8258093e6b834701413ab0b5150e1370aa62bc7aa5ce2e031d0a786e49be47da

Sharing

Copy URL

Twitter E-mail

General

Target

Neega_Raider.rar
Size

1.7MB
Sample

240402-t9t9aaff2y
MD5

23c141b604bb630a18f93608c9edbe8c
SHA1

f20fdf3f0c88f6c32b87d177ef50e2add8625120
SHA256

8258093e6b834701413ab0b5150e1370aa62bc7aa5ce2e031d0a786e49be47da
SHA512

667140c7df1c21252d7d045176609a9f0e95df0a8efeab977d004d8434e9bdc71c97f8b9ac55d8228207f64e83e436364319ad7187eda6533780070c18fbde60
SSDEEP

49152:adf9cD7eGJBpsA4QaqJxTCCvnCIfu/B+1C/Gtns6:avcDyjqaqmCqCA+E+P

Score

6^/10

Malware Config

Targets

- Target
  
  Neega Raider/AngleSharp.dll
- Size
  
  861KB
- MD5
  
  ba231be096738680abadcb0504361b6e
- SHA1
  
  7eb1609f8643d1964ec252f897c05a10345b7d85
- SHA256
  
  78e304f09e0af840441733b89bb3c268109fa1c4200085a7c1edb097b6723d7a
- SHA512
  
  3a662033bbd0688cd76da84970d988c6932912a7cbac7f6ed1b26e32f480e9ac4866609764334a610c3b8b52de4d52c557e23d3ea111f154ff41e426d14923cc
- SSDEEP
  
  6144:JnFGmSD2smAF5DvLpN15eNcWx0x1DOlzWrBmXgis5zEJ0rlz6zoMJsJG/YLfjrkS:J8XlrNHwqd6aD26o2GckUMIC5Yq6ku
Score

1^/10
behavioral1
- Target
  
  Neega Raider/Colorful.Console.dll
- Size
  
  88KB
- MD5
  
  89fab48df74cab3bb13ce012a1d3021c
- SHA1
  
  9e26dc19e7126be8fa150e2798e3be14c059afbb
- SHA256
  
  b8f2f0e9263129742e11bbaf56e0f082499a68d5113959b6a857ed51aa8a2570
- SHA512
  
  14a778f15a7e2bfa178aa73c6c8776b7812116915318ae6202250f66faacf276e514c97628d104ae687efe9dcbb14a0ac48b2658fc1218bd2448cee473132c52
- SSDEEP
  
  1536:1yQJm5aA5hedAW4B2nBKc6dQ/lawQ/ddbrL:1ccA5QdO2B9Wsl/Q/PL
Score

1^/10
behavioral2
- Target
  
  Neega Raider/ICSharpCode.SharpZipLib.dll
- Size
  
  200KB
- MD5
  
  f44081428f0a6f84dc2afd25763e2ab6
- SHA1
  
  51d030410c88f247fae34d480e5a728fd3984dd7
- SHA256
  
  2b8ba0da97b61d572f234539b3357f79abc50aa925966e3435fca9ab4c9ff36f
- SHA512
  
  4ac19556d9107a8bb5de1c44c686c6c977fbdcfc8da595d34a862c7634cba916ec3c83c1c898808fff73dbea0afbe6faf86601d65416724b8337409648919425
- SSDEEP
  
  3072:bJ1o3gvhN6QX8/5ULEDoSj/OMVhC2WG+ovlf1tupIISBd250RI6rEaEcF6Zu5DkK:N1RvhX8/5vDoSLOMVJWi8pIISBQKjLn
Score

1^/10
behavioral3
- Target
  
  Neega Raider/NeegaRaid.deps.json
- Size
  
  27KB
- MD5
  
  e30c7e4e38d36f1325e0705ebd9bdaf5
- SHA1
  
  44ca5ca1367b3256e585752adbbdb86e4e045ebb
- SHA256
  
  0e5aa59a1fbc38f1092b0975a751a27770bd6bff693e9168831be5e12816df11
- SHA512
  
  abff3b42c07c01cf8335784fd5cc579fa1c3bf4c317344b7fe7231dae0832fc591d61d747c77dbeeece442d0aca89cafbedacbc30e1354eef30520563ab3bfa0
- SSDEEP
  
  384:YZ8FSR6CP1xxFTqOJfxlFFe9AGxyKTfxcjMbDzvUAF+j8wy4OrL0f8iWz:YPN1u7fxcj1WGkNz
Score

3^/10
behavioral4
- Target
  
  Neega Raider/NeegaRaid.dll
- Size
  
  336KB
- MD5
  
  47ec9a584c2ee3e244a4e68e6434dc6f
- SHA1
  
  8f9fb255910c5dc443a59b25609627e246fe4fc9
- SHA256
  
  ea8a9be26279c4995992663221da8fc1bb558091e48ecb6194608f83e4a0ca62
- SHA512
  
  512eeb02dd02c075ec30eb654d4a52794a76166a82b1ef4e2669028b011fe240b5fac341866e41d39063a640597f756ffe53d339c6d64bc80bb1a431b70b1d2f
- SSDEEP
  
  3072:zgTwXhuwwhrVQuhbe7zcrY337Pd2yUgYVM4Gv:Hhog7H37vUtV
Score

1^/10
behavioral5
- Target
  
  Neega Raider/NeegaRaid.exe
- Size
  
  410KB
- MD5
  
  e866b32e8ee15c63485310a38d7c3ba9
- SHA1
  
  3fcb2be82f64443131621bdb5aa2d8373f25e135
- SHA256
  
  232d2c8b81efccba25ba5fc6d55290d8ebb100c666939d1e0a3022e2a4063a3e
- SHA512
  
  a25ca3fb463984380e27b57c555cf93cbbf0a4bf61be8e55d75e55a8a0d0964cc5ae3eca920b95c366530dad520d6388f5803ded7ee97414fb897eae0aa6a30f
- SSDEEP
  
  3072:0czkitvo4BpYN/6mBPry8TXROLdW5m4mURu9OOGm0k5Quhbe7zcrY337Pd2yUgYk:0A4NCmBPry/N2KOOTlg7H37vUtV
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
behavioral6
- Target
  
  Neega Raider/NeegaRaid.pdb
- Size
  
  23KB
- MD5
  
  075ae08b31d056574c37ecde3fd0524b
- SHA1
  
  6624e759f3c3a23c514be88f6486df773942e406
- SHA256
  
  f17e4d70e7af5e4e7367724548795ab626ee0605e32958b27affb6d644ae0f10
- SHA512
  
  64ca8e676109710cc16ea1f0e9ca8b60ff63ac925f683c63c1426d568800065cad8295bcc5ab80a5594e72050bd4d4da1d85a38d7124d9bada1f131a05459bfa
- SSDEEP
  
  384:0uMtrMG+xNuX85MYyCMvWdc7Sc61agbEB2HIvwrXx3DtIl4RNiHifefiB83I3TKL:kt+fpWDCMvWdEnxQdp5bQ
Score

3^/10
behavioral7
- Target
  
  Neega Raider/NeegaRaid.runtimeconfig.json
- Size
  
  253B
- MD5
  
  24e4653829de1022d01cd7ddd26e2f22
- SHA1
  
  9160a009cb381e044ba4c63e4435da6bfeb9dc6d
- SHA256
  
  ded3aeb5856a11db0b654a785574490cab55839ebfb17efe9e39b89618fc5b91
- SHA512
  
  efd4bbba1baec0b47003831510e3aa539db9ef468e0f06ba9d7ba6d0b3800035f7c818d7d90171bfd377ec97d08c4617555bcff635dd83efceb412b1a9cca820
Score

3^/10
behavioral8
- Target
  
  Neega Raider/Newtonsoft.Json.dll
- Size
  
  679KB
- MD5
  
  916d32b899f1bc23b209648d007b99fd
- SHA1
  
  e3673d05d46f29e68241d4536bddf18cdd0a913d
- SHA256
  
  72cf291d4bab0edd08a9b07c6173e1e7ad1abb7ab727fd7044bf6305d7515661
- SHA512
  
  60bd2693daa42637f8ae6d6460c3013c87f46f28e9b0dbf9d7f6764703b904a7c8c22e30b4ba13f1f23f6cbee7d9640ee3821c48110e67440f237c2bb2ee5eb6
- SSDEEP
  
  12288:1eos/POdGV5jfWrV/9Yeh9eRcyLfLYtT5mWxTZ/B7jW5JMtRRpKzQk:10/POdGV5jfW5VnhFyvOB7jW5JMty
Score

1^/10
behavioral9
- Target
  
  Neega Raider/WebDriver.dll
- Size
  
  5.9MB
- MD5
  
  4f388e0c742b7283106cc8354449e75e
- SHA1
  
  d361ab6f00d6ec32c7afcee1a35a23194e657dc1
- SHA256
  
  0c4a9a9794dbb33b550d4d2a70b97d24205ded4af08b945062d11b4aa38fa8f8
- SHA512
  
  71dd0040360c7cb39e7411c5f3f663a1ffde7af117466a6884b5c212f07659c33b841cee5af358cf176045c16413c2080935129df3a1560b601aab88bdc15be0
- SSDEEP
  
  49152:Zjrzc3d07jvt8LLsgAArauxiKO7D754znQgO:ZfmIMNO
Score

1^/10
behavioral10
- Target
  
  Neega Raider/WebDriverManager.dll
- Size
  
  27KB
- MD5
  
  18007ddc670e088fca32af7e74e2910e
- SHA1
  
  96c9919233f3d6e0dcebdeb9d228f167411f899d
- SHA256
  
  b3b1d2b90c89e568f96c9cd58e37bdfe54c58b8de24343508ebf73956c104798
- SHA512
  
  91f3bd2d7f116310af1cc3fad0e5bdebf4933b2a6c407f344945290cc7d7c0642c94179b7faaea1e7e27135d946e41353e567e2b66003afc5e37524ed242e44d
- SSDEEP
  
  384:h8zJw14xAiqDb+3+mlszGy4qGGbto7uBqYwU6Ab6I9Nah3A:hH14xADDbAlsjb7YU6A99Nah3A
Score

1^/10
behavioral11
- Target
  
  Neega Raider/config.json
- Size
  
  12B
- MD5
  
  7325dc24f0ef4f4294b98c61030cf11b
- SHA1
  
  5fc6cbe1bf59f95dee1a18db7e2cef7e47235156
- SHA256
  
  e7b8615df8c5278ade507497bb09475a6eb60d2457328e157df557e182c925b7
- SHA512
  
  25f8bb86574cc51b731262f967a913c752ebf586d02e89be418a4e76afbb02fa9fb19e545e51e30a275b206822fdfbe4f51b747372281ea5edc528875500f134
Score

3^/10
behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12