Overview

overview

7

Static

static

7

NEAS.aaa31...b0.exe

windows7-x64

7

NEAS.aaa31...b0.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.aaa31a7ed348d2487f0f73b49c5a72b0.exe

  • Size

    2.0MB

  • Sample

    231022-vznjeshf79

  • MD5

    aaa31a7ed348d2487f0f73b49c5a72b0

  • SHA1

    b57ea79a5fbffdd28bec95c4ac4d510e81afe1b3

  • SHA256

    936b8da58c8cf5a1b53a6a999238b34cc508eca3a71c82e149a10bef45f797bb

  • SHA512

    69f3d6b1f1f9a46f4cf9bc9a9cb23f9e04ed79aa30775f9a25f26aa792e877b625643ebb3683006c45d51889ffaf4c5a1ac44c80a25918ac5cd81dd4b5a18e15

  • SSDEEP

    49152:2Ums477cRIwt1MKU8mGRUauW9ef74Mj7lBdSxx:/w774Dt2PVrW9Q7l7cxx

Score
7/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      NEAS.aaa31a7ed348d2487f0f73b49c5a72b0.exe

    • Size

      2.0MB

    • MD5

      aaa31a7ed348d2487f0f73b49c5a72b0

    • SHA1

      b57ea79a5fbffdd28bec95c4ac4d510e81afe1b3

    • SHA256

      936b8da58c8cf5a1b53a6a999238b34cc508eca3a71c82e149a10bef45f797bb

    • SHA512

      69f3d6b1f1f9a46f4cf9bc9a9cb23f9e04ed79aa30775f9a25f26aa792e877b625643ebb3683006c45d51889ffaf4c5a1ac44c80a25918ac5cd81dd4b5a18e15

    • SSDEEP

      49152:2Ums477cRIwt1MKU8mGRUauW9ef74Mj7lBdSxx:/w774Dt2PVrW9Q7l7cxx

    Score
    7/10
    persistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks