Overview

overview

9

Static

static

3

NEAS.a09d3...a0.exe

windows7-x64

9

NEAS.a09d3...a0.exe

windows10-2004-x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.a09d312f38e06535df48e366f612a2a0.exe

  • Size

    156KB

  • Sample

    231013-zbw8wafa89

  • MD5

    a09d312f38e06535df48e366f612a2a0

  • SHA1

    5fcdd79d8f559b54c0b1e78ac15b84d193a92a14

  • SHA256

    fb4a0ac7d6e6af39db5d6acc82491e5e8e1a065bc7f8890100a1addbf2b62b27

  • SHA512

    f189cdaeb7d2722d56263ef7b30ca25ba684f362048cd5bd9de68b5edbb2e957ecffc44699574eb6cca61a4b255cbe3634205b2ae5230db62032223ce75c5466

  • SSDEEP

    3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0Y:RqKB+tOkWKR0iJ0Y

Score
9/10
ransomware

Malware Config

Targets

    • Target

      NEAS.a09d312f38e06535df48e366f612a2a0.exe

    • Size

      156KB

    • MD5

      a09d312f38e06535df48e366f612a2a0

    • SHA1

      5fcdd79d8f559b54c0b1e78ac15b84d193a92a14

    • SHA256

      fb4a0ac7d6e6af39db5d6acc82491e5e8e1a065bc7f8890100a1addbf2b62b27

    • SHA512

      f189cdaeb7d2722d56263ef7b30ca25ba684f362048cd5bd9de68b5edbb2e957ecffc44699574eb6cca61a4b255cbe3634205b2ae5230db62032223ce75c5466

    • SSDEEP

      3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0Y:RqKB+tOkWKR0iJ0Y

    Score
    9/10
    ransomware

    • Renames multiple (55) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks