Overview

overview

10

Static

static

4c3b697133...c3.exe

windows7_x64

10

4c3b697133...c3.exe

windows10_x64

1

Analysis

  • max time kernel
    118s
  • max time network
    149s
  • platform
    windows10_x64
  • resource
    win10
  • submitted
    17/07/2020, 21:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4c3b697133d2fccd031e0d166ebb0885d56a6334580ae9c1f584fd5645de6bc3.exe

  • Size

    276KB

  • MD5

    759fb86bf0d5e7d985fa93f107dbb611

  • SHA1

    540af784a4caa41b23557ba3309a865500bf09d2

  • SHA256

    4c3b697133d2fccd031e0d166ebb0885d56a6334580ae9c1f584fd5645de6bc3

  • SHA512

    9d4850f08c51727645b0713111ef8f20faf7ca0cfef4842d41b970275842b58ce9e230424967318a3252ea59b74bf8458d04458803d8a128c5495bc5100ab267

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: EmotetMutantsSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4c3b697133d2fccd031e0d166ebb0885d56a6334580ae9c1f584fd5645de6bc3.exe
    "C:\Users\Admin\AppData\Local\Temp\4c3b697133d2fccd031e0d166ebb0885d56a6334580ae9c1f584fd5645de6bc3.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: EmotetMutantsSpam
    PID:3060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3060-0-0x0000000002250000-0x000000000225C000-memory.dmp

    Filesize

    48KB

    Download

  • memory/3060-1-0x0000000000400000-0x0000000000448000-memory.dmp

    Filesize

    288KB

    Download