Overview

overview

10

Static

static

3

NEAS.6a666...50.exe

windows7-x64

10

NEAS.6a666...50.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.6a6663d392265712443a7422ac5a6b50.exe

  • Size

    6.2MB

  • Sample

    231116-lfgr4aah5z

  • MD5

    6a6663d392265712443a7422ac5a6b50

  • SHA1

    106e4e6fad9b97689b23a251cedd07e3c8d2a394

  • SHA256

    1b0f6c4bc284d8e045b44d7bd163c0ef7eb25127f9391e82b34e438f816e3299

  • SHA512

    6d3312dc7f6742cf858adcd80275170b6a0dd0098481705ad18832202dd0899935c89e27be3b06b9d55ea3be6efa9b979ea35812c1853828f2f26d234b711f5f

  • SSDEEP

    196608:5ghFkZyRf03+PR0E9eUtQpP00YbRFmQzGkkgH2XrIPrZZJiA8:pARfF0E9xQ5hYbJzGgq+ZC3

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.6a6663d392265712443a7422ac5a6b50.exe

    • Size

      6.2MB

    • MD5

      6a6663d392265712443a7422ac5a6b50

    • SHA1

      106e4e6fad9b97689b23a251cedd07e3c8d2a394

    • SHA256

      1b0f6c4bc284d8e045b44d7bd163c0ef7eb25127f9391e82b34e438f816e3299

    • SHA512

      6d3312dc7f6742cf858adcd80275170b6a0dd0098481705ad18832202dd0899935c89e27be3b06b9d55ea3be6efa9b979ea35812c1853828f2f26d234b711f5f

    • SSDEEP

      196608:5ghFkZyRf03+PR0E9eUtQpP00YbRFmQzGkkgH2XrIPrZZJiA8:pARfF0E9xQ5hYbJzGgq+ZC3

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks