aec09a6231c974e526a1a214ac43a38beee861d872991ec578b4e4bb71f0529f

Analysis

max time kernel
118s
max time network
138s
platform
windows7_x64
resource
win7-20230831-en
resource tags

arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
submitted
14-10-2023 08:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

NEAS.e850cec84bb073383cf766bde0a34710.exe
Size

3.5MB
MD5

e850cec84bb073383cf766bde0a34710
SHA1

0f1ea95b9053c7d649f9b717bcddf484b7467d94
SHA256

aec09a6231c974e526a1a214ac43a38beee861d872991ec578b4e4bb71f0529f
SHA512

d1ce81edd51fc65f43e7f7eebfdc1d163c332b3fe5d07da32b9b2734fded376e7e0133f783fd6874e76fc37ddb72f2ab70ba095e486b36188af7b3c80a1d77e6
SSDEEP

98304:34r89jB4iDdmLUJSK2W/o+XFFWt2n/pkIhBGd:RTAIL2t+XzWtPIO

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 1 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-607259312-1573743425-2763420908-1000\Software\Microsoft\Internet Explorer\Main	NEAS.e850cec84bb073383cf766bde0a34710.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
1420	NEAS.e850cec84bb073383cf766bde0a34710.exe

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1420	NEAS.e850cec84bb073383cf766bde0a34710.exe
1420	NEAS.e850cec84bb073383cf766bde0a34710.exe

C:\Users\Admin\AppData\Local\Temp\NEAS.e850cec84bb073383cf766bde0a34710.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.e850cec84bb073383cf766bde0a34710.exe"
1⤵
- Modifies Internet Explorer settings
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1420

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads