Overview

overview

10

Static

static

3

NEAS.a3638...10.exe

windows7-x64

10

NEAS.a3638...10.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.a36386ed044d502100f7237d4990e810.exe

  • Size

    340KB

  • Sample

    231116-mtf86aae49

  • MD5

    a36386ed044d502100f7237d4990e810

  • SHA1

    f3216dd75f810032ebbd84270ae8fa5b4e1a858c

  • SHA256

    0634904c4637b41555d6c0d949af7d8b58f752999fcc94283c9c128aa55db5ec

  • SHA512

    af68200edfbb0c4e77dc8d7a0c532a42e5565b996d97211d9119c69adb1b5d7b303ed3b6359a8105e6cc3507f0c83fa97e5577e029d0c526b823e516f627ae4b

  • SSDEEP

    6144:DfSTkNanPI3/fc/UmKyIxLDXXoq9FJZCUmKyIxLjh:r5C32XXf9Do3i

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.a36386ed044d502100f7237d4990e810.exe

    • Size

      340KB

    • MD5

      a36386ed044d502100f7237d4990e810

    • SHA1

      f3216dd75f810032ebbd84270ae8fa5b4e1a858c

    • SHA256

      0634904c4637b41555d6c0d949af7d8b58f752999fcc94283c9c128aa55db5ec

    • SHA512

      af68200edfbb0c4e77dc8d7a0c532a42e5565b996d97211d9119c69adb1b5d7b303ed3b6359a8105e6cc3507f0c83fa97e5577e029d0c526b823e516f627ae4b

    • SSDEEP

      6144:DfSTkNanPI3/fc/UmKyIxLDXXoq9FJZCUmKyIxLjh:r5C32XXf9Do3i

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks