NEAS[.]47653859034556f081b5e74aef2ff100[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.47653859034556f081b5e74aef2ff100.exe
Size

119KB
MD5

47653859034556f081b5e74aef2ff100
SHA1

8cdf96c2a840a2e22bb0fa4195e2ed80d07f375f
SHA256

77dc58399ab3a005eaad03c5560bad49039795174f45140d00545289aa29d269
SHA512

d6bc2fd920b22c9b4ecca481294f0e7103e8d3adaa1ca2f541b8e7143e5647e7346153be6b863925fdf7492e1527d45af0c2b90e2a38bb571256169834f898fa
SSDEEP

1536:plNxyhqnFkQL6lHNq+u8Gz3jzYZJl9ZPBdklXJez8btlDqltI1JH9rVsI9tUNZAp:pxJiqnYzlP/kp5LmHaJH9ZsI9tSZKM07

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.47653859034556f081b5e74aef2ff100.exe

Files

NEAS.47653859034556f081b5e74aef2ff100.exe
.exe windows:4 windows x86

ec0cff8abe7aca6a0f969dbb8ef667a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseConsoleHandle
timeEndPeriod
AppPolicyGetThreadInitializationType
FindAtomA
FindFirstStreamW
IsBadReadPtr
OpenFile
SetLocaleInfoW
UpdateCalendarDayOfWeek
WriteProfileStringW
SetCommMask

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 105KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE