Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

NEAS.34d3e...e0.exe

windows7-x64

7

NEAS.34d3e...e0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.34d3ee4b213867f883b596e4a238a3e0.exe

  • Size

    3.2MB

  • Sample

    231111-pfcpxsfh28

  • MD5

    34d3ee4b213867f883b596e4a238a3e0

  • SHA1

    4a46b9238cab38277425f26fc5b0825bc478ed2f

  • SHA256

    9b9d8d9ac13835e2072862b3c274fbd16fd8229410dd91c4ce46b69a4097b827

  • SHA512

    b6f300ea7093abe0791630cc3ac1933fc4b2984d974fbb11d468443ea414797ddfc5d6dcd824fc8260ad9061ba9e7f2118503bc97a839813c9aab1bc145e98f9

  • SSDEEP

    98304:NXuEMg9sB58cakcg08tVDucXS0CrcakcPMUmCDd2YOAcakcg08tVDucXS0Crcak7:z9sgdlb0XRqdlPMUDSAdlb0XRqdlO

Score
7/10
upx

Malware Config

Targets

    • Target

      NEAS.34d3ee4b213867f883b596e4a238a3e0.exe

    • Size

      3.2MB

    • MD5

      34d3ee4b213867f883b596e4a238a3e0

    • SHA1

      4a46b9238cab38277425f26fc5b0825bc478ed2f

    • SHA256

      9b9d8d9ac13835e2072862b3c274fbd16fd8229410dd91c4ce46b69a4097b827

    • SHA512

      b6f300ea7093abe0791630cc3ac1933fc4b2984d974fbb11d468443ea414797ddfc5d6dcd824fc8260ad9061ba9e7f2118503bc97a839813c9aab1bc145e98f9

    • SSDEEP

      98304:NXuEMg9sB58cakcg08tVDucXS0CrcakcPMUmCDd2YOAcakcg08tVDucXS0Crcak7:z9sgdlb0XRqdlPMUDSAdlb0XRqdlO

    Score
    7/10
    upx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks