Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
NEAS.NEASNEAS4fb8c1347c9e520c1a6d21540d1bd2453651038f44ed8eb24948f55a1d6ecd41exeexeexe_JC.exe
-
Size
1.7MB
-
Sample
231013-t8g8bsbh31
-
MD5
d5b310c4152bc3bedbcb88d855377d77
-
SHA1
16c64f2dc8a3b97fa22c834f8cbb12de994cbf5a
-
SHA256
4fb8c1347c9e520c1a6d21540d1bd2453651038f44ed8eb24948f55a1d6ecd41
-
SHA512
3491010b479ca022671522a0d2c5d20621e7890e6de86f2eefc54ee145d4f027d421b409099c944e7a3afd9c672506b72bdb27ca28df2c10b07a91890b423577
-
SSDEEP
49152:T8mdIHWVogwK5/AXx1RPIf44B81jKn/VS5pXw6QY:T8mdIHW/JKyl+Fl5QY
Static task
static1
Behavioral task
behavioral1
Sample
NEAS.NEASNEAS4fb8c1347c9e520c1a6d21540d1bd2453651038f44ed8eb24948f55a1d6ecd41exeexeexe_JC.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
NEAS.NEASNEAS4fb8c1347c9e520c1a6d21540d1bd2453651038f44ed8eb24948f55a1d6ecd41exeexeexe_JC.exe
Resource
win10v2004-20230915-en
Malware Config
Targets
-
-
Target
NEAS.NEASNEAS4fb8c1347c9e520c1a6d21540d1bd2453651038f44ed8eb24948f55a1d6ecd41exeexeexe_JC.exe
-
Size
1.7MB
-
MD5
d5b310c4152bc3bedbcb88d855377d77
-
SHA1
16c64f2dc8a3b97fa22c834f8cbb12de994cbf5a
-
SHA256
4fb8c1347c9e520c1a6d21540d1bd2453651038f44ed8eb24948f55a1d6ecd41
-
SHA512
3491010b479ca022671522a0d2c5d20621e7890e6de86f2eefc54ee145d4f027d421b409099c944e7a3afd9c672506b72bdb27ca28df2c10b07a91890b423577
-
SSDEEP
49152:T8mdIHWVogwK5/AXx1RPIf44B81jKn/VS5pXw6QY:T8mdIHW/JKyl+Fl5QY
Score7/10-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of NtCreateThreadExHideFromDebugger
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-