Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

NEAS.5a6f2...JC.exe

windows7-x64

8

NEAS.5a6f2...JC.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.5a6f2bef8250643387465d7b88a73d00_JC.exe

  • Size

    58KB

  • Sample

    231031-12c4csee7w

  • MD5

    5a6f2bef8250643387465d7b88a73d00

  • SHA1

    36c16e4a6e1234c65a675a2c20a1542e1e759658

  • SHA256

    52c6f26d5b3c4221b662d94ccabf1074de5673f4d114ea195b7bd1b697b8c806

  • SHA512

    74d9bb86f5f46ece7ae9197fefd4ab2858e3b685d00984df8e4c4dcdb30c2c7211476a23ffdb9f7f07dc4eb00fad67043529a5ea7e5fc142da666bd5baaef9a2

  • SSDEEP

    384:+5rDuuOFpEauMLfQDb2pproT/z4m5m1GJE6Al6z8yXDTLhrwnT:MDcpEBMLfQcubV5wGE96YyXDTLdoT

Score
8/10
evasion

Malware Config

Targets

    • Target

      NEAS.5a6f2bef8250643387465d7b88a73d00_JC.exe

    • Size

      58KB

    • MD5

      5a6f2bef8250643387465d7b88a73d00

    • SHA1

      36c16e4a6e1234c65a675a2c20a1542e1e759658

    • SHA256

      52c6f26d5b3c4221b662d94ccabf1074de5673f4d114ea195b7bd1b697b8c806

    • SHA512

      74d9bb86f5f46ece7ae9197fefd4ab2858e3b685d00984df8e4c4dcdb30c2c7211476a23ffdb9f7f07dc4eb00fad67043529a5ea7e5fc142da666bd5baaef9a2

    • SSDEEP

      384:+5rDuuOFpEauMLfQDb2pproT/z4m5m1GJE6Al6z8yXDTLhrwnT:MDcpEBMLfQcubV5wGE96YyXDTLdoT

    Score
    8/10
    evasion

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks