Overview

overview

9

Static

static

3

NEAS.55ab1...d0.exe

windows7-x64

9

NEAS.55ab1...d0.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.55ab120029d2b1c5f69fadcc042244d0.exe

  • Size

    414KB

  • Sample

    231113-e5771shc61

  • MD5

    55ab120029d2b1c5f69fadcc042244d0

  • SHA1

    96f220c659daa0bbc8507bd1b918c2bef3bab38d

  • SHA256

    992398bf06d9736dacd228850d692277db471c3f0e76ac7fd32e90e07bf6939c

  • SHA512

    4a7dbec6808ea955bc80db781a6073dd31b3cca1dd22f13bd4fb5655ae0cf0c66cb914e8ef2c2c1e15c1b68a3229371cbc76fe929af30809cd737b947acaf248

  • SSDEEP

    1536:W7ZhA7pApaX0aX0wPNPsvrcicXsS7ZhA7pApaX0aX0wPNPsvrcicXsvxr:6e7WpGlbPNPxe7WpGlbPNPS

Score
9/10
ransomware

Malware Config

Targets

    • Target

      NEAS.55ab120029d2b1c5f69fadcc042244d0.exe

    • Size

      414KB

    • MD5

      55ab120029d2b1c5f69fadcc042244d0

    • SHA1

      96f220c659daa0bbc8507bd1b918c2bef3bab38d

    • SHA256

      992398bf06d9736dacd228850d692277db471c3f0e76ac7fd32e90e07bf6939c

    • SHA512

      4a7dbec6808ea955bc80db781a6073dd31b3cca1dd22f13bd4fb5655ae0cf0c66cb914e8ef2c2c1e15c1b68a3229371cbc76fe929af30809cd737b947acaf248

    • SSDEEP

      1536:W7ZhA7pApaX0aX0wPNPsvrcicXsS7ZhA7pApaX0aX0wPNPsvrcicXsvxr:6e7WpGlbPNPxe7WpGlbPNPS

    Score
    9/10
    ransomware

    • Renames multiple (134) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Renames multiple (223) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks