Overview

overview

10

Static

static

3

NEAS.445d0...70.exe

windows7-x64

10

NEAS.445d0...70.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.445d0037b3104e3789f4a4e270953070.exe

  • Size

    148KB

  • Sample

    231107-zm6axshg42

  • MD5

    445d0037b3104e3789f4a4e270953070

  • SHA1

    11975f0ca31ab7db251672b212813561350fb74c

  • SHA256

    1c847de1ecb77fdbbcbeb76a7833d69229cc0045b5b974428f7c5a5ef85b6d8b

  • SHA512

    4672413792ecf01bba1d3d70f0653ace9adaed28c5d09279ca0a31c6900fd3779690820c9126950acddb750f8197974a98c538f702d279fd8ca9d9150804a315

  • SSDEEP

    3072:zed5acN+cWOw3ByIgaTA6UuP0HCmPMhkcoVHneXLTh:zeKcZIgaTA6lsHCLhnoVHgLl

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.445d0037b3104e3789f4a4e270953070.exe

    • Size

      148KB

    • MD5

      445d0037b3104e3789f4a4e270953070

    • SHA1

      11975f0ca31ab7db251672b212813561350fb74c

    • SHA256

      1c847de1ecb77fdbbcbeb76a7833d69229cc0045b5b974428f7c5a5ef85b6d8b

    • SHA512

      4672413792ecf01bba1d3d70f0653ace9adaed28c5d09279ca0a31c6900fd3779690820c9126950acddb750f8197974a98c538f702d279fd8ca9d9150804a315

    • SSDEEP

      3072:zed5acN+cWOw3ByIgaTA6UuP0HCmPMhkcoVHneXLTh:zeKcZIgaTA6lsHCLhnoVHgLl

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks