Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

NEAS.9cf5f...e0.exe

windows7-x64

7

NEAS.9cf5f...e0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.9cf5f122981ebad449fbdd35342067e0.exe

  • Size

    114KB

  • Sample

    231013-zbph2ach4y

  • MD5

    9cf5f122981ebad449fbdd35342067e0

  • SHA1

    349b72620ede9d3dce51675c651cea6498f83bdd

  • SHA256

    d8670bbc398028e0ff3dac678a439b73bc1a2216f1c5ced55f25d5b1818f3d25

  • SHA512

    813f05452252ce58bd559d0e609ad678a441a00e2fb5cf7fc5d0cea5778546aae0aa7db6228519a4cdd9d84c372523fdbc62560c82b04e36e3a61f348046200a

  • SSDEEP

    3072:0Op/vOBPDB9mxZ6vf+LX4b8gfcJYvQd2H/:0uOKZFgVf

Score
7/10

Malware Config

Targets

    • Target

      NEAS.9cf5f122981ebad449fbdd35342067e0.exe

    • Size

      114KB

    • MD5

      9cf5f122981ebad449fbdd35342067e0

    • SHA1

      349b72620ede9d3dce51675c651cea6498f83bdd

    • SHA256

      d8670bbc398028e0ff3dac678a439b73bc1a2216f1c5ced55f25d5b1818f3d25

    • SHA512

      813f05452252ce58bd559d0e609ad678a441a00e2fb5cf7fc5d0cea5778546aae0aa7db6228519a4cdd9d84c372523fdbc62560c82b04e36e3a61f348046200a

    • SSDEEP

      3072:0Op/vOBPDB9mxZ6vf+LX4b8gfcJYvQd2H/:0uOKZFgVf

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks