Overview

overview

7

Static

static

1

NEAS.69383...f0.exe

windows7-x64

7

NEAS.69383...f0.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.693837b79f564b4c1e467d1592f9e9f0.exe

  • Size

    12KB

  • Sample

    231113-cyz7qagb96

  • MD5

    693837b79f564b4c1e467d1592f9e9f0

  • SHA1

    7f4f4a5fedb25dd2725ff5a4970f8800bd86ecec

  • SHA256

    13ad4f15752a51157ac1529d29e3711f711aaa31192ae6476f75b33e44f701be

  • SHA512

    e4c08a1627d17a4835b4bdf17e79cdb7ebc910a32b00c8e9c9e65105dc28712878238533de92e84fa3cdbe917dbfaadd4bf595dbf998ef5ba580ff98985f315d

  • SSDEEP

    384:kL7li/2zEq2DcEQvdhcJKLTp/NK9xa4g:yoM/Q9c4g

Score
7/10

Malware Config

Targets

    • Target

      NEAS.693837b79f564b4c1e467d1592f9e9f0.exe

    • Size

      12KB

    • MD5

      693837b79f564b4c1e467d1592f9e9f0

    • SHA1

      7f4f4a5fedb25dd2725ff5a4970f8800bd86ecec

    • SHA256

      13ad4f15752a51157ac1529d29e3711f711aaa31192ae6476f75b33e44f701be

    • SHA512

      e4c08a1627d17a4835b4bdf17e79cdb7ebc910a32b00c8e9c9e65105dc28712878238533de92e84fa3cdbe917dbfaadd4bf595dbf998ef5ba580ff98985f315d

    • SSDEEP

      384:kL7li/2zEq2DcEQvdhcJKLTp/NK9xa4g:yoM/Q9c4g

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks