Overview

overview

8

Static

static

3

NEAS.a85f6...d0.exe

windows7-x64

8

NEAS.a85f6...d0.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    65s
  • max time network
    123s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/10/2023, 18:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.a85f62b87aae7e9f0f6ff5f3cf088bd0.exe

  • Size

    139KB

  • MD5

    a85f62b87aae7e9f0f6ff5f3cf088bd0

  • SHA1

    9a891d44a2c3f7729923dc35a5f85063f41d1ff7

  • SHA256

    c5ce57d073996bb94fa0bb53fba1835d65a7aa5debf8bae273d84ee23044088f

  • SHA512

    98f9f785af7e4809886362be2af506c249fdd29c4522408fc536362c63d60593642ac09bda7e86c8bcd9aafd3ba49678a2aac0be150e64ac9a722c13a989787d

  • SSDEEP

    3072:yi0FEplmmNJ/CHd6bOjU2GNUWdyeERIdbp1:+Er7J6rQ1NUWdyDR6

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in Program Files directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NEAS.a85f62b87aae7e9f0f6ff5f3cf088bd0.exe
    "C:\Users\Admin\AppData\Local\Temp\NEAS.a85f62b87aae7e9f0f6ff5f3cf088bd0.exe"
    1⤵
    • Drops file in Program Files directory
    PID:224
  • C:\PROGRA~3\Mozilla\cpuirzc.exe
    C:\PROGRA~3\Mozilla\cpuirzc.exe -yyraenb
    1⤵
    • Executes dropped EXE
    PID:3348

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\ProgramData\Mozilla\cpuirzc.exe
          Filesize

          139KB

          MD5

          0f560d4b410f4bdee333ba2b2c603bfb

          SHA1

          30b151f249cbde941f2a5c78e3a3c184c24cec51

          SHA256

          af531ac41eb776a4cfc63d052050ca26ecc8472d096a98414f3780b03400faca

          SHA512

          c1ead63be5a44f2e354c077c90b67aa4528309b888de198d701d694d02e6196e4493d4770392fdf456e9ff1af401a03c3198acbd69ca7989390b17430e0233ce

          Download Submit

        • memory/224-0-0x0000000000400000-0x000000000045E000-memory.dmp

          Filesize

          376KB

          Download

        • memory/224-2-0x0000000000400000-0x000000000045E000-memory.dmp

          Filesize

          376KB

          Download

        • memory/224-1-0x0000000000400000-0x000000000045E000-memory.dmp

          Filesize

          376KB

          Download

        • memory/224-3-0x00000000021F0000-0x000000000224B000-memory.dmp

          Filesize

          364KB

          Download

        • memory/224-4-0x0000000000400000-0x000000000045B000-memory.dmp

          Filesize

          364KB

          Download

        • memory/224-6-0x00000000021F0000-0x000000000224B000-memory.dmp

          Filesize

          364KB

          Download

        • memory/224-8-0x0000000000400000-0x000000000045B000-memory.dmp

          Filesize

          364KB

          Download

        • memory/224-11-0x0000000000400000-0x000000000045B000-memory.dmp

          Filesize

          364KB

          Download