NEAS[.]590c7172d74edf6d889a16c613e2ef00[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.590c7172d74edf6d889a16c613e2ef00.exe
Size

5KB
MD5

590c7172d74edf6d889a16c613e2ef00
SHA1

0372c7cd6c46f7246f6cb2d16d7a9331bb42aabf
SHA256

267791a731a263d369abd528509927292b261f56ddacd621964b760545dd6d07
SHA512

ad1dccb2f57bfd3b5d4c2455c73044df7b0b9346a98857af93f02c0806c2f95fdb8beb45502c7f759b948368e7e92d0d0735678dcfa30ab9e292d8f1ffc9895c
SSDEEP

48:C727DR6F3KH/48tzj3mukTBu7oQqCqOLAkbg2u3Sk5lqfRSIvFTu4iy4N3:P7A5W44zj3iukQuOMU/G5g1F4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.590c7172d74edf6d889a16c613e2ef00.exe

Files

NEAS.590c7172d74edf6d889a16c613e2ef00.exe
.exe windows:4 windows x86

22a0ff52bac252b1b4b412c79ecf7c69

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

flashdll

FlashInit
FlashParseOptionString
FlashLoad
FlashFinish

msvcr70

_getch
_initterm
_except_handler3
printf
memset
_c_exit
_exit
_XcptFilter
_cexit
exit
__p___initenv
_amsg_exit
__getmainargs
_kbhit
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__dllonexit
_onexit
_controlfp

kernel32

GetModuleHandleA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE