Overview

overview

7

Static

static

7

NEAS.8e694...70.exe

windows7-x64

7

NEAS.8e694...70.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.8e6949481f1e4a3672e199f1c9218f70.exe

  • Size

    690KB

  • Sample

    231117-2z644afc42

  • MD5

    8e6949481f1e4a3672e199f1c9218f70

  • SHA1

    5f9f47ae691d751918b8bd46fe5324e4a4b3010a

  • SHA256

    320c49e839463ef6102b818f6b3f8b5925b85d51a2a977214703f2a5344f73fc

  • SHA512

    eaf668bddb6ee6654e8d4458ff32720e2097762cdf3636591530ecb45de2bdafab35b811b9ddfd71d665a65e32d62466df017fc85fbf7e3d6e86fcd4091bf77c

  • SSDEEP

    12288:piqaJSkIPGzIkrGKyI6cUz45IewwduFFLl72ZAkR08Ybf6IIKknWyLbLWrYuWC:piqSOP4rGxI24qXSOsGkRVuFIKkWr

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      NEAS.8e6949481f1e4a3672e199f1c9218f70.exe

    • Size

      690KB

    • MD5

      8e6949481f1e4a3672e199f1c9218f70

    • SHA1

      5f9f47ae691d751918b8bd46fe5324e4a4b3010a

    • SHA256

      320c49e839463ef6102b818f6b3f8b5925b85d51a2a977214703f2a5344f73fc

    • SHA512

      eaf668bddb6ee6654e8d4458ff32720e2097762cdf3636591530ecb45de2bdafab35b811b9ddfd71d665a65e32d62466df017fc85fbf7e3d6e86fcd4091bf77c

    • SSDEEP

      12288:piqaJSkIPGzIkrGKyI6cUz45IewwduFFLl72ZAkR08Ybf6IIKknWyLbLWrYuWC:piqSOP4rGxI24qXSOsGkRVuFIKkWr

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks