2d8a0a9c54ada10a98f83e3e61261780b011a3c1da201fa7f43ea469f23d270f | Triage

Submit
Reports

Overview

overview

8

Static

static

3

NEAS.dfdae...JC.exe

windows7-x64

7

NEAS.dfdae...JC.exe

windows10-2004-x64

8

Sharing

General

Target

NEAS.dfdaedfc147f6ff36c19f2ebb8009ea3_JC.exe
Size

236KB
Sample

231105-sl1wgshg57
MD5

dfdaedfc147f6ff36c19f2ebb8009ea3
SHA1

ea65a671ec41890a5b519c72a6bef78db1b7e9be
SHA256

2d8a0a9c54ada10a98f83e3e61261780b011a3c1da201fa7f43ea469f23d270f
SHA512

f70c32a7b6ba912585947309664e2df8990ee2d98620c7d059d228856d3c88ae55d9e0d45dc56c20e2b706dcc3ab6f8080111355aa6f40005fe6283f8ed350d2
SSDEEP

6144:CrEUXa3yIj/XMWfA/bzjgRz7YpfBTTlBV+UdvrEFp7hKBt1DYzs:CrErCE/X+3lp5TJBjvrEH74nAs

Score

8^/10

persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

NEAS.dfdaedfc147f6ff36c19f2ebb8009ea3_JC.exe

Resource

win7-20231023-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.dfdaedfc147f6ff36c19f2ebb8009ea3_JC.exe

Resource

win10v2004-20231020-en

persistence upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  NEAS.dfdaedfc147f6ff36c19f2ebb8009ea3_JC.exe
- Size
  
  236KB
- MD5
  
  dfdaedfc147f6ff36c19f2ebb8009ea3
- SHA1
  
  ea65a671ec41890a5b519c72a6bef78db1b7e9be
- SHA256
  
  2d8a0a9c54ada10a98f83e3e61261780b011a3c1da201fa7f43ea469f23d270f
- SHA512
  
  f70c32a7b6ba912585947309664e2df8990ee2d98620c7d059d228856d3c88ae55d9e0d45dc56c20e2b706dcc3ab6f8080111355aa6f40005fe6283f8ed350d2
- SSDEEP
  
  6144:CrEUXa3yIj/XMWfA/bzjgRz7YpfBTTlBV+UdvrEFp7hKBt1DYzs:CrErCE/X+3lp5TJBjvrEH74nAs
Score

8^/10

upx persistence
- Modifies AppInit DLL entries
  persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy