Overview

overview

9

Static

static

3

NEAS.7c689...a0.exe

windows7-x64

9

NEAS.7c689...a0.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.7c68994cc1fdf4828b6b9a929b5d3fa0.exe

  • Size

    406KB

  • Sample

    231116-24y92sbd46

  • MD5

    7c68994cc1fdf4828b6b9a929b5d3fa0

  • SHA1

    e8e90a3436282831c4ba549a99675241724bb78e

  • SHA256

    f291f2262a31bafa1d46d0370b3fe81c29b65781aff94014aa6e7dfa6e945cc6

  • SHA512

    f319f8d2a6b11578a55cab8e219c0c931325537409e9a6c06fc8a1acf4e9f1fef76e795bb74a1c092303acfa2104ae59f26cf17df84a7befee046b1f52034b08

  • SSDEEP

    1536:W7ZhA7pApaX0aX09r5w8NdNO7ZhA7pApaX0aX09r5w8NdNq:6e7WpGlAzIe7WpGlAzE

Score
9/10
ransomware

Malware Config

Targets

    • Target

      NEAS.7c68994cc1fdf4828b6b9a929b5d3fa0.exe

    • Size

      406KB

    • MD5

      7c68994cc1fdf4828b6b9a929b5d3fa0

    • SHA1

      e8e90a3436282831c4ba549a99675241724bb78e

    • SHA256

      f291f2262a31bafa1d46d0370b3fe81c29b65781aff94014aa6e7dfa6e945cc6

    • SHA512

      f319f8d2a6b11578a55cab8e219c0c931325537409e9a6c06fc8a1acf4e9f1fef76e795bb74a1c092303acfa2104ae59f26cf17df84a7befee046b1f52034b08

    • SSDEEP

      1536:W7ZhA7pApaX0aX09r5w8NdNO7ZhA7pApaX0aX09r5w8NdNq:6e7WpGlAzIe7WpGlAzE

    Score
    9/10
    ransomware

    • Renames multiple (220) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Renames multiple (244) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks