NEAS[.]7ef3cd1f02006b252442f9f3457f6ac0[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.7ef3cd1f02006b252442f9f3457f6ac0.exe
Size

1.1MB
MD5

7ef3cd1f02006b252442f9f3457f6ac0
SHA1

59d65a9530e76d8d4cb767aceb46ead387c76df4
SHA256

d4a4e36c1163d060fda513f2ecaa7f714c5e9ba285ae8082ae2a71d995f71b06
SHA512

4f386789a68d110972d2d4bc140aea9c03a8545187eef248b70907aaf9b70edb7788a52abd37e21b9b2a3510a7940c012d1669e5cefbd1852a19472d4f6c4a00
SSDEEP

6144:OAGW2c6X7XTH45hUj6S5AfMU8vZjoYqnZSTtcXTijlydp69VVtAjBvcm7OXVh77L:V4JkjPMh/p6pWIjoVh7q5gsMWjc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.7ef3cd1f02006b252442f9f3457f6ac0.exe

Files

NEAS.7ef3cd1f02006b252442f9f3457f6ac0.exe
.dll windows:6 windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmetad
Size: - Virtual size: 165B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/616
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/6077
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/6574
Size: 474KB - Virtual size: 473KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/8927
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/9483
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/6092
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/6120
Size: 443KB - Virtual size: 442KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: - Virtual size: 48KB

.rdata Size: - Virtual size: 23KB

.buildid Size: 512B - Virtual size: 53B

.data Size: - Virtual size: 468B

.pdata Size: - Virtual size: 1KB

.qtmetad Size: - Virtual size: 165B

.tls Size: - Virtual size: 16B

.reloc Size: - Virtual size: 280B

/616 Size: 10KB - Virtual size: 9KB

/6077 Size: 1KB - Virtual size: 1KB

/6574 Size: 474KB - Virtual size: 473KB

/8927 Size: 47KB - Virtual size: 47KB

/9483 Size: 90KB - Virtual size: 89KB

/6092 Size: 20KB - Virtual size: 20KB

/6120 Size: 443KB - Virtual size: 442KB

.text
Size: - Virtual size: 48KB

.rdata
Size: - Virtual size: 23KB

.buildid
Size: 512B - Virtual size: 53B

.data
Size: - Virtual size: 468B

.pdata
Size: - Virtual size: 1KB

.qtmetad
Size: - Virtual size: 165B

.tls
Size: - Virtual size: 16B

.reloc
Size: - Virtual size: 280B

/616
Size: 10KB - Virtual size: 9KB

/6077
Size: 1KB - Virtual size: 1KB

/6574
Size: 474KB - Virtual size: 473KB

/8927
Size: 47KB - Virtual size: 47KB

/9483
Size: 90KB - Virtual size: 89KB

/6092
Size: 20KB - Virtual size: 20KB

/6120
Size: 443KB - Virtual size: 442KB