Overview

overview

7

Static

static

7

nEO iMAGIN...es.dll

windows7-x64

3

nEO iMAGIN...es.dll

windows10-2004-x64

3

nEO iMAGIN...or.htm

windows7-x64

1

nEO iMAGIN...or.htm

windows10-2004-x64

1

nEO iMAGIN...or.htm

windows7-x64

1

nEO iMAGIN...or.htm

windows10-2004-x64

1

nEO iMAGING/IJL15.dll

windows7-x64

1

nEO iMAGING/IJL15.dll

windows10-2004-x64

1

nEO iMAGIN...71.dll

windows7-x64

3

nEO iMAGIN...71.dll

windows10-2004-x64

3

nEO iMAGIN...71.dll

windows7-x64

3

nEO iMAGIN...71.dll

windows10-2004-x64

3

nEO iMAGIN...nt.dll

windows7-x64

1

nEO iMAGIN...nt.dll

windows10-2004-x64

1

nEO iMAGIN...ce.dll

windows7-x64

1

nEO iMAGIN...ce.dll

windows10-2004-x64

1

nEO iMAGIN...st.dll

windows7-x64

3

nEO iMAGIN...st.dll

windows10-2004-x64

3

nEO iMAGING/atl71.dll

windows7-x64

1

nEO iMAGING/atl71.dll

windows10-2004-x64

1

nEO iMAGIN...mm.dll

windows7-x64

3

nEO iMAGIN...mm.dll

windows10-2004-x64

1

nEO iMAGIN...ap.dll

windows7-x64

3

nEO iMAGIN...ap.dll

windows10-2004-x64

3

nEO iMAGIN...NG.exe

windows7-x64

1

nEO iMAGIN...NG.exe

windows10-2004-x64

1

nEO iMAGIN...c.html

windows7-x64

1

nEO iMAGIN...c.html

windows10-2004-x64

1

nEO iMAGIN...s1.dll

windows7-x64

1

nEO iMAGIN...s1.dll

windows10-2004-x64

1

nEO iMAGIN...s2.dll

windows7-x64

1

nEO iMAGIN...s2.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    126s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22/07/2024, 23:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    nEO iMAGING/nEOiMAGING.exe

  • Size

    8.3MB

  • MD5

    aa6d9207d72a0f6361c2dd00bcae85fb

  • SHA1

    f090d97377c79c9d54e25dd74d14718e4b18dc91

  • SHA256

    8b019b4c1dc46d082d964090e07a8ccb27df91c50846cad01daecad1b8b0c7d9

  • SHA512

    5db85003da895a90d7890b4ed515d284ccdd0ffd3ed7be60ac4e9ae6bd98eb761bd7ce72df0f0e1f7274ed7bde9719f85f7d9ff242d53cbf93b5df4fe711d044

  • SSDEEP

    98304:9pgrw+QA0Lx0GPG3sDz4QAq8VUFRonPJFv5CDC+JQBypcWw200/ueS2uquV/gB5R:9tFxL+3s2BhApu6cn/gB5R

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\nEO iMAGING\nEOiMAGING.exe
    "C:\Users\Admin\AppData\Local\Temp\nEO iMAGING\nEOiMAGING.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\nEO iMAGING\nEOiMAGING.ini
    Filesize

    672B

    MD5

    1e7ad375af5d47acbe29eb63292952b3

    SHA1

    25b613256f096046fc15e6e6ffb960fca3d322a1

    SHA256

    5d2258eb1f513376605f3382d94da38a8312122ac842147e43d3525b8bca38a1

    SHA512

    03be2f0567e011c6eb0091079838731ac27dbc985b8f3055e396abe11a1ada5554e0dd60644850edd6e0dc229abfe801cf60928f63b59115e8b13bbc0094bf68

    Download Submit

  • memory/4896-7-0x0000000008500000-0x0000000008568000-memory.dmp

    Filesize

    416KB

    Download

  • memory/4896-2-0x0000000000415000-0x0000000000416000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4896-3-0x00000000031A0000-0x00000000031EB000-memory.dmp

    Filesize

    300KB

    Download

  • memory/4896-5-0x0000000000400000-0x0000000000C99000-memory.dmp

    Filesize

    8.6MB

    Download

  • memory/4896-6-0x0000000000400000-0x0000000000C99000-memory.dmp

    Filesize

    8.6MB

    Download

  • memory/4896-0-0x0000000060000000-0x0000000060060000-memory.dmp

    Filesize

    384KB

    Download

  • memory/4896-1-0x0000000002A30000-0x0000000002AA2000-memory.dmp

    Filesize

    456KB

    Download

  • memory/4896-82-0x0000000008500000-0x0000000008568000-memory.dmp

    Filesize

    416KB

    Download

  • memory/4896-81-0x0000000000400000-0x0000000000C99000-memory.dmp

    Filesize

    8.6MB

    Download

  • memory/4896-85-0x0000000000400000-0x0000000000C99000-memory.dmp

    Filesize

    8.6MB

    Download

  • memory/4896-88-0x0000000008500000-0x0000000008568000-memory.dmp

    Filesize

    416KB

    Download

  • memory/4896-87-0x0000000000400000-0x0000000000C99000-memory.dmp

    Filesize

    8.6MB

    Download