Overview

overview

10

Static

static

3

NEAS.a9b66...40.exe

windows7-x64

10

NEAS.a9b66...40.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.a9b669420b4ea02cc203d278bc903e40.exe

  • Size

    549KB

  • Sample

    231101-rlhjgaee8z

  • MD5

    a9b669420b4ea02cc203d278bc903e40

  • SHA1

    f8297040f9eb1e8b08be95d28511558d2a732ff4

  • SHA256

    f6abf05c5b41e0542a8eddb17b623539378af4db057cf13774a4797a65e52236

  • SHA512

    3ece7abd5931b83a3f4e398b8b419855b397186286082f0cf29903d1c303edc82cdb648f74774e433166b50d37219ef48199072db2033af71971645c4de745be

  • SSDEEP

    12288:51bisDUCq6O8+765fNpi8vZ8YK89yRWRit7fRqHHKYdDz:51b1icfvZfKoyTfRqnlR

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.a9b669420b4ea02cc203d278bc903e40.exe

    • Size

      549KB

    • MD5

      a9b669420b4ea02cc203d278bc903e40

    • SHA1

      f8297040f9eb1e8b08be95d28511558d2a732ff4

    • SHA256

      f6abf05c5b41e0542a8eddb17b623539378af4db057cf13774a4797a65e52236

    • SHA512

      3ece7abd5931b83a3f4e398b8b419855b397186286082f0cf29903d1c303edc82cdb648f74774e433166b50d37219ef48199072db2033af71971645c4de745be

    • SSDEEP

      12288:51bisDUCq6O8+765fNpi8vZ8YK89yRWRit7fRqHHKYdDz:51b1icfvZfKoyTfRqnlR

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks