Overview

overview

10

Static

static

3

NEAS.8aeb5...00.exe

windows7-x64

10

NEAS.8aeb5...00.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.8aeb5240faaec30da5a86f77340bc500.exe

  • Size

    355KB

  • Sample

    231014-wnvn2aeg22

  • MD5

    8aeb5240faaec30da5a86f77340bc500

  • SHA1

    63259ef35d27eadf98749248977155c05b80ec77

  • SHA256

    76fa111a1bcf2852b68cca96eeedf5f3f958671afbaec88c75523fb96755eac6

  • SHA512

    79d8ba5c4d3d3e131fd5b1eb142f6ee6bbf758ae2d779746a51e5ff4a908f61fca944f0b699ce5784cb65ecb6dd06afaf3516fadaa2b303aca2616c30f051b6e

  • SSDEEP

    6144:/pW2bgbbV28okoS1oWMkdlZQ5iioct0IwdNOutf:/pW2IoioS66f

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.8aeb5240faaec30da5a86f77340bc500.exe

    • Size

      355KB

    • MD5

      8aeb5240faaec30da5a86f77340bc500

    • SHA1

      63259ef35d27eadf98749248977155c05b80ec77

    • SHA256

      76fa111a1bcf2852b68cca96eeedf5f3f958671afbaec88c75523fb96755eac6

    • SHA512

      79d8ba5c4d3d3e131fd5b1eb142f6ee6bbf758ae2d779746a51e5ff4a908f61fca944f0b699ce5784cb65ecb6dd06afaf3516fadaa2b303aca2616c30f051b6e

    • SSDEEP

      6144:/pW2bgbbV28okoS1oWMkdlZQ5iioct0IwdNOutf:/pW2IoioS66f

    Score
    10/10
    evasionpersistencetrojan

    • UAC bypass

      evasiontrojan

    • Disables Task Manager via registry modification

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Modifies system executable filetype association

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks