Overview

overview

7

Static

static

3

NEAS.58182...f3.exe

windows7-x64

7

NEAS.58182...f3.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.58182e6bdd02a55e1c7f9831dc7c2cf3.exe

  • Size

    1.8MB

  • Sample

    231114-l3ew1sba9z

  • MD5

    58182e6bdd02a55e1c7f9831dc7c2cf3

  • SHA1

    c6d87ba8f2a11656db44c08acc61f58f8a7ba392

  • SHA256

    db8c0bec6aa27ff58d3f098d635d73c9eeb47153a5d5f6ac92c348356b66635a

  • SHA512

    dc7a84ba23d852fcb861188422b8c014a78d395ed68d347e5183c94a456ba311b94580916f0c824f104a493266baec272acb530cc1cf887e1324b32d68efbef7

  • SSDEEP

    24576:oWXV0U7NhD8d+F5P5g3Q650mE1cnw4PbyME89cJp0gLl94X4pAh/SMEUt1ix:VX1hgojPu55E1cRP3kNlpAh/WUtK

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      NEAS.58182e6bdd02a55e1c7f9831dc7c2cf3.exe

    • Size

      1.8MB

    • MD5

      58182e6bdd02a55e1c7f9831dc7c2cf3

    • SHA1

      c6d87ba8f2a11656db44c08acc61f58f8a7ba392

    • SHA256

      db8c0bec6aa27ff58d3f098d635d73c9eeb47153a5d5f6ac92c348356b66635a

    • SHA512

      dc7a84ba23d852fcb861188422b8c014a78d395ed68d347e5183c94a456ba311b94580916f0c824f104a493266baec272acb530cc1cf887e1324b32d68efbef7

    • SSDEEP

      24576:oWXV0U7NhD8d+F5P5g3Q650mE1cnw4PbyME89cJp0gLl94X4pAh/SMEUt1ix:VX1hgojPu55E1cRP3kNlpAh/WUtK

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks