Overview

overview

7

Static

static

3

315468cf07...AS.exe

windows7-x64

7

315468cf07...AS.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    315468cf07fb79ffb6250ce2f8ebc090_NEAS

  • Size

    12KB

  • Sample

    240506-3jbtpabd42

  • MD5

    315468cf07fb79ffb6250ce2f8ebc090

  • SHA1

    cad11ed597eb5d61e13c58c1f65ccf8b15e4aff4

  • SHA256

    1283c61b174951f3655ec866f4f388c7ac11fd19500eaa112f53e99508e350e9

  • SHA512

    7d8e9c4b692090f185653854c93306dfb475fa8c19e7c4a57ff504c41ae265d4b94879166d9dc4bac9a5b6ef45e27cc2a253e46a1b4669bc0a4969b8cbb8cbd0

  • SSDEEP

    384:bL7li/2zUq2DcEQvdhcJKLTp/NK9xa9v:PAM/Q9c9v

Score
7/10

Malware Config

Targets

    • Target

      315468cf07fb79ffb6250ce2f8ebc090_NEAS

    • Size

      12KB

    • MD5

      315468cf07fb79ffb6250ce2f8ebc090

    • SHA1

      cad11ed597eb5d61e13c58c1f65ccf8b15e4aff4

    • SHA256

      1283c61b174951f3655ec866f4f388c7ac11fd19500eaa112f53e99508e350e9

    • SHA512

      7d8e9c4b692090f185653854c93306dfb475fa8c19e7c4a57ff504c41ae265d4b94879166d9dc4bac9a5b6ef45e27cc2a253e46a1b4669bc0a4969b8cbb8cbd0

    • SSDEEP

      384:bL7li/2zUq2DcEQvdhcJKLTp/NK9xa9v:PAM/Q9c9v

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks