Overview

overview

8

Static

static

1

NEAS.43f7b...JC.msi

windows7-x64

8

NEAS.43f7b...JC.msi

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.43f7b5da7325dbb81a88d0fcdfcac24cb0c8e71d34a32d2cb6964b789de83f44msi_JC.unknown

  • Size

    2.9MB

  • Sample

    231007-vw1dtagd57

  • MD5

    d2e0cd954d263120eec5d9a4ed5982aa

  • SHA1

    c3fc1b42f5ed243f75bfe3647187c41696900004

  • SHA256

    43f7b5da7325dbb81a88d0fcdfcac24cb0c8e71d34a32d2cb6964b789de83f44

  • SHA512

    0fff947f6a6124e2d279ef0343ca0fdcfde4e4371faed4448acc7fdf4c2a05e7c1c3855d0e5d69d729511235fd3de42cc3d14fe069d8cbb22231466b995b6257

  • SSDEEP

    49152:dtzP/DQtSwBLlw6f4H7GxIcrq6x4dYdJSYG6Kk2f2gZgBZgQfpN31go:P3nWn4bGbq6adYdsYGLPygQfpB

Score
8/10
persistence

Malware Config

Targets

    • Target

      NEAS.43f7b5da7325dbb81a88d0fcdfcac24cb0c8e71d34a32d2cb6964b789de83f44msi_JC.unknown

    • Size

      2.9MB

    • MD5

      d2e0cd954d263120eec5d9a4ed5982aa

    • SHA1

      c3fc1b42f5ed243f75bfe3647187c41696900004

    • SHA256

      43f7b5da7325dbb81a88d0fcdfcac24cb0c8e71d34a32d2cb6964b789de83f44

    • SHA512

      0fff947f6a6124e2d279ef0343ca0fdcfde4e4371faed4448acc7fdf4c2a05e7c1c3855d0e5d69d729511235fd3de42cc3d14fe069d8cbb22231466b995b6257

    • SSDEEP

      49152:dtzP/DQtSwBLlw6f4H7GxIcrq6x4dYdJSYG6Kk2f2gZgBZgQfpN31go:P3nWn4bGbq6adYdsYGLPygQfpB

    Score
    8/10
    persistence

    • Sets service image path in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks