Overview

overview

7

Static

static

3

NEAS.c7eaf...JC.exe

windows7-x64

7

NEAS.c7eaf...JC.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.c7eaf90c1d8848640c5a820c827ee090_JC.exe

  • Size

    183KB

  • Sample

    231101-ktnxwseb7y

  • MD5

    c7eaf90c1d8848640c5a820c827ee090

  • SHA1

    246e8d750553a97ed93ab0830e28e4750e53fa03

  • SHA256

    356ff70b7ca3aae99bfdf181ef9fea27ab85f11f8f225d85f66a74a40cc176ef

  • SHA512

    3e6da7ad106d7c4f8bfa447ee2f3bae14e76ef81c20c928466540d36a4560e05b146e06e56de5940b58f555462990834b1a3a61df6f19ad9dbe5b61f3baeba71

  • SSDEEP

    3072:mYDDQYmVX9y/vHw4/QljoV43DgvP5pSBlf+ATxbUX9ff1TmrcSQLPuYxS:mYDUVX9KvwpkgBBlfhbUd0LePN

Score
7/10

Malware Config

Targets

    • Target

      NEAS.c7eaf90c1d8848640c5a820c827ee090_JC.exe

    • Size

      183KB

    • MD5

      c7eaf90c1d8848640c5a820c827ee090

    • SHA1

      246e8d750553a97ed93ab0830e28e4750e53fa03

    • SHA256

      356ff70b7ca3aae99bfdf181ef9fea27ab85f11f8f225d85f66a74a40cc176ef

    • SHA512

      3e6da7ad106d7c4f8bfa447ee2f3bae14e76ef81c20c928466540d36a4560e05b146e06e56de5940b58f555462990834b1a3a61df6f19ad9dbe5b61f3baeba71

    • SSDEEP

      3072:mYDDQYmVX9y/vHw4/QljoV43DgvP5pSBlf+ATxbUX9ff1TmrcSQLPuYxS:mYDUVX9KvwpkgBBlfhbUd0LePN

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks