Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

NEAS.NEAS2...JC.exe

windows7-x64

10

NEAS.NEAS2...JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.NEAS278c4777393e769ec349302e3ecf5ee1exe_JC.exe

  • Size

    1.8MB

  • Sample

    231013-sftvzscg22

  • MD5

    278c4777393e769ec349302e3ecf5ee1

  • SHA1

    e64270e535e28f60b7a95a8dc33b92c0504a778e

  • SHA256

    3f4f11df34da58b8b2801f061a9082bbfc857ae4f5ccec55980f91c2343346ff

  • SHA512

    b3065f6d18784d64a5b1bef10dc1717a9fcd1cc3061414050f7af052b8b48e8473bc258d9052635e0c472297efec62faf0d2ded9d2300278f8b71b77b5198b81

  • SSDEEP

    12288:NXxgw38/JJw3ioqbw3ZJFrvKw3ioqbw38/JWdw38/JJw3ioqbw3ZJFrvKw3ioqb2:FDVhvtDqVhvtZQVhvtDqVhvt/

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.NEAS278c4777393e769ec349302e3ecf5ee1exe_JC.exe

    • Size

      1.8MB

    • MD5

      278c4777393e769ec349302e3ecf5ee1

    • SHA1

      e64270e535e28f60b7a95a8dc33b92c0504a778e

    • SHA256

      3f4f11df34da58b8b2801f061a9082bbfc857ae4f5ccec55980f91c2343346ff

    • SHA512

      b3065f6d18784d64a5b1bef10dc1717a9fcd1cc3061414050f7af052b8b48e8473bc258d9052635e0c472297efec62faf0d2ded9d2300278f8b71b77b5198b81

    • SSDEEP

      12288:NXxgw38/JJw3ioqbw3ZJFrvKw3ioqbw38/JWdw38/JJw3ioqbw3ZJFrvKw3ioqb2:FDVhvtDqVhvtZQVhvtDqVhvt/

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks