5ccd390f07c1da3f45447210a1a143f859e5077c20e0baaeaa1caf812ab77c20

Analysis

max time kernel
153s
max time network
160s
platform
windows10-2004_x64
resource
win10v2004-20230915-en
resource tags

arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
submitted
13/10/2023, 20:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
Size

370KB
MD5

6d5ebc181ce8796011da6253748b4ec0
SHA1

d93e00bcce5b371e7a98f7864131bf6f90079e09
SHA256

5ccd390f07c1da3f45447210a1a143f859e5077c20e0baaeaa1caf812ab77c20
SHA512

5be289f884fae79edc7c8fd6401396bb466aef6b5e3b61519409f170e7292b30c943cb01046d3744d63436a41f2f543df63bc60661e2f884909af38f3dce9283
SSDEEP

6144:Rq+SWu0SWua57h9N+O72TRLM7rJf+pKWebwXDFz39S9B4QOoNlzz5z2:rh9Nf72TRLOf+pKWebwXNtS9B4QOoDzQ

Score

4^/10

Malware Config

Signatures

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files\7-Zip\Lang\io.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ku-ckb.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ky.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\mr.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\pt.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ru.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\co.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\gu.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\th.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\sl.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\sr-spl.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\hu.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\nl.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\7z.exe.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ba.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ca.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\mng2.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\pl.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\sr-spc.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\7-zip32.dll.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\az.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\sq.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\cs.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\si.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\id.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ko.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ps.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\cy.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ga.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\descript.ion.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ar.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\fi.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\nn.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ta.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\7zCon.sfx.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\7zG.exe.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\eo.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\mng.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\7-zip.chm.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\af.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\de.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\tt.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\7-zip.dll.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\7zFM.exe.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ku.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\mk.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\tr.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\bg.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ka.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\fa.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\mn.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\pt-br.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ast.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\da.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\eu.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ext.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\fr.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\is.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\ja.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\lt.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\7z.dll.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\an.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\kaa.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
File created	C:\Program Files\7-Zip\Lang\lv.txt.tmp	NEAS.6d5ebc181ce8796011da6253748b4ec0.exe

C:\Users\Admin\AppData\Local\Temp\NEAS.6d5ebc181ce8796011da6253748b4ec0.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.6d5ebc181ce8796011da6253748b4ec0.exe"
1⤵
- Drops file in Program Files directory
PID:3272

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\$Recycle.Bin\S-1-5-21-2344688013-2965468717-2034126-1000\desktop.ini.tmp

Filesize
370KB

MD5
289f99642157ebcb811ca5792b60dfb4

SHA1
9bc74212eb50eb969967b4554740b6c27186da9c

SHA256
0bc8999332a4deab996c96fd11b8ab1bbd55b3ad4d9ea15288723ad45fbe3092

SHA512
ef1b32e04c1d022d988603aef954c9e5760e0b8045335efc83b98397a9e175cb4d089ecdaa956173d18d8c1f22b0dd3cb83dcbccc562ad4ced23df3a32eed5ff

Download Submit
C:\odt\config.xml.tmp

Filesize
371KB

MD5
89e3b01ed711f27ce793a01bf6557644

SHA1
7ec65f7bcede6fa72ed2da5710a2444d10b98987

SHA256
0e455d58c744ad9e223d1076dae62e11522f5d0e48e2e962b0d1eb4b92046625

SHA512
a306a691e98d2216fa9765c474307cf41cf4ad1b6bec933d6f43b22a9e71ec4e8f0ca9e33c70b905ee228b8d9931064ae769519a947491b774bc24d1c509b8fc

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads