7eff9b799b863a8bb62da7255df327e8d0b9b025ecbe67670598318f23e2e1c8 | Triage

Submit
Reports

Overview

overview

Static

static

7

NEAS.ba72c...00.exe

windows7-x64

NEAS.ba72c...00.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.ba72c9dd5c3d990694f649cc05a6e600.exe
Size

346KB
Sample

231016-w75cksbh42
MD5

ba72c9dd5c3d990694f649cc05a6e600
SHA1

8534bb52562c6b4e7ff74177417ec4d4573a997b
SHA256

7eff9b799b863a8bb62da7255df327e8d0b9b025ecbe67670598318f23e2e1c8
SHA512

1f9e9f1ee055eb2f9d52b51bda62045f7672781f79b3903604dceaf42d410d3e3b018f5aaa94c30aa36f61f3c71b9588fecd80872740070fdcccf5af49ef1f46
SSDEEP

6144:8uIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIYhuIlWqB+G:X6Wq4aaE6KwyF5L0Y2D1PqLb6Wq4G

Score

10^/10

evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

NEAS.ba72c9dd5c3d990694f649cc05a6e600.exe

Resource

win7-20230831-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.ba72c9dd5c3d990694f649cc05a6e600.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  NEAS.ba72c9dd5c3d990694f649cc05a6e600.exe
- Size
  
  346KB
- MD5
  
  ba72c9dd5c3d990694f649cc05a6e600
- SHA1
  
  8534bb52562c6b4e7ff74177417ec4d4573a997b
- SHA256
  
  7eff9b799b863a8bb62da7255df327e8d0b9b025ecbe67670598318f23e2e1c8
- SHA512
  
  1f9e9f1ee055eb2f9d52b51bda62045f7672781f79b3903604dceaf42d410d3e3b018f5aaa94c30aa36f61f3c71b9588fecd80872740070fdcccf5af49ef1f46
- SSDEEP
  
  6144:8uIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIYhuIlWqB+G:X6Wq4aaE6KwyF5L0Y2D1PqLb6Wq4G
Score

10^/10

evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy