NEAS[.]3b89f1a6e7517c054f07639017292e80[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.3b89f1a6e7517c054f07639017292e80.exe
Size

4.2MB
MD5

3b89f1a6e7517c054f07639017292e80
SHA1

e6541d06795490edc9015ea9af7dc1fd5dbab6d3
SHA256

b795faaef9f4aced287ce288f66440fe153825a0f27091f7fba11f8588719c2b
SHA512

9af744aae74b7e8915577ed0ba2079c50e3d3586de494c8ebc24fb20ac799fab636df2bae2793d4ccccf5378e00b3c25591dbdeaf28e9d2c6f2bada61fa1b3a9
SSDEEP

98304:rNWeesGGRAD6zwAg0lrd8bGjl60Pj1LHAFbPKi5B:s4JRLwmlrd8bGhj0PKiD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.3b89f1a6e7517c054f07639017292e80.exe

Files

NEAS.3b89f1a6e7517c054f07639017292e80.exe
.exe windows:4 windows x86 arch:x86

3f03677e33470bfa8aca40b7b50f91ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

kernel32

GetModuleHandleA
GetCommandLineW
GetConsoleMode
WritePrivateProfileStringW
GetProcAddress
LoadLibraryA
FreeLibrary
LockResource
LoadResource
FindResourceW
GetLastError
GetModuleFileNameW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetCommandLineA
GetLocalTime
GetStartupInfoA
CloseHandle
CompareFileTime
CompareStringW
ConvertDefaultLocale
CopyFileW
CreateDirectoryW
CreateEventW
CreateFileW
DeleteCriticalSection
DeleteFileW
DeviceIoControl
EnumResourceLanguagesW
ExpandEnvironmentStringsW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstChangeNotificationW
FindFirstFileW
FindNextChangeNotification
FindNextFileW
FreeResource
GetCompressedFileSizeW
GetCPInfoExW
GetCurrentDirectoryW
GetCurrentProcess
GetDateFormatW
GetDiskFreeSpaceW
GetDriveTypeW
GetExitCodeProcess
GetExitCodeThread
GetFileAttributesW
GetFileSize
GetFileTime
GetFullPathNameW
GetLocaleInfoW
GetLogicalDriveStringsW
GetModuleHandleW
GetPrivateProfileIntW
GetPrivateProfileStringW
GetShortPathNameW
GetStartupInfoW
GetSystemDefaultLangID
GetSystemDirectoryW
GetTempFileNameW
GetTempPathW
GetThreadLocale
GetUserDefaultLangID
GetVersion
GetVersionExA
GetVersionExW
GetVolumeInformationW
GetWindowsDirectoryW
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalUnlock
InterlockedCompareExchange
InterlockedExchange
IsBadStringPtrA
IsBadStringPtrW
GetSystemPowerStatus
LoadLibraryW
LocalAlloc
LocalFileTimeToFileTime
LocalFree
lstrcpynW
lstrlenA
lstrlenW
MoveFileExW
MoveFileW
MulDiv
MultiByteToWideChar
OpenProcess
ReadFile
RemoveDirectoryW
ResetEvent
SetCurrentDirectoryW
SetEndOfFile
SetEvent
SetFileAttributesW
SetFilePointer
SetFileTime
SetLastError
SetThreadLocale
SetThreadPriority
SetUnhandledExceptionFilter
SetVolumeLabelW
SizeofResource
Sleep
SystemTimeToFileTime
TerminateProcess
TerminateThread
UnhandledExceptionFilter
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile

user32

DestroyIcon
DispatchMessageW
DrawEdge
DrawFocusRect
DrawFrameControl
DrawStateW
DrawTextExW
DrawTextW
EmptyClipboard
EnableMenuItem
EnableWindow
EndDeferWindowPos
EndDialog
EqualRect
ExitWindowsEx
FillRect
FindWindowExW
FindWindowW
FrameRect
GetAsyncKeyState
GetCapture
GetClassInfoW
GetClientRect
GetClipboardData
GetCursorPos
GetDCEx
GetDesktopWindow
GetDlgCtrlID
GetDlgItem
GetDoubleClickTime
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyNameTextW
GetKeyState
GetLastActivePopup
GetMenuDefaultItem
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoW
GetMenuState
GetMessagePos
GetMessageW
GetParent
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindowDC
GetWindowLongW
GetWindowPlacement
GetWindowRect
GrayStringW
InflateRect
InsertMenuW
IntersectRect
DeleteMenu
IsChild
IsClipboardFormatAvailable
IsIconic
IsMenu
IsRectEmpty
IsWindow
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapW
LoadCursorW
LoadIconW
LoadImageW
LoadMenuW
LoadStringW
LockWindowUpdate
MapVirtualKeyW
MessageBeep
MessageBoxW
ModifyMenuW
MoveWindow
OffsetRect
OpenClipboard
PeekMessageW
PostMessageW
PtInRect
RedrawWindow
RegisterClipboardFormatW
RegisterHotKey
ReleaseCapture
ReleaseDC
RemoveMenu
ScreenToClient
SendMessageW
SetCapture
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetRectEmpty
SetTimer
SetWindowLongW
SetWindowPos
SetWindowRgn
ShowCursor
ShowWindow
SubtractRect
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutW
TrackPopupMenuEx
UnionRect
UnregisterHotKey
UpdateWindow
WindowFromDC
VkKeyScanA
InvalidateRect
CreatePopupMenu
CreateMenu
CreateIconIndirect
CopyImage
CopyAcceleratorTableW
CloseClipboard
ClientToScreen
ChildWindowFromPointEx
CheckMenuRadioItem
CheckMenuItem
CharNextW
CallWindowProcW
BeginDeferWindowPos
AppendMenuW
AdjustWindowRectEx
CopyRect

shell32

CommandLineToArgvW

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
??2@YAPAXI@Z
??3@YAXPAX@Z

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rbxgm
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3f03677e33470bfa8aca40b7b50f91ad

Headers

File Characteristics

Imports

version

kernel32

user32

shell32

msvcrt

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 4.0MB

.tls Size: 8KB - Virtual size: 4KB

.rsrc Size: 128KB - Virtual size: 125KB

.rbxgm Size: 1.8MB - Virtual size: 1.8MB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 4.0MB

.tls
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 128KB - Virtual size: 125KB

.rbxgm
Size: 1.8MB - Virtual size: 1.8MB