Overview

overview

8

Static

static

3

NEAS.3b81c...e0.exe

windows7-x64

7

NEAS.3b81c...e0.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.3b81c519509f5752c0bfb92869ed5ee0.exe

  • Size

    136KB

  • Sample

    231021-z5ewpacd2x

  • MD5

    3b81c519509f5752c0bfb92869ed5ee0

  • SHA1

    594ccb88c2dac88cb23b420408f21d4107d0552e

  • SHA256

    ed73acfe80bd611a8d25e7d40252299a041384a8621e6ed98a2e5bbe917b2209

  • SHA512

    4e3f2f16397d53f77c76460eb5a800f954c9369b94bc4cc36a12ef70aac5081dbf178beb7596572888a2d181f8d5f2612e3baa6faa7c0f7f430760197e607383

  • SSDEEP

    1536:MEsyxft5/xf2xfDEsyxft5Drpc7x0E9UKkTa:MEsm15p67Esm15Dtc7x0E9UKkTa

Score
8/10
upx

Malware Config

Targets

    • Target

      NEAS.3b81c519509f5752c0bfb92869ed5ee0.exe

    • Size

      136KB

    • MD5

      3b81c519509f5752c0bfb92869ed5ee0

    • SHA1

      594ccb88c2dac88cb23b420408f21d4107d0552e

    • SHA256

      ed73acfe80bd611a8d25e7d40252299a041384a8621e6ed98a2e5bbe917b2209

    • SHA512

      4e3f2f16397d53f77c76460eb5a800f954c9369b94bc4cc36a12ef70aac5081dbf178beb7596572888a2d181f8d5f2612e3baa6faa7c0f7f430760197e607383

    • SSDEEP

      1536:MEsyxft5/xf2xfDEsyxft5Drpc7x0E9UKkTa:MEsm15p67Esm15Dtc7x0E9UKkTa

    Score
    8/10
    upx

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks