NEAS[.]ca9f272266730081c3b87eb7d11fc550[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

NEAS.ca9f272266730081c3b87eb7d11fc550.exe
Size

15KB
MD5

ca9f272266730081c3b87eb7d11fc550
SHA1

44f911a536d5c90697d98bc7f49b535d9ac57877
SHA256

d5eee47457f98313ada950974aa2a2cdf7b861dc8102efef45ea5ae33dd3c695
SHA512

3466501572f920849cee6632534f362ca0556acd28c785ce5f3bebb9d3833392a69f2a13c0c3005093032c7f1ae1544c1b89483e216d537fc6bc0d0833c3506b
SSDEEP

384:TT9iBhzhgGKH2sg0+3i043LCGXJLmPhpZTzC1:dcSbLCGXqZTzC1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
NEAS.ca9f272266730081c3b87eb7d11fc550.exe

Files

NEAS.ca9f272266730081c3b87eb7d11fc550.exe
.dll windows:6 windows x86 arch:x86

e720f0a0fe20dd899d21d1e99940eafd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LocalAlloc
GetVersionExW
GetCurrentThreadId
UnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime

ole32

CoCreateGuid
CoCreateInstance
CoInitialize
CoUninitialize

winmm

mixerSetControlDetails
mixerGetLineControlsW
mixerGetDevCapsW
mixerGetControlDetailsW
mixerGetLineInfoW
mixerClose

vcruntime140

_except_handler4_common
memset
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__std_type_info_destroy_list

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
free

api-ms-win-crt-runtime-l1-1-0

_cexit
_initterm_e
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm

api-ms-win-crt-math-l1-1-0

_except1

Exports

Exports

ChangeToVol
ChangeVol
GetMute
GetVol
SetMute

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e720f0a0fe20dd899d21d1e99940eafd

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

winmm

vcruntime140

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 1024B - Virtual size: 668B

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 1024B - Virtual size: 668B