Overview

overview

7

Static

static

7

NEAS.a2892...f0.exe

windows7-x64

7

NEAS.a2892...f0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.a28928a28701698cf3810dfad41d01f0.exe

  • Size

    1.7MB

  • Sample

    231112-qc53qsgf63

  • MD5

    a28928a28701698cf3810dfad41d01f0

  • SHA1

    dd46890e1cfb38125e560614700e15b916b55a31

  • SHA256

    fe2a2bd1255b0c2ec335f6e92e7c2d86ca7d7785a29fa615ade2c0d244f5c222

  • SHA512

    d63cf999172c8abfe6f3cf9e42ac94dbd8d587ff7a54d30a12287234fbc36fff4132c080b485e199fd60561a82d9118f6edcd5cf1086776599c80b0d80d2da73

  • SSDEEP

    49152:blGOUowCvZdIihhoPLMD52gT2WsnXw6+ioRc:oEI4yLMDp5sX2ip

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      NEAS.a28928a28701698cf3810dfad41d01f0.exe

    • Size

      1.7MB

    • MD5

      a28928a28701698cf3810dfad41d01f0

    • SHA1

      dd46890e1cfb38125e560614700e15b916b55a31

    • SHA256

      fe2a2bd1255b0c2ec335f6e92e7c2d86ca7d7785a29fa615ade2c0d244f5c222

    • SHA512

      d63cf999172c8abfe6f3cf9e42ac94dbd8d587ff7a54d30a12287234fbc36fff4132c080b485e199fd60561a82d9118f6edcd5cf1086776599c80b0d80d2da73

    • SSDEEP

      49152:blGOUowCvZdIihhoPLMD52gT2WsnXw6+ioRc:oEI4yLMDp5sX2ip

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks