d988b7773021c9ee2f8918ae6bcdc6d0_NEAS | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d988b7773021c9ee2f8918ae6bcdc6d0_NEAS
Size

63KB
MD5

d988b7773021c9ee2f8918ae6bcdc6d0
SHA1

7fa2c9b21bea22ecc64a02427e86c9b4495f67fc
SHA256

21ced7138dd770ae3ca6a2c0af57e4a21bd624ce29d238d3b6d3abab968dc346
SHA512

f696e2ef6fcfffd1771d2c5425df242635ec3c368f3bbedd5621ad33c696a65a9dcb4d800a9b0758a41e933879d07e3ee79a945120a09c3c1a34c047f54e6a62
SSDEEP

1536:zV5KcobGqGjLq+B6J68egUY7y1FdANyHAsXtWkh:fNoTL08eO8QNm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d988b7773021c9ee2f8918ae6bcdc6d0_NEAS

Files

d988b7773021c9ee2f8918ae6bcdc6d0_NEAS
.exe windows:4 windows x86 arch:x86

90933b1972b69eae85ce175ab0c83489

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommError
SetUserGeoID
WaitNamedPipeW
SetFileTime
EnumTimeFormatsEx
MapViewOfFileExNuma
GetVersionExW
SetConsoleCP
TlsAlloc
OpenSemaphoreA
ExpungeConsoleCommandHistoryW
SetFirmwareEnvironmentVariableExW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE