Analysis
-
max time kernel
170s -
max time network
162s -
platform
windows10-2004_x64 -
resource
win10v2004-20230915-en -
resource tags
arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system -
submitted
13-10-2023 20:28
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
NEAS.7b54b31a7c824ec963911dbd3477e400.exe
Resource
win7-20230831-en
windows7-x64
3 signatures
150 seconds
Behavioral task
behavioral2
Sample
NEAS.7b54b31a7c824ec963911dbd3477e400.exe
Resource
win10v2004-20230915-en
windows10-2004-x64
3 signatures
150 seconds
General
-
Target
NEAS.7b54b31a7c824ec963911dbd3477e400.exe
-
Size
776KB
-
MD5
7b54b31a7c824ec963911dbd3477e400
-
SHA1
54dfd32ee7ffba3edbd1c5817f3763ebffd338f4
-
SHA256
0c7857ca30e18a55ab9e10e98785057758721477778a1ab4914571b3839d0cf8
-
SHA512
ee33648604858a051b6f19cb06dd0572e871435cc113de7f6859ed25f75e17a2e7428813112582ad5c7e62ae59ed254dfc6c4b3386c4e206c4c526bdf3d98c99
-
SSDEEP
12288:44H88ws9+IrlXvZN1GwZLBLNDzYhQYZ4kpEZ78PSC:4m+G1vX1GwZLZNwhDW78PSC
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
pid Process 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe -
Suspicious behavior: LoadsDriver 2 IoCs
pid Process 656 Process not Found 656 Process not Found -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe 4836 NEAS.7b54b31a7c824ec963911dbd3477e400.exe