Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

NEAS.14b15...70.exe

windows7-x64

7

NEAS.14b15...70.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.14b15ffc262beb3bef4ee7baf88ba270.exe

  • Size

    573KB

  • Sample

    231102-t2zh2ahc73

  • MD5

    14b15ffc262beb3bef4ee7baf88ba270

  • SHA1

    bf32eb87bc4fbd19de41dd6cb6268b24c3ac4ef6

  • SHA256

    1bf1c0deca0ce78b46aa6708e2f921af6b04dd044252cf274f6b494ec3c6e387

  • SHA512

    b5400b9e07c606496628b7efe85478b0ab5d34d07dd875be2070d94025dfc70ecad0ab6c0bb9ceb92af0bbc366499fd80234733c46fb3ecb42dd568402e8d963

  • SSDEEP

    12288:dXCNi9BA5O+xdE0SNxv0Y2a2v36l4UflbbMTpoigJzQnzgcz+gy:oWAJrjmTIP6BMyiO8z/+R

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      NEAS.14b15ffc262beb3bef4ee7baf88ba270.exe

    • Size

      573KB

    • MD5

      14b15ffc262beb3bef4ee7baf88ba270

    • SHA1

      bf32eb87bc4fbd19de41dd6cb6268b24c3ac4ef6

    • SHA256

      1bf1c0deca0ce78b46aa6708e2f921af6b04dd044252cf274f6b494ec3c6e387

    • SHA512

      b5400b9e07c606496628b7efe85478b0ab5d34d07dd875be2070d94025dfc70ecad0ab6c0bb9ceb92af0bbc366499fd80234733c46fb3ecb42dd568402e8d963

    • SSDEEP

      12288:dXCNi9BA5O+xdE0SNxv0Y2a2v36l4UflbbMTpoigJzQnzgcz+gy:oWAJrjmTIP6BMyiO8z/+R

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks