Overview

overview

10

Static

static

3

NEAS.5f865...JC.exe

windows7-x64

10

NEAS.5f865...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.5f86523c221d52e6b6f8169b4bc82ab0_JC.exe

  • Size

    324KB

  • Sample

    231104-x7wacafg74

  • MD5

    5f86523c221d52e6b6f8169b4bc82ab0

  • SHA1

    d17bf3f43fb4775945987be725c05885b68976e6

  • SHA256

    36465b5521ac0dbb100834c187cf7654477f436effeac152c5419e25aa4b9a56

  • SHA512

    a6cfc45af38617a21339850972a3188d98971c9b53041329335e4504f1aa763721a115226ae5b7e5c4b3ccb5de4c289647b8cdc4ff837aa3b63030d0ac9fd589

  • SSDEEP

    6144:JLPyTU4amheRzhzd5IF6rfBBcVPINRFYpfZvT6zAWq6JMf3us8ws:JWY4VITp5IFy5BcVPINRFYpfZvTmAWqI

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.5f86523c221d52e6b6f8169b4bc82ab0_JC.exe

    • Size

      324KB

    • MD5

      5f86523c221d52e6b6f8169b4bc82ab0

    • SHA1

      d17bf3f43fb4775945987be725c05885b68976e6

    • SHA256

      36465b5521ac0dbb100834c187cf7654477f436effeac152c5419e25aa4b9a56

    • SHA512

      a6cfc45af38617a21339850972a3188d98971c9b53041329335e4504f1aa763721a115226ae5b7e5c4b3ccb5de4c289647b8cdc4ff837aa3b63030d0ac9fd589

    • SSDEEP

      6144:JLPyTU4amheRzhzd5IF6rfBBcVPINRFYpfZvT6zAWq6JMf3us8ws:JWY4VITp5IFy5BcVPINRFYpfZvTmAWqI

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks