Overview

overview

10

Static

static

bd4787bca4...9e.exe

windows7_x64

10

bd4787bca4...9e.exe

windows10_x64

1

Analysis

  • max time kernel
    142s
  • max time network
    132s
  • platform
    windows10_x64
  • resource
    win10v200430
  • submitted
    18-07-2020 01:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bd4787bca469e412f9eadb618826cdc6af12fde3d74e3f34e2b09422404ec69e.exe

  • Size

    273KB

  • MD5

    f6874fb9c49255c07e2addd27cb0c7af

  • SHA1

    65440d6a6370a8f71a9b857ef269d735fe8d2675

  • SHA256

    bd4787bca469e412f9eadb618826cdc6af12fde3d74e3f34e2b09422404ec69e

  • SHA512

    b3d3f677e5b365bab3f5aedc6e87301e5d49c4ab43688b047a151b1cee170ca12f6b1be9ef15abf4316dac4c5fb0eae2b92d18c38db393dd13af89b29e110974

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 14 IoCs
  • Suspicious behavior: EmotetMutantsSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bd4787bca469e412f9eadb618826cdc6af12fde3d74e3f34e2b09422404ec69e.exe
    "C:\Users\Admin\AppData\Local\Temp\bd4787bca469e412f9eadb618826cdc6af12fde3d74e3f34e2b09422404ec69e.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: EmotetMutantsSpam
    PID:4004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4004-0-0x0000000002330000-0x000000000233C000-memory.dmp

    Filesize

    48KB

    Download

  • memory/4004-1-0x0000000000400000-0x0000000000449000-memory.dmp

    Filesize

    292KB

    Download