Overview

overview

8

Static

static

7

NEAS.16f82...JC.exe

windows7-x64

8

NEAS.16f82...JC.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.16f82b3527d12b7e14b221beeecf3b20_JC.exe

  • Size

    11KB

  • Sample

    231014-qre5vsef8y

  • MD5

    16f82b3527d12b7e14b221beeecf3b20

  • SHA1

    43f5098e6ec69b510cbebac182a8f16cdcd3f53a

  • SHA256

    33f406fe21330695d70c946942924a85a12f1ccdee2fd7d1b65cac1b80d921b0

  • SHA512

    59757a75ba96bce3b685c3f9665f43580039a43bc4edc7f15a1dbeed23f7dbafbd6bbfce337e53df6ba039b11d0b2aa0dcb095e1813846cb2e969bcefdfe75dc

  • SSDEEP

    192:2rvzAA5nEtMET4q4hQ+CnNLBuzqDRidx1EXUTGxZIIW5cVMxkO:mV6xTF+CnNUzqDuxeXUG+LcVMv

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      NEAS.16f82b3527d12b7e14b221beeecf3b20_JC.exe

    • Size

      11KB

    • MD5

      16f82b3527d12b7e14b221beeecf3b20

    • SHA1

      43f5098e6ec69b510cbebac182a8f16cdcd3f53a

    • SHA256

      33f406fe21330695d70c946942924a85a12f1ccdee2fd7d1b65cac1b80d921b0

    • SHA512

      59757a75ba96bce3b685c3f9665f43580039a43bc4edc7f15a1dbeed23f7dbafbd6bbfce337e53df6ba039b11d0b2aa0dcb095e1813846cb2e969bcefdfe75dc

    • SSDEEP

      192:2rvzAA5nEtMET4q4hQ+CnNLBuzqDRidx1EXUTGxZIIW5cVMxkO:mV6xTF+CnNUzqDuxeXUG+LcVMv

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks