Overview

overview

8

Static

static

1

NEAS.7343b...10.exe

windows7-x64

7

NEAS.7343b...10.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.7343b0aff2cc2a0ff88b9eb18df88b10.exe

  • Size

    8.2MB

  • Sample

    231102-rnrvxsfa65

  • MD5

    7343b0aff2cc2a0ff88b9eb18df88b10

  • SHA1

    ba046253c0cfcca2394aca8e860030ad52ea956f

  • SHA256

    e9333a1b55388cc635201d4839305fcb7ef5b476f3fed9e8ad11884a68b5f1d6

  • SHA512

    98546e32845c2017fe3e5b8035ba9a355e448b7d392744de3158802a06fdd7c1b42ad1b171a7b497079eed45d2fe9577a601fadd63f419c0de0c07c6eb341d42

  • SSDEEP

    196608:QpEEv43CRtOsrqgzp04dM4RzoTjF2d+d+1L6VKIyz+b:IEp34tOsl04dFRzHdN96qz+b

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      NEAS.7343b0aff2cc2a0ff88b9eb18df88b10.exe

    • Size

      8.2MB

    • MD5

      7343b0aff2cc2a0ff88b9eb18df88b10

    • SHA1

      ba046253c0cfcca2394aca8e860030ad52ea956f

    • SHA256

      e9333a1b55388cc635201d4839305fcb7ef5b476f3fed9e8ad11884a68b5f1d6

    • SHA512

      98546e32845c2017fe3e5b8035ba9a355e448b7d392744de3158802a06fdd7c1b42ad1b171a7b497079eed45d2fe9577a601fadd63f419c0de0c07c6eb341d42

    • SSDEEP

      196608:QpEEv43CRtOsrqgzp04dM4RzoTjF2d+d+1L6VKIyz+b:IEp34tOsl04dFRzHdN96qz+b

    Score
    8/10
    upxpersistence

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks