Overview

overview

10

Static

static

e6defd5f08...b7.exe

windows7_x64

10

e6defd5f08...b7.exe

windows10_x64

1

Analysis

  • max time kernel
    145s
  • max time network
    152s
  • platform
    windows10_x64
  • resource
    win10
  • submitted
    18/07/2020, 01:51

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    e6defd5f0808ace3f1810c55930567619fac1e64e63e7247e76d8b1254da8ab7.exe

  • Size

    273KB

  • MD5

    2e9f438f43b38eca510e2c6f16ebfbf0

  • SHA1

    8042ce5d1a0c542292c5f59269b939715fa47e19

  • SHA256

    e6defd5f0808ace3f1810c55930567619fac1e64e63e7247e76d8b1254da8ab7

  • SHA512

    2efb4993df5e5362ba50822d688f28c52f0a058137a47cf4969d0c25d15a48b9fec26a2a7a5312ef1475951bdc03113ab47e21c67d425a24e45cba868685c5cf

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 20 IoCs
  • Suspicious behavior: EmotetMutantsSpam 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e6defd5f0808ace3f1810c55930567619fac1e64e63e7247e76d8b1254da8ab7.exe
    "C:\Users\Admin\AppData\Local\Temp\e6defd5f0808ace3f1810c55930567619fac1e64e63e7247e76d8b1254da8ab7.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: EmotetMutantsSpam
    PID:3900

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/3900-0-0x00000000021E0000-0x00000000021EC000-memory.dmp

          Filesize

          48KB

          Download

        • memory/3900-1-0x0000000000400000-0x0000000000449000-memory.dmp

          Filesize

          292KB

          Download