Overview

overview

7

Static

static

3

NEAS.8bd23...90.exe

windows7-x64

7

NEAS.8bd23...90.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.8bd23dc283e836fd8b8fabadfba12990.exe

  • Size

    105KB

  • Sample

    231021-z9yjlagh55

  • MD5

    8bd23dc283e836fd8b8fabadfba12990

  • SHA1

    7003445a95757b70d3cd3bd64bfa728e5d489162

  • SHA256

    aaf08234f3492d5e3720d6116e7590ad907072772055dec4d9c20504542be685

  • SHA512

    4c2aa9a017ec6910c16ac256620b7f73b0f7003e5137ecc871f8475c17a906c1a41bde5701f20b495bb1fc31f7a9c10d6eac6404f2d7733ce7a53933b1678aa6

  • SSDEEP

    1536:qOPhlosUoAarDX1JJaAyqcHeOYMP+eYLXkC1zK5wkbiufO9Lja1sf+:qOPlfJJlkGGBYAC1zKSqiFLjesm

Score
7/10

Malware Config

Targets

    • Target

      NEAS.8bd23dc283e836fd8b8fabadfba12990.exe

    • Size

      105KB

    • MD5

      8bd23dc283e836fd8b8fabadfba12990

    • SHA1

      7003445a95757b70d3cd3bd64bfa728e5d489162

    • SHA256

      aaf08234f3492d5e3720d6116e7590ad907072772055dec4d9c20504542be685

    • SHA512

      4c2aa9a017ec6910c16ac256620b7f73b0f7003e5137ecc871f8475c17a906c1a41bde5701f20b495bb1fc31f7a9c10d6eac6404f2d7733ce7a53933b1678aa6

    • SSDEEP

      1536:qOPhlosUoAarDX1JJaAyqcHeOYMP+eYLXkC1zK5wkbiufO9Lja1sf+:qOPlfJJlkGGBYAC1zKSqiFLjesm

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks