Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

NEAS.103b0...JC.exe

windows7-x64

8

NEAS.103b0...JC.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    84s
  • max time network
    131s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/10/2023, 12:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.103b0e3c4d41ea8760f985a4ef2b1fc0_JC.exe

  • Size

    192KB

  • MD5

    103b0e3c4d41ea8760f985a4ef2b1fc0

  • SHA1

    e9b3f782a60adceff40c7c6ec72a9f533c5d7e00

  • SHA256

    bb83a58b15f808f8003a8a1ac5dd4addbc20db91e8960328efe9232a89377cd6

  • SHA512

    995edc9913ddf56eec1ec01afa328817f7bce1745f67f4acd68819afa96bc9bdb71443b3cc88b9e1b9964b07b902334a12433ef7b989ab7b8eefffd4294c1ac6

  • SSDEEP

    3072:26/chyinW3kBlqSpi9GXgS9uaxjnw89JnszQcJdXRNT:Jin4kBs6i9GXgUxF52dXHT

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in Program Files directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NEAS.103b0e3c4d41ea8760f985a4ef2b1fc0_JC.exe
    "C:\Users\Admin\AppData\Local\Temp\NEAS.103b0e3c4d41ea8760f985a4ef2b1fc0_JC.exe"
    1⤵
    • Drops file in Program Files directory
    PID:1976
  • C:\PROGRA~3\Mozilla\cpuirzc.exe
    C:\PROGRA~3\Mozilla\cpuirzc.exe -yyraenb
    1⤵
    • Executes dropped EXE
    PID:2204

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\PROGRA~3\Mozilla\cpuirzc.exe
    Filesize

    192KB

    MD5

    e5c89fe6998da2a8ab98b1a1580ce1e5

    SHA1

    b9e323c59332b6e70816ff81dbda8e9fe44af9f1

    SHA256

    d197f0782d29162147770d28e69c28b41500e43beba6472ad60dccda7c7a4f82

    SHA512

    05c3d153e06bb9731763bf22d522dd61aceb522ef0f4e09ffd676637b43cb9263163cdc0955a6c17bdabc011b56852766664d286431b79f374ecfd59691f75a6

    Download Submit

  • C:\ProgramData\Mozilla\cpuirzc.exe
    Filesize

    192KB

    MD5

    e5c89fe6998da2a8ab98b1a1580ce1e5

    SHA1

    b9e323c59332b6e70816ff81dbda8e9fe44af9f1

    SHA256

    d197f0782d29162147770d28e69c28b41500e43beba6472ad60dccda7c7a4f82

    SHA512

    05c3d153e06bb9731763bf22d522dd61aceb522ef0f4e09ffd676637b43cb9263163cdc0955a6c17bdabc011b56852766664d286431b79f374ecfd59691f75a6

    Download Submit

  • memory/1976-0-0x0000000000400000-0x000000000045F000-memory.dmp

    Filesize

    380KB

    Download

  • memory/1976-1-0x0000000002210000-0x000000000226B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/1976-2-0x0000000000400000-0x000000000045B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/1976-5-0x0000000000400000-0x000000000045F000-memory.dmp

    Filesize

    380KB

    Download

  • memory/1976-7-0x0000000002210000-0x000000000226B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/1976-8-0x0000000000400000-0x000000000045B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/1976-10-0x0000000000400000-0x000000000045B000-memory.dmp

    Filesize

    364KB

    Download