Overview

overview

8

Static

static

3

NEAS.7752a...b0.exe

windows7-x64

8

NEAS.7752a...b0.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    6s
  • max time network
    9s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231025-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231025-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/10/2023, 19:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.7752ab6d3b8e6b124819a2ddcff8ceb0.exe

  • Size

    233KB

  • MD5

    7752ab6d3b8e6b124819a2ddcff8ceb0

  • SHA1

    d3c2bb5b596f0e152cd6c18585978bc9ac4ccea4

  • SHA256

    fea1e1e1b65652e5a39d6f466a9ac466001e19351df5659489b91c342d763bc4

  • SHA512

    a41d062a0b7d191b065a96ac06b0894ae2308f312d3a47424b92f906c7d43276918e62432b8eae7708fda791ee38620d63a3b776eb3adc33b69390e0cc2fe0d1

  • SSDEEP

    6144:flzoa7yNgAIQo8OLamr3RLzRnHhq92gkqE:ftB7yNgD83m3fE92TqE

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in Program Files directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NEAS.7752ab6d3b8e6b124819a2ddcff8ceb0.exe
    "C:\Users\Admin\AppData\Local\Temp\NEAS.7752ab6d3b8e6b124819a2ddcff8ceb0.exe"
    1⤵
    • Drops file in Program Files directory
    PID:3396
  • C:\PROGRA~3\Mozilla\asqmzyj.exe
    C:\PROGRA~3\Mozilla\asqmzyj.exe -kewnvcd
    1⤵
    • Executes dropped EXE
    PID:2304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\PROGRA~3\Mozilla\asqmzyj.exe
    Filesize

    233KB

    MD5

    315da6844807c619b12766a14d331757

    SHA1

    e7af7dc79efaaadeea696422bbd06b9477fcd4b0

    SHA256

    d04b3cda0379924d34dde0d6bcde0b6b0711a8c0bbc9d062f354987403473c27

    SHA512

    3885eb2e1c05bdc34be0daf057c33c136558ef20e27d2cd2570e97b80c3a5494e354dea57decb46a7acf90d73f3ca7bfff062a5d1467fc4913c690035c7de337

    Download Submit

  • C:\ProgramData\Mozilla\asqmzyj.exe
    Filesize

    233KB

    MD5

    315da6844807c619b12766a14d331757

    SHA1

    e7af7dc79efaaadeea696422bbd06b9477fcd4b0

    SHA256

    d04b3cda0379924d34dde0d6bcde0b6b0711a8c0bbc9d062f354987403473c27

    SHA512

    3885eb2e1c05bdc34be0daf057c33c136558ef20e27d2cd2570e97b80c3a5494e354dea57decb46a7acf90d73f3ca7bfff062a5d1467fc4913c690035c7de337

    Download Submit

  • memory/2304-6-0x0000000000DC0000-0x0000000000E1B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/3396-0-0x00000000021E0000-0x000000000223B000-memory.dmp

    Filesize

    364KB

    Download

  • memory/3396-1-0x0000000000400000-0x000000000045B000-memory.dmp

    Filesize

    364KB

    Download