5515905a7775507c10cd73d975bab669d94b7ee09434e8c9e488fa36fc93ed63

Analysis

max time kernel
188s
max time network
33s
platform
windows7_x64
resource
win7-20231023-en
resource tags

arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
submitted
01/11/2023, 13:56

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

NEAS.2f1fb42dac829601d0b996436b8640b0.exe
Size

211KB
MD5

2f1fb42dac829601d0b996436b8640b0
SHA1

24c0b0ec95242d439735c5aebe4cd2a76b6368e4
SHA256

5515905a7775507c10cd73d975bab669d94b7ee09434e8c9e488fa36fc93ed63
SHA512

6221b3788424704e155666cabe16473c7df3319257b68fcb0fc5d70fb0bbd913c00bbc8030c0f31422148f60b08bc1e76d78bb176242766e8bed8bd085bb7ac4
SSDEEP

3072:Td+dbY2w4bnLPmp7W70OKaXODqfPJotO7/ZVFB9zKv65rq/ps837:ToM4vH7fMDqfhZFBdw6lq/psi

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe
2764	NEAS.2f1fb42dac829601d0b996436b8640b0.exe

C:\Users\Admin\AppData\Local\Temp\NEAS.2f1fb42dac829601d0b996436b8640b0.exe
"C:\Users\Admin\AppData\Local\Temp\NEAS.2f1fb42dac829601d0b996436b8640b0.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:2764

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2764-0-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-1-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-2-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-3-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-4-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-5-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-6-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-7-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-8-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-9-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-10-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-11-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-12-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-13-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-14-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-15-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-16-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download
memory/2764-17-0x0000000000E20000-0x0000000000EB4000-memory.dmp

Filesize
592KB

Download