Overview

overview

3

Static

static

3

NEAS.59048...40.exe

windows7-x64

1

NEAS.59048...40.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14/10/2023, 17:55

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.59048d2b7304a2a2d4076627bc1a2040.exe

  • Size

    338KB

  • MD5

    59048d2b7304a2a2d4076627bc1a2040

  • SHA1

    d735c050e280b48eb7d3eb2565207c417a4a7cdb

  • SHA256

    3f804d72a22c4aae7e14c0fe2af6063560d37012908413494b6f7f726af79396

  • SHA512

    3d1a9919fcdcb1208415dedaa86d087c2e22647f7ca2662e1371c307a76877bdba0f5a5b4b82138d86afbe0207ced4c14368fb64ad9cf4005a0df3c841f945a4

  • SSDEEP

    6144:jI7KKLzP/j+GcWbVX63AP/XC34I2G+a+ymbe9lbn4uGyeyqZZmG1ThlhRyZsR:MtP/yGbI3eK3p2GBd914uGye3tNh3RdR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NEAS.59048d2b7304a2a2d4076627bc1a2040.exe
    "C:\Users\Admin\AppData\Local\Temp\NEAS.59048d2b7304a2a2d4076627bc1a2040.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:3068

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/3068-0-0x0000000000400000-0x00000000004CC000-memory.dmp

          Filesize

          816KB

          Download

        • memory/3068-1-0x0000000000400000-0x00000000004CC000-memory.dmp

          Filesize

          816KB

          Download