Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

NEAS.0bb3c...JC.exe

windows7-x64

10

NEAS.0bb3c...JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.0bb3ccf16acce19c0425f1c837584820_JC.exe

  • Size

    391KB

  • Sample

    231012-wbcbxseg8s

  • MD5

    0bb3ccf16acce19c0425f1c837584820

  • SHA1

    255c5bb5f807465f426853a89a38c3a588294fc8

  • SHA256

    28360f99c2a7c863c49863527a1754dd0efcf343f50d41afc1f8e050b7cedff3

  • SHA512

    e39c95f171b07e406c0360b138abefb6b5d62b3df04d9c0cdab53a934613d0ecb7e4663de32e3cb04dc33bc08439d37fc932f7beca0b6dfff079e5c843fbaf11

  • SSDEEP

    6144:dC4umWphVf4j27zo1zK4f+dP9+xCOwTdzi1IcX45yV4:H9WphJx7kzlfUFGwTdnyVu

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.0bb3ccf16acce19c0425f1c837584820_JC.exe

    • Size

      391KB

    • MD5

      0bb3ccf16acce19c0425f1c837584820

    • SHA1

      255c5bb5f807465f426853a89a38c3a588294fc8

    • SHA256

      28360f99c2a7c863c49863527a1754dd0efcf343f50d41afc1f8e050b7cedff3

    • SHA512

      e39c95f171b07e406c0360b138abefb6b5d62b3df04d9c0cdab53a934613d0ecb7e4663de32e3cb04dc33bc08439d37fc932f7beca0b6dfff079e5c843fbaf11

    • SSDEEP

      6144:dC4umWphVf4j27zo1zK4f+dP9+xCOwTdzi1IcX45yV4:H9WphJx7kzlfUFGwTdnyVu

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks