Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

NEAS.c2168...b0.exe

windows7-x64

10

NEAS.c2168...b0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.c2168f3ec6e2b573a41b05b7a0fdbab0.exe

  • Size

    112KB

  • Sample

    231013-zey7mshd88

  • MD5

    c2168f3ec6e2b573a41b05b7a0fdbab0

  • SHA1

    93176a65392414e989dac27f4ed0d5b47d779407

  • SHA256

    4f851bbe57a0665d6eea82fd3bb0d16f86c2b5762096b31b6c0af412a99f294e

  • SHA512

    f0975d1f28f3ca92bbeedefe09a15c021a9b38d48d3a500ab1685565074c35f8957c2895362013590bc947859c2e7158d1c11025d0624646079c7cb0c3dfeeff

  • SSDEEP

    1536:mLrtjVUo0IUGsx2oehZrzDGPVaM2LmJ9VqDlzVxyh+CbxMQguz6V34euullnZ+:mLr9Cx93NaFmJ9IDlRxyhTbhgu+tAcr+

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.c2168f3ec6e2b573a41b05b7a0fdbab0.exe

    • Size

      112KB

    • MD5

      c2168f3ec6e2b573a41b05b7a0fdbab0

    • SHA1

      93176a65392414e989dac27f4ed0d5b47d779407

    • SHA256

      4f851bbe57a0665d6eea82fd3bb0d16f86c2b5762096b31b6c0af412a99f294e

    • SHA512

      f0975d1f28f3ca92bbeedefe09a15c021a9b38d48d3a500ab1685565074c35f8957c2895362013590bc947859c2e7158d1c11025d0624646079c7cb0c3dfeeff

    • SSDEEP

      1536:mLrtjVUo0IUGsx2oehZrzDGPVaM2LmJ9VqDlzVxyh+CbxMQguz6V34euullnZ+:mLr9Cx93NaFmJ9IDlRxyhTbhgu+tAcr+

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks