Analysis
-
max time kernel
66s -
max time network
71s -
platform
windows10-2004_x64 -
resource
win10v2004-20231020-en -
resource tags
arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system -
submitted
22-10-2023 17:27
Behavioral task
behavioral1
Sample
NEAS.cad59573f5f98253991a19bff2961140.exe
Resource
win7-20231020-en
windows7-x64
1 signatures
150 seconds
General
-
Target
NEAS.cad59573f5f98253991a19bff2961140.exe
-
Size
40KB
-
MD5
cad59573f5f98253991a19bff2961140
-
SHA1
c5064546978b97d8f00b148e3672ab2ea8d4ed41
-
SHA256
13bc232331a334a3b20783148d3026ffcd76049a6a2a7f05a16db41b71549d9d
-
SHA512
1ea0324a8bbb132aa0838419acc38efa40a6e3444f6fc5d74fece35e5ee37f9d5e5f528e6c5013f505bc5490a0115c28f9872261cea5330c2784d002c06fded2
-
SSDEEP
768:q29Pf5IH4hyYtoVxYG9mHfCBJTAIO3Ot:F7XhyYtkYX/CPnO3
Malware Config
Signatures
Processes
-
C:\Users\Admin\AppData\Local\Temp\NEAS.cad59573f5f98253991a19bff2961140.exe"C:\Users\Admin\AppData\Local\Temp\NEAS.cad59573f5f98253991a19bff2961140.exe"1⤵PID:1788
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1788 -s 2162⤵
- Program crash
PID:2340
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 360 -p 1788 -ip 17881⤵PID:2876
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1788-0-0x0000000000400000-0x000000000040A000-memory.dmpFilesize
40KB