Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

NEAS.a5d40...40.exe

windows7-x64

7

NEAS.a5d40...40.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.a5d40872d05137e574dacef2149acf40.exe

  • Size

    132KB

  • Sample

    231103-s6h66sdh4x

  • MD5

    a5d40872d05137e574dacef2149acf40

  • SHA1

    76eabeae178e0d2f3ca1429b2e9282627e7a4695

  • SHA256

    bd95e31e7180c1929a8d0d6afb8a738aaba94cfd50a50b22e25ac94eb4854eff

  • SHA512

    3001e1f7a5f2840469c43e3706e901ab566360fc4f47d541150bc5f965d776379c97cf5d0cde1686b532aea7d3d20aafc81f23bee2c6f1bd83d8cf431b280629

  • SSDEEP

    3072:J3UG0Trhel16r6cLlFSEDfO/rdVb2C/tld2w056Ap8wtJ+8:J3ZCYmGMNfzYHd2fplT

Score
7/10
persistence

Malware Config

Targets

    • Target

      NEAS.a5d40872d05137e574dacef2149acf40.exe

    • Size

      132KB

    • MD5

      a5d40872d05137e574dacef2149acf40

    • SHA1

      76eabeae178e0d2f3ca1429b2e9282627e7a4695

    • SHA256

      bd95e31e7180c1929a8d0d6afb8a738aaba94cfd50a50b22e25ac94eb4854eff

    • SHA512

      3001e1f7a5f2840469c43e3706e901ab566360fc4f47d541150bc5f965d776379c97cf5d0cde1686b532aea7d3d20aafc81f23bee2c6f1bd83d8cf431b280629

    • SSDEEP

      3072:J3UG0Trhel16r6cLlFSEDfO/rdVb2C/tld2w056Ap8wtJ+8:J3ZCYmGMNfzYHd2fplT

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks