Overview

overview

8

Static

static

3

NEAS.66559...40.exe

windows7-x64

3

NEAS.66559...40.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.66559de6e8ffc1f6a1e43b812927b240.exe

  • Size

    66KB

  • Sample

    231021-z7vpxsfe98

  • MD5

    66559de6e8ffc1f6a1e43b812927b240

  • SHA1

    e64dee042355298a97f9ca69b502729046eebebf

  • SHA256

    c16b77535a76aaf07117496723ba44ca5eb8860dd0442834cfebf647ab01674a

  • SHA512

    a7c23774e05b545132ba5ab1059bf2aaecc2288b294f6ccade45fbd0b8444663cbbce0083c57a036f84dc77783ef79da77af7249bc6cabef1d9bf91e02f19f4f

  • SSDEEP

    1536:gimack/VeBvmJm7N3SWy2z/70NMWh/1nkEkLMPgjMIch5FI:gdA/VeBvmS3SWJ70NMWrgLSY7

Score
8/10
discovery

Malware Config

Targets

    • Target

      NEAS.66559de6e8ffc1f6a1e43b812927b240.exe

    • Size

      66KB

    • MD5

      66559de6e8ffc1f6a1e43b812927b240

    • SHA1

      e64dee042355298a97f9ca69b502729046eebebf

    • SHA256

      c16b77535a76aaf07117496723ba44ca5eb8860dd0442834cfebf647ab01674a

    • SHA512

      a7c23774e05b545132ba5ab1059bf2aaecc2288b294f6ccade45fbd0b8444663cbbce0083c57a036f84dc77783ef79da77af7249bc6cabef1d9bf91e02f19f4f

    • SSDEEP

      1536:gimack/VeBvmJm7N3SWy2z/70NMWh/1nkEkLMPgjMIch5FI:gdA/VeBvmS3SWJ70NMWrgLSY7

    Score
    8/10
    discovery

    • Contacts a large (569) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Deletes itself

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks