84e14e0a284fa590aedfd90e171337f69dcc9fea35d8742f597da88c8143afd1 | Triage

Analysis

max time kernel
10s
max time network
18s
platform
windows10-1703_x64
resource
win10-20240214-en
resource tags

arch:x64arch:x86image:win10-20240214-enlocale:en-usos:windows10-1703-x64system
submitted
19/02/2024, 03:17

Sharing

Report Analysis Logs

General

Target

NHOS-Flash-Tool-1.1.2.deb
Size

896KB
MD5

56925f145a5d58f61c1f6ca504dd9c7b
SHA1

4993b06f420c80e25c7c88524fb30e261aecfdcb
SHA256

84e14e0a284fa590aedfd90e171337f69dcc9fea35d8742f597da88c8143afd1
SHA512

b6fb32e0363a2fc0a838a5dcd1eb324d25a108def77fca4a2b945c4ce5472a9b30354ba062c38a77583203ed4a7be86b289ef3143241b024ab915e0bd7917a55
SSDEEP

24576:2RFJkSczRIv4QysZPwmU6d0ncVRBQQi3UPLrH:wgGByawmU0XB9ikjrH

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\NHOS-Flash-Tool-1.1.2.deb
1⤵
PID:1284

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
PID:5032

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads