Analysis
-
max time kernel
141s -
max time network
103s -
platform
windows10-2004_x64 -
resource
win10v2004-20240426-en -
resource tags
arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system -
submitted
07/05/2024, 03:52
Static task
static1
Behavioral task
behavioral1
Sample
5fec7a48884005a1c91758afd9914970_NEAS.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
5fec7a48884005a1c91758afd9914970_NEAS.exe
Resource
win10v2004-20240426-en
General
-
Target
5fec7a48884005a1c91758afd9914970_NEAS.exe
-
Size
600KB
-
MD5
5fec7a48884005a1c91758afd9914970
-
SHA1
c66c1ffabb79f93f58b6dbbd1de511c3e9a851dd
-
SHA256
c1f90d7ae6f9e175683fcaf177d590362fc43e5eba975e225177d4d67d26f889
-
SHA512
87a66a8117256f4381adcf2115a0a615038ad7b675a0f17144e192e0f73ed017739590d38f97af0654720876e5d4295d2c4169486d2b8ba0a073b087a963c6e0
-
SSDEEP
12288:zhZ/iQ7P+8bGqh0u/b2ijdghXfa3nfyaKsEFBp40w3ZBOOs+z1:b7P+8bl2u9xglfaPyahE/pAts+z1
Malware Config
Signatures
-
Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs
Bootkits write to the MBR to gain persistence at a level below the operating system.
description ioc Process File opened for modification \??\PHYSICALDRIVE0 5fec7a48884005a1c91758afd9914970_NEAS.exe