Overview

overview

7

Static

static

3

NEAS.a4895...JC.exe

windows7-x64

7

NEAS.a4895...JC.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.a4895431d04df31f6706bab29c13a3a0_JC.exe

  • Size

    208KB

  • Sample

    231101-mb3pfagh95

  • MD5

    a4895431d04df31f6706bab29c13a3a0

  • SHA1

    fb3b62732d84d4daa1c948d86898265befbacaa8

  • SHA256

    496d0f5e3b2ea84ec2ab55371b4fdcd30a863c17247fe4e4fdc2595e5162135d

  • SHA512

    b48af0ca6c5110dbfe54b292553a0f595e8f97e9cad550c79206f9075d6cc3eb824fe0d045a546f52378d9cf57ffa633a2ede824d54462a96f403450b2c4ca31

  • SSDEEP

    6144:arYTgEMnRNL+I3YHB9/vMYRbbdfHKPQEj1:OBrIjU8IPQC

Score
7/10

Malware Config

Targets

    • Target

      NEAS.a4895431d04df31f6706bab29c13a3a0_JC.exe

    • Size

      208KB

    • MD5

      a4895431d04df31f6706bab29c13a3a0

    • SHA1

      fb3b62732d84d4daa1c948d86898265befbacaa8

    • SHA256

      496d0f5e3b2ea84ec2ab55371b4fdcd30a863c17247fe4e4fdc2595e5162135d

    • SHA512

      b48af0ca6c5110dbfe54b292553a0f595e8f97e9cad550c79206f9075d6cc3eb824fe0d045a546f52378d9cf57ffa633a2ede824d54462a96f403450b2c4ca31

    • SSDEEP

      6144:arYTgEMnRNL+I3YHB9/vMYRbbdfHKPQEj1:OBrIjU8IPQC

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks