Overview

overview

10

Static

static

3

NEAS.b5991...b0.exe

windows7-x64

10

NEAS.b5991...b0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.b59917719153b8425d2a3850d23790b0.exe

  • Size

    407KB

  • Sample

    231117-wsyaqacc76

  • MD5

    b59917719153b8425d2a3850d23790b0

  • SHA1

    1c2cc740d208be34a7a1a4e6b30e63d1db09d229

  • SHA256

    d052f8963588a6603bb430724c33277087d830d39b89f2c19511edc32e779f55

  • SHA512

    14ec4ec2f4a56f93e48aba0c9b9cb71ac5874ccc163902e708ce4abaa11341f8c04358b2fab03983e3bd1b33dc77ea824fb8fcbd87014d13b4a973ed99df8760

  • SSDEEP

    12288:UtilRDopV6yYP4rbpV6yYPg058KpV6yYPS:TR0W4XWleKWS

Score
10/10
persistence

Malware Config

Targets

    • Target

      NEAS.b59917719153b8425d2a3850d23790b0.exe

    • Size

      407KB

    • MD5

      b59917719153b8425d2a3850d23790b0

    • SHA1

      1c2cc740d208be34a7a1a4e6b30e63d1db09d229

    • SHA256

      d052f8963588a6603bb430724c33277087d830d39b89f2c19511edc32e779f55

    • SHA512

      14ec4ec2f4a56f93e48aba0c9b9cb71ac5874ccc163902e708ce4abaa11341f8c04358b2fab03983e3bd1b33dc77ea824fb8fcbd87014d13b4a973ed99df8760

    • SSDEEP

      12288:UtilRDopV6yYP4rbpV6yYPg058KpV6yYPS:TR0W4XWleKWS

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks