NEAS[.]ac3dcd2611cfef08055bcc0ce7586140[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ac3dcd2611cfef08055bcc0ce7586140.exe
Size

797KB
MD5

ac3dcd2611cfef08055bcc0ce7586140
SHA1

272ebb24a81178cf3352f962a713a2f629e4b8d0
SHA256

9c2406767088d0d4ba04c66b95f3d77149e40c29e513f38cc4b30284b5408061
SHA512

12790569c70101e27321e639f83579c3475d9a63b247a103b405fec85398ac1c4350faad1adcad3ea7352a50898dccb4458f5b73f149a29a4fc2981ba3451ab4
SSDEEP

12288:c3fSVp7/XP+iGrUCSVTgpPiJUHvguz68mdgqzN+r0LuXdb4N:sfSVp7/XP+5rU9VNJUIuz6Fb+r0LAdb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.ac3dcd2611cfef08055bcc0ce7586140.exe

Files

NEAS.ac3dcd2611cfef08055bcc0ce7586140.exe
.exe windows:4 windows x86

ba87fe4a4c5424d432a34c8c7930b658

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
CompareStringW
SetEndOfFile
ReadFile
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
CreateFileA
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
SetFilePointer
WriteFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
CompareStringA
SetEnvironmentVariableA
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
HeapAlloc
VirtualFree
HeapCreate
HeapDestroy
WideCharToMultiByte
CloseHandle
GetLastError
RaiseException
GetProcAddress
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapFree
GetSystemTime
GetTimeZoneInformation
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
GlobalReAlloc
GetPrivateProfileStringA
GlobalGetAtomNameA
GlobalDeleteAtom
GlobalAddAtomA
GetLocalTime
GetTickCount
LockResource
LoadResource
FindResourceA
FreeResource
lstrlenW
GetVersionExA
_lclose
_lwrite
_llseek
OpenFile

user32

GetWindowTextLengthA
GetDlgItemTextA
SetFocus
SendMessageA
MoveWindow
PostMessageA
ShowWindow
SetWindowTextA
CheckDlgButton
GetWindowTextA
SetDlgItemTextA
GetDlgItem
GetParent
GetFocus
CreateWindowExA
GetClientRect
EndDialog
LoadStringA
GetKeyState
InvalidateRect
IsWindow
DestroyMenu
GetMenuItemID
GetSubMenu
GetMenuItemCount
DrawMenuBar
SetMenu
AppendMenuA
DeleteMenu
SetWindowPos
DestroyWindow
ScreenToClient
GetWindowRect
SetWindowLongA
GetWindowLongA
GetDesktopWindow
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
IsDialogMessageA
GetMessageA
GetMenu
SetCapture
ReleaseCapture
BeginPaint
EndPaint
CheckRadioButton
WindowFromPoint
MessageBeep
GetNextDlgTabItem
GetClassNameA
GetMenuState
GetClassInfoA
CallWindowProcA
MapDialogRect
CreateWindowExW
DialogBoxParamA
DrawTextA
DrawFocusRect
FillRect
GetWindow
ClientToScreen
GetClassLongA
EnableWindow
SetClassLongA
IsIconic
GetDlgCtrlID
SetForegroundWindow
GetCursorPos
SetCursorPos
IsWindowVisible
DefWindowProcA
PostQuitMessage
FindWindowA
WinHelpA
LoadCursorA
LoadIconA
RegisterClassA
UpdateWindow
LoadAcceleratorsA
IsDlgButtonChecked
SendDlgItemMessageA
BringWindowToTop
FindWindowExA

gdi32

MoveToEx
LineTo
SetTextColor
SelectObject
SetBkColor
DeleteObject
GetObjectA

glcodage

EncodeChampU
DecodeMnemoSico
De_octet_2
To_2_oct
EncodeChampT
EncodeMnemoSico
EncodeChampA
EncodeChampL
isPrefixChar
To_3_oct
DecodeMnemoSicoPrefix

glgetdat

GetNMS
GetWNbDecimal
GetNbDecimal
GetTypeDonnee
GetLastPrice
GetDataIndex
GetMarche
GetTickSize
GetPrixVente
GetDCours
GetMnemo
GetPrixAchat
GetCodeNego
GetCoefAjuste
GetQuotite
GetCompensation
GetPremCours
GetCloture

gldstrat

DicoStrat_ChrchValeurPatte
DicoStrat_ChrchStrat
DicoStrat_GLCodeToLiffeCode
DicoStrat_GetPtrValeur
DicoStrat_ChrchStratParPatte
DicoStrat_GetPtrStrat

gldico

DicoLireGLID
DicoRechGLIDPrefix
StartDicoTransaction1
GetDicoValeur
SearchDicoValeur
StopDicoTransaction1
DicoRecupPrefixGLID

glcodv35

codV35txt
codV35GLID
codV35E
decodV35E

gloutil

OutilSizeDlgFromFont
OutilGetRGBColor
OutilLancerExecutable
OutilGetIniStrSSS
OrdreLireMessage
OrdreChercherMessage
GLNOrdre_PasCotation
GLNO_DecodeOrdre
GLNO_LancerConsult
GlClientGetPointeur
LireDefRafSLE
GlClientDdeRapide
OutilGetIniStrSIS
OutilFracStrToPrx
OutilFracIsPriceValid
OutilUseMouseTrading
OutilGetIniStrIIS
OutilStrToPosWndEcrN
OutilPosWindowToString
OutilLirePilotageNego
OutilGetMenuString
OutilSetMenuString
OutilGetRCLangue
OutilGetRCSousLangue
OutilGetGLFluxIni
hOutilCreateDialog
GLNOLireDebutTON
OutilGetJJMM
OutilLongToAscLen
OutilGetPen
OutilGetBrush
OutilRealizePalette
OutilLireValFenLiee
GLNO_EnvoyerOrdre
LireNIAQuote
GLNO_EnvoyerOrdreGroupe
LireNIASimple
unOutilGetDlgID
OutilCreateMenuPopup
OutilLancerMenuPopup
OutilGetIniBoolSS
OutilSetUseMouseTrading
GLNO_ClearingRemplirStruct
strtrim
FormaterWCours
DoubleToStr
FormaterDateJJMM
GLNO_RemplirValeurCB
GLNO_ClearingRemplirCBCle
OutilStrToDate
OutilWriteIniIntSI
OutilGetIniBoolSI
FormaterDate
nOutilLoadString
OutilMessage
strntrim
GLNOEcrireDebutTON
OutilGetRepLancement
FormaterHeureHHMMSS
GLNOLireProchainTON
OutilAPropos
OutilFenHeureVersLong
FormaterHeure
ReleaseDefautID
GetDefautChamp
GetDefautGrpMnemoID
GLNO_ClearingCheck
GLNOEcrireProchainTON
GLNO_LimiteTailleEdit
OutilWriteIniStrSIS
OutilConvertHeureToGMT
BBAjouteSeparateurBarreInit
BBAjouteDefBoutonBarreInit
BBFixeInfosBarreInit
OutilWriteIniIntII
OutilSetDlgFont
EcrireNIASimple
unOutilGetLangueStringID
finAjustementDeplacementRedimension
AjustementRedimension
AjustementDeplacement
OutilHideShowCaption
nOutilDialogBoxParam
OutilWriteIniStrISS
OutilGetIniStrISS
OutilAddMessage
OutilFinMessage
FormaterWGlobalPrix
OutilSelectCouleur32
OutilGetIniIntSI
hOutilLoadMenu
LireDefNegoSLE
LireDefSLE
LireDefSLEEx
LireNombreDefSLE
EcrireNIAQuote
GLNO_ReponseSLEEx
OutilInitWindowPos
GLNO_DdeSLEToDernierNIA
OutilFenPrixVersDouble
OutilCreerFonte
OutilSelectFonte
OutilWriteIniStrIIS
OutilGetIniStrIII
OutilGetIniIntII
nOutilDialogBox
hOutilCreateDialogParam
OutilWriteWindowPos
GLNOSensToSensLangue
OutilResetInit
OutilGetNoInit
GetFenPrioriteAcces
DemandePrioriteAcces
LongToStr
OutilUseDoubleClic
GLNO_DdeDemanderDernierNIA
GlClientInitiateDDE
OutilVerifierRessource

glcc

LWSupprimerUnItem
LWDessinItem
LWDessinItemChamp
LWLireItemHautGauche
PricectlInitialiser
LWAllouerMemoire
LWDemanderDessinItems
LWEntamerSaisie
LWFixerItemCurseur
LWGetPointeur
bTreeListInitList
bTreeListOpenCloseAllBrothers
LWDemanderDessinTout
LWAttrTexte
lpTreeListGetVisibleNodeAt
TreeListSetData
hTreeListGetRoot
lTreeListGetNbChildNode
hTreeListGetChildAt
lpTreeListGetNodeData
hTreeListGetNextNode
TreeListEmpty
hTreeListInsertNode
pTreeListGetData
LWFixerStyle
LWDemanderDessinTitre
LWLireStyle
PricectlAppel
LWInsererUnItem
WOutilSelectContenuLangueS
LWLireItemAffichables
LWLireNombreItems
LWAjouterUnItem
LWLireTableCouleur
LWEcrireTableCouleur
LWLireInit
WOutilLireContenuS
WOutilEcrireContenuS
LWLireEtatAffChamps
LWViderItem
MakeEditJLDate
PricectlGetNbTick
LWDemanderDessinPlageItems
LWDeplacerUnItem
LWFixerNombreItems
LWInitialiser
LWFixerStyleTitre
LWLireItemCurseur

glcollec

bArraySearchIdx
ArrayEmpty
lArrayGetIndexAtIdx
ArrayDestroy
ArrayInit
nArrayAddIndex
ArrayUpdate
bArrayAdd
ArrayRemoveAt
bArraySetAt
bArrayAllocElt
lpArrayGetAtIdx
lArrayGetIndex

glordre

GLO_IsNegociableSLE

Sections

.text
Size: 540KB - Virtual size: 540KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ba87fe4a4c5424d432a34c8c7930b658

Headers

File Characteristics

Imports

kernel32

user32

gdi32

glcodage

glgetdat

gldstrat

gldico

glcodv35

gloutil

glcc

glcollec

glordre

Sections

.text Size: 540KB - Virtual size: 540KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 12KB - Virtual size: 44KB

.rsrc Size: 208KB - Virtual size: 206KB

.text
Size: 540KB - Virtual size: 540KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 12KB - Virtual size: 44KB

.rsrc
Size: 208KB - Virtual size: 206KB