Overview

overview

10

Static

static

3

NEAS.d6080...d0.exe

windows7-x64

10

NEAS.d6080...d0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.d6080d3841e25c5441c782ee89f8d7d0.exe

  • Size

    144KB

  • Sample

    231112-qk85csgh26

  • MD5

    d6080d3841e25c5441c782ee89f8d7d0

  • SHA1

    5dee9912ed39bffe6c8bf8e17195bbce58d46a80

  • SHA256

    e4284e422bd638263cd9a341b4f1358ac73ff4595476d309a03ebc9b781eb71a

  • SHA512

    1bfaaa66efadb20bf67f66bf7be31833d17ff087ac4aaf68ea80e0486d6e168f3da43b31e911c705901a6db280bc058f787f333fed0e4f0b42972b996be8e4e0

  • SSDEEP

    3072:6ug5o8TaYWI/t24If1Fg4zdH13+EE+RaZ6r+GDZnBcVU:6uiobYWIV9Qg4zd5IF6rfBBcVU

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.d6080d3841e25c5441c782ee89f8d7d0.exe

    • Size

      144KB

    • MD5

      d6080d3841e25c5441c782ee89f8d7d0

    • SHA1

      5dee9912ed39bffe6c8bf8e17195bbce58d46a80

    • SHA256

      e4284e422bd638263cd9a341b4f1358ac73ff4595476d309a03ebc9b781eb71a

    • SHA512

      1bfaaa66efadb20bf67f66bf7be31833d17ff087ac4aaf68ea80e0486d6e168f3da43b31e911c705901a6db280bc058f787f333fed0e4f0b42972b996be8e4e0

    • SSDEEP

      3072:6ug5o8TaYWI/t24If1Fg4zdH13+EE+RaZ6r+GDZnBcVU:6uiobYWIV9Qg4zd5IF6rfBBcVU

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks