NEAS[.]36504945cb1d37a2c3f0670e264c8ca0[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

NEAS.36504...a0.exe

windows7-x64

NEAS.36504...a0.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

NEAS.36504945cb1d37a2c3f0670e264c8ca0.exe

Resource

win7-20231020-en

revengerat spam stealer trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.36504945cb1d37a2c3f0670e264c8ca0.exe

Resource

win10v2004-20231020-en

revengerat spam stealer trojan

windows10-2004-x64

5 signatures

150 seconds

General

Target

NEAS.36504945cb1d37a2c3f0670e264c8ca0.exe
Size

166KB
MD5

36504945cb1d37a2c3f0670e264c8ca0
SHA1

96a300eb4d0635382bf391d8a70fc47e9ab84fff
SHA256

d7568d03eadad1ac3b020116029245df00d468c244c052e92aa3b970085a1530
SHA512

1de3939288cd15ed264f460e5a3a8f3ac0881684474b268e70a76e9189216b6efb3b61fcd16cf6ce4742d2586de0a52a0ac1c09f9286cf30e60724dab0100ed4
SSDEEP

3072:h3Bp3Hd1NdAn3B/laKKqGHrxO37XaYRDsY4WcbmuwE07TIQ:hX3XNdmB/IK89S7TVsYpDE4

Score

1^/10

Malware Config

Signatures

Files

NEAS.36504945cb1d37a2c3f0670e264c8ca0.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

4d:96:5b:0e:93:f9:0a:8b:4c:44:bb:88:09:0d:5b:99
Certificate

Issuer

CN=Chandler

Not Before

12/11/2023, 10:14

Not After

13/11/2033, 10:14

Subject

CN=Chandler

27:b2:1a:08:2b:fb:da:8e:ea:21:23:09:0b:51:46:12:24:96:d3:02
Signer

Actual PE Digest

27:b2:1a:08:2b:fb:da:8e:ea:21:23:09:0b:51:46:12:24:96:d3:02

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy