Overview

overview

8

Static

static

3

AutoSnap.exe

windows7-x64

1

AutoSnap.exe

windows10-2004-x64

1

Client/DeskSide.exe

windows7-x64

1

Client/DeskSide.exe

windows10-2004-x64

1

Client/Des...��.url

windows7-x64

1

Client/Des...��.url

windows10-2004-x64

1

Client/FAKEDISK.sys

windows7-x64

1

Client/FAKEDISK.sys

windows10-2004-x64

1

Client/IMA...Ƭ.url

windows7-x64

1

Client/IMA...Ƭ.url

windows10-2004-x64

1

Client/InsFilt.exe

windows7-x64

8

Client/InsFilt.exe

windows10-2004-x64

8

Client/NUpdate.exe

windows7-x64

1

Client/NUpdate.exe

windows10-2004-x64

1

Client/NoClose.dll

windows7-x64

1

Client/NoClose.dll

windows10-2004-x64

1

Client/SEBarClt.exe

windows7-x64

6

Client/SEBarClt.exe

windows10-2004-x64

6

Client/SEBarVD.dll

windows7-x64

6

Client/SEBarVD.dll

windows10-2004-x64

6

Client/SEIEBho.dll

windows7-x64

6

Client/SEIEBho.dll

windows10-2004-x64

6

Client/SExpMenu.exe

windows7-x64

3

Client/SExpMenu.exe

windows10-2004-x64

3

Client/SyncExp.exe

windows7-x64

1

Client/SyncExp.exe

windows10-2004-x64

1

Client/SyncExpSim.exe

windows7-x64

6

Client/SyncExpSim.exe

windows10-2004-x64

6

Client/board.rtf

windows7-x64

4

Client/board.rtf

windows10-2004-x64

1

Client/nQMailer.exe

windows7-x64

5

Client/nQMailer.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    139s
  • max time network
    123s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-05-2024 01:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Client/NUpdate.exe

  • Size

    515KB

  • MD5

    534db5e534b89f999ae06bbc40bbfcd7

  • SHA1

    4f50d2ec0862075f5606e6b5893681baa394cf42

  • SHA256

    6a7293bc76d960ae1b47e3194752983d4691f0f955c1859223dbce80895f4621

  • SHA512

    1cf005e577fe9cae0b517fb1552269ec45f1969ca12dee40f73a15d2e29509afa04da86c4c27cf95a707320d572b2c6ea5afec271407f0cc79f05daac83f3c51

  • SSDEEP

    6144:FCV33UFrhZJL8Jc4j2CzHyjnekPTNikb5C6aE9TR170SfzZICGqmiQnl:aEFrbeeCee6iKQ6x11FfzqCXHQl

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\Client\NUpdate.exe
    "C:\Users\Admin\AppData\Local\Temp\Client\NUpdate.exe"
    1⤵
      PID:1284

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1284-0-0x00000000020E0000-0x00000000020E1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1284-1-0x0000000000400000-0x0000000000487000-memory.dmp

      Filesize

      540KB

      Download