Overview

overview

10

Static

static

5927de7de6...2a.exe

windows7_x64

10

5927de7de6...2a.exe

windows10_x64

1

Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows10_x64
  • resource
    win10
  • submitted
    17/07/2020, 20:15

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    5927de7de6e9cc5bba1df2f363dba427162b90d6c6b6c62bef32164a306db42a.exe

  • Size

    276KB

  • MD5

    b4b3dbe927c1935b7913d81d53ea29e2

  • SHA1

    45a94d784ae35c34fe4debfe6da2bb67fd96363c

  • SHA256

    5927de7de6e9cc5bba1df2f363dba427162b90d6c6b6c62bef32164a306db42a

  • SHA512

    f242c48c9b26c24793f71efbc26611f493aae74dc385bcecddae65503c9b94501f5ae42c5fdbba8ea9a4f6228605c1d065335dbd6c535c3a3c51ff4c4c8f8085

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: EmotetMutantsSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5927de7de6e9cc5bba1df2f363dba427162b90d6c6b6c62bef32164a306db42a.exe
    "C:\Users\Admin\AppData\Local\Temp\5927de7de6e9cc5bba1df2f363dba427162b90d6c6b6c62bef32164a306db42a.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: EmotetMutantsSpam
    • Suspicious use of SetWindowsHookEx
    PID:2460

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2460-0-0x0000000002320000-0x000000000232C000-memory.dmp

          Filesize

          48KB

          Download

        • memory/2460-1-0x0000000000400000-0x0000000000448000-memory.dmp

          Filesize

          288KB

          Download