NEAS[.]6f03ec60269a12b5067044a49f64c77108828bec971cacd120bf777d4c2b8fc0[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.6f03ec60269a12b5067044a49f64c77108828bec971cacd120bf777d4c2b8fc0.zip
Size

29KB
MD5

cec86152ce730b7de25203a169e133c0
SHA1

c49caf5fa6635dd8fbbe26251ee45e46da512c6b
SHA256

6f03ec60269a12b5067044a49f64c77108828bec971cacd120bf777d4c2b8fc0
SHA512

9bcf5ea41d1c54288feddcbe01002a4f62a559f98e4a8a8b7b61f4d6d9e5e3aa5b6f476084820401b9854675fb60c740d3efa1c786ad6e00f9f8a1cc11d8e5a5
SSDEEP

768:BWkliAnUQYkYKzqbjC5RqHjrYReyZx+l0oKriCPRDL5:IySsz6jGeyZx+l0TRh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/document.txt .exe

Files

NEAS.6f03ec60269a12b5067044a49f64c77108828bec971cacd120bf777d4c2b8fc0.zip
.zip
document.txt .exe
.exe windows:4 windows x86

87bed5a7cba00c7e1f4015f1bdae2183

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress

Sections

��t
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��ta
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

��a
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE