e0d3f82b88ac429f7d88c2ec3afc3a45a43986daeb60dfb8ed718ba14f5182dd | Triage

Submit
Reports

Overview

overview

9

Static

static

3

NEAS.24038...50.exe

windows7-x64

7

NEAS.24038...50.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2403818fc0fcfbfe3e58e729eacdfd50.exe
Size

700KB
Sample

231116-j5bw2aaa4v
MD5

2403818fc0fcfbfe3e58e729eacdfd50
SHA1

66380c1b5dc72b4f7de17e26b6e4f6caf99a56cf
SHA256

e0d3f82b88ac429f7d88c2ec3afc3a45a43986daeb60dfb8ed718ba14f5182dd
SHA512

35a3c306bf0bf42c4e8f2e28ddc16ec3f1e1126a06a225c39a6041dcce254aca27e570567f3fa53febebfa12602138d1c59f6504e6c2ea2a4aaa1604de0aa19b
SSDEEP

12288:BOVo4A1fgyv8godP1PwPvw2M5ONeJuMqzBDJkk2ERvT8MPAf/O6s:BOVkN2tonZ79MqFDJkxqo4Af/3s

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

NEAS.2403818fc0fcfbfe3e58e729eacdfd50.exe

Resource

win7-20231025-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.2403818fc0fcfbfe3e58e729eacdfd50.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  NEAS.2403818fc0fcfbfe3e58e729eacdfd50.exe
- Size
  
  700KB
- MD5
  
  2403818fc0fcfbfe3e58e729eacdfd50
- SHA1
  
  66380c1b5dc72b4f7de17e26b6e4f6caf99a56cf
- SHA256
  
  e0d3f82b88ac429f7d88c2ec3afc3a45a43986daeb60dfb8ed718ba14f5182dd
- SHA512
  
  35a3c306bf0bf42c4e8f2e28ddc16ec3f1e1126a06a225c39a6041dcce254aca27e570567f3fa53febebfa12602138d1c59f6504e6c2ea2a4aaa1604de0aa19b
- SSDEEP
  
  12288:BOVo4A1fgyv8godP1PwPvw2M5ONeJuMqzBDJkk2ERvT8MPAf/O6s:BOVkN2tonZ79MqFDJkxqo4Af/3s
Score

9^/10

ransomware
- Renames multiple (985) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy