Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

NEAS.a82ea...8a.exe

windows7-x64

10

NEAS.a82ea...8a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.a82eaa063c498b3bb05a3444a11c2e8a.exe

  • Size

    465KB

  • Sample

    231116-wqz2jaee33

  • MD5

    a82eaa063c498b3bb05a3444a11c2e8a

  • SHA1

    a82eab95f17e5dc2cdf866c24d0119bde8632833

  • SHA256

    9428f28c7af4dc93d29e01e63df96364ca25c19d0d20748066a5dbbd2e78c628

  • SHA512

    0a308d2549bb9eac5f3ffb10d1a23f25a9556c07e6b4787f7ce7d8da8c8e902d34b89fad6b7254fb7cc4d16014f29d0259f1b5ff45107ad0b96b6f4718b1c620

  • SSDEEP

    6144:MdTdGgSTp+STYaT15fq1+EKOCLxuC7Vg6h7VIjUo:idwTZTYapU8N5VTVVIj

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.a82eaa063c498b3bb05a3444a11c2e8a.exe

    • Size

      465KB

    • MD5

      a82eaa063c498b3bb05a3444a11c2e8a

    • SHA1

      a82eab95f17e5dc2cdf866c24d0119bde8632833

    • SHA256

      9428f28c7af4dc93d29e01e63df96364ca25c19d0d20748066a5dbbd2e78c628

    • SHA512

      0a308d2549bb9eac5f3ffb10d1a23f25a9556c07e6b4787f7ce7d8da8c8e902d34b89fad6b7254fb7cc4d16014f29d0259f1b5ff45107ad0b96b6f4718b1c620

    • SSDEEP

      6144:MdTdGgSTp+STYaT15fq1+EKOCLxuC7Vg6h7VIjUo:idwTZTYapU8N5VTVVIj

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks