Overview

overview

3

Static

static

3

NEAS.1250e...40.exe

windows7-x64

3

NEAS.1250e...40.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/11/2023, 13:53

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.1250eb3af9a180f5f4918138dfd60040.exe

  • Size

    204KB

  • MD5

    1250eb3af9a180f5f4918138dfd60040

  • SHA1

    90276dad4fc55f7faf17b98efd7534dc41454385

  • SHA256

    aa14c658541f698c7d2ae94055d29bb27fc9f787309d47673d45ca4c71dd5259

  • SHA512

    1780a5fd05eba223c206a01b61c096ebe80f84ad8b6298f4d9818efff5ba95f084f79d7447b319c9f4891e1f84a5f4d1cd79700351299c3da8187c7ed17d30fd

  • SSDEEP

    768:P6cPsAifwZJ0cZGUk6vJOBdhqm2PeaiBWJQekPrVU02p/1H5/Xdnh:SccYH/Gnc+hmlJQekju02LH

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\NEAS.1250eb3af9a180f5f4918138dfd60040.exe
    "C:\Users\Admin\AppData\Local\Temp\NEAS.1250eb3af9a180f5f4918138dfd60040.exe"
    1⤵
      PID:4412
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4412 -s 224
        2⤵
        • Program crash
        PID:3652
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4412 -ip 4412
      1⤵
        PID:3136

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/4412-0-0x0000000000400000-0x0000000000433000-memory.dmp

              Filesize

              204KB

              Download