Overview

overview

7

Static

static

7

9163ab9993...AS.exe

windows7-x64

7

9163ab9993...AS.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    141s
  • max time network
    125s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07-05-2024 07:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9163ab9993d4bc04932dfa24a67054b0_NEAS.exe

  • Size

    83KB

  • MD5

    9163ab9993d4bc04932dfa24a67054b0

  • SHA1

    9bc84e4ad125c1610e73350b59dcd55f8c3531a7

  • SHA256

    0305aad0c3ec457c76f23f3f2986e5f8a582545608db58c52a6f8de0260af3e2

  • SHA512

    5d5877e6b6cdb9e981118cbc994288ad984880f2d74d6fa4d42820b2e9f4b29bfd09c941279f30b3ba559fa2a5f424ed321df57bca8a91cdb649643ac111a361

  • SSDEEP

    1536:LJaPJpAz869DUxWB+i4OQ4NR2Kk+aSnfZaG8fcaOCzGquSE0cF+cK:LJ0TAz6Mte4A+aaZx8EnCGVuc

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 7 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\9163ab9993d4bc04932dfa24a67054b0_NEAS.exe
    "C:\Users\Admin\AppData\Local\Temp\9163ab9993d4bc04932dfa24a67054b0_NEAS.exe"
    1⤵
      PID:4920

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\rifaien2-DDH9pmczT35uIojL.exe
      Filesize

      83KB

      MD5

      6e8517735e3e9324f35a13b299b46c46

      SHA1

      8493f06a019aeb0470f4eed13a619cc4b23c6af8

      SHA256

      11a6c238a8294da0dcfaefea30acb1757de257aeb5f505ad709fb8a592a3a218

      SHA512

      4c21a7ec7fa98559a640f9269f3c49296a9cdc2dbde79d99486dcce93b08b0b54382900c16056b117195cf3f15a950e69c5b4c6eb408b81816fccad5e9c9ff1e

      Download Submit

    • memory/4920-0-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4920-1-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4920-7-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4920-14-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4920-21-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/4920-29-0x0000000000400000-0x000000000042A000-memory.dmp

      Filesize

      168KB

      Download