288ae6f9acaabc9b5a47e0f80eb67b7df39ccd79583bb2a880f0abaabefc4166

Analysis

max time kernel
117s
max time network
120s
platform
windows7_x64
resource
win7-20230831-en
resource tags

arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
submitted
12/10/2023, 15:59

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
Size

133KB
MD5

05ccc9cf70ca30e8f4cf44999c54fc70
SHA1

af9dac0587c65db019fdb52477fdadb3c55e3532
SHA256

288ae6f9acaabc9b5a47e0f80eb67b7df39ccd79583bb2a880f0abaabefc4166
SHA512

c25788c365cbea41be5459826ac2cd259090733f3c85230c4aac14f238f656e9cc8190610e42bbd0f9cc86bc61c75564aae9b2c444700cfac2a0fb69799e08c2
SSDEEP

3072:w/qP0m22Xtaz4QQ2esY4GSvlYywcMTYUzWy4jqeeZHbjnfDQc:+qP0mj9azCdsecEZWdjq3HbjnMc

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 15 IoCs

description	ioc	Process
File opened for modification	C:\Windows\nFiqaAauUmznDaShksp.com	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\Doom 3(serial).exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\DAoC + cheat.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File opened for modification	C:\Windows\win32dc\Doom 3 serial.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\Sims 2 + cdfix.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\FlatOut_patch.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File opened for modification	C:\Windows\win32dc\FlatOut_patch.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File opened for modification	C:\Windows\win32dc\Doom 3(serial).exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\FlatOut + fix.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\Silent Hill 4_trainer.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File opened for modification	C:\Windows\win32dc\DAoC + cheat.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\Half-Life 2_fix.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\Doom 3 serial.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File created	C:\Windows\win32dc\UT2004 + nocd.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
File opened for modification	C:\Windows\win32dc\UT2004 + nocd.exe	NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe

C:\Users\Admin\AppData\Local\Temp\NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.05ccc9cf70ca30e8f4cf44999c54fc70_JC.exe"
1⤵
- Drops file in Windows directory
PID:2364

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Windows\win32dc\FlatOut + fix.exe

Filesize
133KB

MD5
05ccc9cf70ca30e8f4cf44999c54fc70

SHA1
af9dac0587c65db019fdb52477fdadb3c55e3532

SHA256
288ae6f9acaabc9b5a47e0f80eb67b7df39ccd79583bb2a880f0abaabefc4166

SHA512
c25788c365cbea41be5459826ac2cd259090733f3c85230c4aac14f238f656e9cc8190610e42bbd0f9cc86bc61c75564aae9b2c444700cfac2a0fb69799e08c2

Download Submit
memory/2364-16-0x0000000000400000-0x0000000000416000-memory.dmp

Filesize
88KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads