Overview

overview

7

Static

static

3

NEAS.213cf...9f.exe

windows7-x64

7

NEAS.213cf...9f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.213cfd32e2da38286425cc9d36e9389f.exe

  • Size

    208KB

  • Sample

    231112-wqr1xsaa6t

  • MD5

    213cfd32e2da38286425cc9d36e9389f

  • SHA1

    faa3ea563aa19c5897c6116805db42a272e1adf2

  • SHA256

    cbc97c82ea12518215510a3cb3982880eedda1232d52c1f204f23c98bd7998fc

  • SHA512

    77313ccec5cd367ef3da45a48f9d4a431ef1c223ef0cfa2bbbdf247543c9ee06b123f97e881979915f1a4b5a1da17648e83ef241819a16e1a1118dc02be24d57

  • SSDEEP

    3072:z4D0ZbTVnmUU8UYBGFLivSaWMEVm7LxX4NLthEjQT6j:zFVVnG8HGFLivSQ1QEj1

Score
7/10

Malware Config

Targets

    • Target

      NEAS.213cfd32e2da38286425cc9d36e9389f.exe

    • Size

      208KB

    • MD5

      213cfd32e2da38286425cc9d36e9389f

    • SHA1

      faa3ea563aa19c5897c6116805db42a272e1adf2

    • SHA256

      cbc97c82ea12518215510a3cb3982880eedda1232d52c1f204f23c98bd7998fc

    • SHA512

      77313ccec5cd367ef3da45a48f9d4a431ef1c223ef0cfa2bbbdf247543c9ee06b123f97e881979915f1a4b5a1da17648e83ef241819a16e1a1118dc02be24d57

    • SSDEEP

      3072:z4D0ZbTVnmUU8UYBGFLivSaWMEVm7LxX4NLthEjQT6j:zFVVnG8HGFLivSQ1QEj1

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks