Overview

overview

8

Static

static

3

NEAS.19c1e...20.exe

windows7-x64

3

NEAS.19c1e...20.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.19c1e3cb222168ba5effab1756f03620.exe

  • Size

    119KB

  • Sample

    231101-q7mvmsbh98

  • MD5

    19c1e3cb222168ba5effab1756f03620

  • SHA1

    f16c29f5c45e2b6c0f5c4bdf52228b025498702c

  • SHA256

    78d5297ba8fd1ed87a1c16c479990d7fb2cfc7aadb720fdb4b7f4e4535c4c1d5

  • SHA512

    c3d815d4d9b65c714b9be9d3913ced0e2aa9ceb4233dcc9f168296f609c1e48ae580eb95e0a8b2e36dbb1b38d31975fcf701d1ebc5fbc6c3075dde8d6cbd153a

  • SSDEEP

    3072:ze7Rfmhuy/XvIYKXGlQZNaKuMXtifC8w2qBtS99:ze7Rf2uy/NCOKTYC12R99

Score
8/10
discovery

Malware Config

Targets

    • Target

      NEAS.19c1e3cb222168ba5effab1756f03620.exe

    • Size

      119KB

    • MD5

      19c1e3cb222168ba5effab1756f03620

    • SHA1

      f16c29f5c45e2b6c0f5c4bdf52228b025498702c

    • SHA256

      78d5297ba8fd1ed87a1c16c479990d7fb2cfc7aadb720fdb4b7f4e4535c4c1d5

    • SHA512

      c3d815d4d9b65c714b9be9d3913ced0e2aa9ceb4233dcc9f168296f609c1e48ae580eb95e0a8b2e36dbb1b38d31975fcf701d1ebc5fbc6c3075dde8d6cbd153a

    • SSDEEP

      3072:ze7Rfmhuy/XvIYKXGlQZNaKuMXtifC8w2qBtS99:ze7Rf2uy/NCOKTYC12R99

    Score
    8/10
    discovery

    • Contacts a large (538) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Deletes itself

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks