Overview

overview

7

Static

static

7

NEAS.0fe96...JC.exe

windows7-x64

7

NEAS.0fe96...JC.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.0fe96d89232b83fc8c09d297370225e0_JC.exe

  • Size

    50KB

  • Sample

    231014-pp7lnaga24

  • MD5

    0fe96d89232b83fc8c09d297370225e0

  • SHA1

    228e6616aec08e2e66e0d5c81627ee83bb630d3a

  • SHA256

    348920359325050a578884cc515dfc4419400e16de3c89e4ffa8addd95d9b88b

  • SHA512

    76eae99b65bcc2b1f7f218c9b42099dd3f1536218cc4479278b5a988f71c3d4c3983e87a70c49203cf5924bcb46580a74cab9a5217342b45ebc985c2ce6a1050

  • SSDEEP

    1536:pKzjVnIEhZz0yFki1S+W498UOjhGuRvAd6:aVnBhZz0y7o+W6AhGw+6

Score
7/10
upx

Malware Config

Targets

    • Target

      NEAS.0fe96d89232b83fc8c09d297370225e0_JC.exe

    • Size

      50KB

    • MD5

      0fe96d89232b83fc8c09d297370225e0

    • SHA1

      228e6616aec08e2e66e0d5c81627ee83bb630d3a

    • SHA256

      348920359325050a578884cc515dfc4419400e16de3c89e4ffa8addd95d9b88b

    • SHA512

      76eae99b65bcc2b1f7f218c9b42099dd3f1536218cc4479278b5a988f71c3d4c3983e87a70c49203cf5924bcb46580a74cab9a5217342b45ebc985c2ce6a1050

    • SSDEEP

      1536:pKzjVnIEhZz0yFki1S+W498UOjhGuRvAd6:aVnBhZz0y7o+W6AhGw+6

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks