Overview

overview

9

Static

static

3

NEAS.0842d...10.exe

windows7-x64

9

NEAS.0842d...10.exe

windows10-2004-x64

9

Analysis

  • max time kernel
    121s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    12/11/2023, 09:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.0842dea64aede04bc5900e7dcf824f10.exe

  • Size

    76KB

  • MD5

    0842dea64aede04bc5900e7dcf824f10

  • SHA1

    f8470a72a3cf6a29ad6dc8740352c6186b24be2f

  • SHA256

    3e66740971388f1b471a5ea13517aa76854228ff424465842d4f0ac202b9bb10

  • SHA512

    8dc88af4b810a7927de390f7bb3509e61ce14b41deb826b89f8390a405b540aa34b7f26f0fa885738ec8969401c487daf5964bd514314005169fa511f4aaae19

  • SSDEEP

    1536:W7Z2sspApkZrZnZrZHZrZ1iqktYtlXGkR2SfXGkR2Sc:62ssWpQXGkR2SfXGkR2Sc

Score
9/10
ransomware

Malware Config

Signatures

  • Renames multiple (61) files with added filename extension

    This suggests ransomware activity of encrypting all the files on the system.

    ransomware

Processes

  • C:\Users\Admin\AppData\Local\Temp\NEAS.0842dea64aede04bc5900e7dcf824f10.exe
    "C:\Users\Admin\AppData\Local\Temp\NEAS.0842dea64aede04bc5900e7dcf824f10.exe"
    1⤵
      PID:2512

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\$Recycle.Bin\S-1-5-21-2084844033-2744876406-2053742436-1000\desktop.ini.tmp
      Filesize

      76KB

      MD5

      bc9e058f54849d9b8e122ea8c72348f3

      SHA1

      e6d4c9813658638f4c3339f28ddad8cafa8438ce

      SHA256

      da0c6dbe7f0e1093028d877c8292dbdc02fadc0efbd285364bb1dde7fd501770

      SHA512

      144b6bc6480fc1c1418bd431c63e7960611ccedf2b79c221976d9a09819acaacca5e905f61f2de7770b2e921e179dd08830739541f26d5bcd7ecc437af9bb258

      Download Submit

    • C:\MSOCache\All Users\{90140000-0011-0000-0000-0000000FF1CE}-C\Office64WW.xml.tmp
      Filesize

      85KB

      MD5

      0f1e4430f183187fa56b3fdc9d39d28b

      SHA1

      bb425dd22bc7543cc59a28d7743f57905c722b8f

      SHA256

      e3400a48e5d68e9b99f84607d2e39b74db938432e7e0bc376a4e9ba77fd79066

      SHA512

      8d2f211e842adcb21cff210b27110dbb35c4d4eeb508a7912e923c3fd02d97134d44c0234b59f0ad286e6cc04cc6db0b26c11b43ca3fc760891f68dac08e831c

      Download Submit