Overview

overview

7

Static

static

7

NEAS.2b031...e0.exe

windows7-x64

7

NEAS.2b031...e0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.2b031d786f4075bf4b064e80aff443e0.exe

  • Size

    50KB

  • Sample

    231014-wd5q9agf2w

  • MD5

    2b031d786f4075bf4b064e80aff443e0

  • SHA1

    a0bea145b57ad9e084cc5698a437ba670d14b4ef

  • SHA256

    e3d89d5f4fa5a0408636a04612124c2f017df3a0da1417cdd337c1f25eb68ba1

  • SHA512

    e8e0150d0c2138e537f930f0cd54af020d6f1152080814f46e9bf5ee48da0e4ef7c2577be419610ad91c20a41ca4d268bd1bfb3d60415741271256cfa36a2f3f

  • SSDEEP

    1536:/KzjVnIEhZz0yFki1S+W498UOjhGuRvAd6:kVnBhZz0y7o+W6AhGw+6

Score
7/10
upx

Malware Config

Targets

    • Target

      NEAS.2b031d786f4075bf4b064e80aff443e0.exe

    • Size

      50KB

    • MD5

      2b031d786f4075bf4b064e80aff443e0

    • SHA1

      a0bea145b57ad9e084cc5698a437ba670d14b4ef

    • SHA256

      e3d89d5f4fa5a0408636a04612124c2f017df3a0da1417cdd337c1f25eb68ba1

    • SHA512

      e8e0150d0c2138e537f930f0cd54af020d6f1152080814f46e9bf5ee48da0e4ef7c2577be419610ad91c20a41ca4d268bd1bfb3d60415741271256cfa36a2f3f

    • SSDEEP

      1536:/KzjVnIEhZz0yFki1S+W498UOjhGuRvAd6:kVnBhZz0y7o+W6AhGw+6

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks