Overview

overview

10

Static

static

1124da6bbe...af.exe

windows7_x64

10

1124da6bbe...af.exe

windows10_x64

1

Analysis

  • max time kernel
    126s
  • max time network
    150s
  • platform
    windows10_x64
  • resource
    win10v200430
  • submitted
    17/07/2020, 19:39

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    1124da6bbe645d8612435cafde8e26047d8485efe073361e97e81e9f0ff172af.exe

  • Size

    276KB

  • MD5

    36b535c4eec4cb7c5a3ec1ec83c77adb

  • SHA1

    ae72d594849ace554c46f226cf7b37abb0b195b2

  • SHA256

    1124da6bbe645d8612435cafde8e26047d8485efe073361e97e81e9f0ff172af

  • SHA512

    e2be6a3c2932b3860a72af9f4f6b8fc43e4ed2935877882412f44950c17a8ba2eb16fe9e250b8d644aa4364ea17f53dc5fa3268c3be2f1f314ff32acc5f3d64f

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: EmotetMutantsSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1124da6bbe645d8612435cafde8e26047d8485efe073361e97e81e9f0ff172af.exe
    "C:\Users\Admin\AppData\Local\Temp\1124da6bbe645d8612435cafde8e26047d8485efe073361e97e81e9f0ff172af.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: EmotetMutantsSpam
    PID:1612

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1612-0-0x0000000002330000-0x000000000233C000-memory.dmp

          Filesize

          48KB

          Download

        • memory/1612-1-0x0000000000400000-0x0000000000448000-memory.dmp

          Filesize

          288KB

          Download