c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577

Analysis

max time kernel
31s
max time network
34s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
14-03-2023 04:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
Size

3.9MB
MD5

902308f414f0a09162a20cc6ceb7442f
SHA1

f2c3feebd324372cb403ea33b3efbdcc4a81f2a4
SHA256

c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577
SHA512

22816f9ae2e7c4a3ebc342e54c8e0b266f99d84eee0872df4f7727eab59ae99bce3d8a7176d42ee76efbebb983b50273e43a9dda3eded1bf75d2a21358d6af1b
SSDEEP

98304:F685pZDQnOm3t2qFC4WTDG1FSb3G15JWWNihzcGK:9DQOzqFCm1FSCWpcGK

Score

4^/10

Malware Config

Signatures

Drops file in Program Files directory 30 IoCs

description	ioc	Process
File created	C:\Program Files\nx75_flex\msvcp71.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\libinterop.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\ugslmd.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\nx.ico	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\ugs_router.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\libsyss.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\libsyss.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\lmtools.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\lmgrdg.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\lmutil.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\nx75_start.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\ugs4.lic	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\ugslmd.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\libinterop.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\__tmp_rar_sfx_access_check_7079886	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\ugshext.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\router.reg	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\MFC71u.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\nx75_start.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\lmutil.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\lmtools.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\MFC71u.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\router.reg	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\nx.ico	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\ugs_router.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\lmgrdg.exe	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File opened for modification	C:\Program Files\nx75_flex\msvcp71.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\ugshext.dll	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
File created	C:\Program Files\nx75_flex\ugs4.lic	c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe

C:\Users\Admin\AppData\Local\Temp\c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe
"C:\Users\Admin\AppData\Local\Temp\c783df0502504862f2740d80f4dbb03b9763bcdfb9f0a5fe069c1b0723384577.exe"
1⤵
- Drops file in Program Files directory
PID:2040

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads