: 512B - Virtual size: 301B

/57 Size: 512B - Virtual size: 72B

.text
Size: 188KB - Virtual size: 187KB

.data
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 1.4MB - Virtual size: 1.4MB

.pdata
Size: 9KB - Virtual size: 8KB

.xdata
Size: 13KB - Virtual size: 12KB

.bss
Size: - Virtual size: 217KB

.idata
Size: 7KB - Virtual size: 7KB

.CRT
Size: 512B - Virtual size: 104B

.tls
Size: 512B - Virtual size: 104B

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

/4
Size: 512B - Virtual size: 80B

/19
Size: 4KB - Virtual size: 3KB

/31
Size: 512B - Virtual size: 137B

/45
Size: 512B - Virtual size: 301B

/57
Size: 512B - Virtual size: 72B