General
-
Target
NEAS.61938cbcbc6783b0bacce20cf948ebd0.exe
-
Size
5.3MB
-
Sample
240301-s8texshf59
-
MD5
61938cbcbc6783b0bacce20cf948ebd0
-
SHA1
f558733723faedb7b91acb82a31932dad9b880c1
-
SHA256
9a09207752a0c69c07f5e9025d4be4837e42b92726668586e4d7cd838258327b
-
SHA512
fd7c276839edeb162f17955f8d6681be0c51ae9577756830105dbd93ba68453cf9d7f23fb8e562e6449fcbce72c739096ebd239ba75d3cb12681d26c9be96ef4
-
SSDEEP
98304:mYVEl27OuKr+gvhf2Z9Nzm31PMogNuSZTKA0t9FFPEzlkqXf0FKp806Ucn:mOXOuK6mq9NzgMoIbk9fcpkSIKpb6Ucn
Static task
static1
Behavioral task
behavioral1
Sample
NEAS.61938cbcbc6783b0bacce20cf948ebd0.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
NEAS.61938cbcbc6783b0bacce20cf948ebd0.exe
Resource
win10-20240221-en
Behavioral task
behavioral3
Sample
NEAS.61938cbcbc6783b0bacce20cf948ebd0.exe
Resource
win11-20240221-en
Malware Config
Targets
-
-
Target
NEAS.61938cbcbc6783b0bacce20cf948ebd0.exe
-
Size
5.3MB
-
MD5
61938cbcbc6783b0bacce20cf948ebd0
-
SHA1
f558733723faedb7b91acb82a31932dad9b880c1
-
SHA256
9a09207752a0c69c07f5e9025d4be4837e42b92726668586e4d7cd838258327b
-
SHA512
fd7c276839edeb162f17955f8d6681be0c51ae9577756830105dbd93ba68453cf9d7f23fb8e562e6449fcbce72c739096ebd239ba75d3cb12681d26c9be96ef4
-
SSDEEP
98304:mYVEl27OuKr+gvhf2Z9Nzm31PMogNuSZTKA0t9FFPEzlkqXf0FKp806Ucn:mOXOuK6mq9NzgMoIbk9fcpkSIKpb6Ucn
Score10/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-