Overview

overview

7

Static

static

7

NEAS.f920b...90.exe

windows7-x64

7

NEAS.f920b...90.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.f920b9c933a9206ffda6f410ab2e7390.exe

  • Size

    865KB

  • Sample

    231115-jfwvxaec89

  • MD5

    f920b9c933a9206ffda6f410ab2e7390

  • SHA1

    c31cca24ca32583d354463db89693d1cf43716a6

  • SHA256

    0f7b4e49453c1fccb389b433ef9771d4800437fd7e0bdcf8462d7319f71b9222

  • SHA512

    aa297f19bbf0c7b33b91c69dd7f4763ff313ff7f4269a6464586e4998beebfa9b67fb202d51f408428e74fc64704f3d0c42e7e308682c707211f4d614b869518

  • SSDEEP

    24576:gt6bRRTz3nNk0lbWUZdRLBobhD56OWhr2wyNQ:g6j/NnlyWnLBIhD56PyNQ

Score
7/10
upx

Malware Config

Targets

    • Target

      NEAS.f920b9c933a9206ffda6f410ab2e7390.exe

    • Size

      865KB

    • MD5

      f920b9c933a9206ffda6f410ab2e7390

    • SHA1

      c31cca24ca32583d354463db89693d1cf43716a6

    • SHA256

      0f7b4e49453c1fccb389b433ef9771d4800437fd7e0bdcf8462d7319f71b9222

    • SHA512

      aa297f19bbf0c7b33b91c69dd7f4763ff313ff7f4269a6464586e4998beebfa9b67fb202d51f408428e74fc64704f3d0c42e7e308682c707211f4d614b869518

    • SSDEEP

      24576:gt6bRRTz3nNk0lbWUZdRLBobhD56OWhr2wyNQ:g6j/NnlyWnLBIhD56PyNQ

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks