ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f | Triage

Analysis

max time kernel
65s
max time network
125s
platform
windows10_x64
resource
win10
submitted
18-07-2020 03:13

Sharing

Report Analysis Logs

General

Target

ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe
Size

273KB
MD5

47df5f3c5f5a0997f91e40d6773f1783
SHA1

459f70d403acb394d3799a5db3f545cb69d2a4c3
SHA256

ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f
SHA512

ba03216c042f255db28cfd55ebe584bab0d7bd9e9d8f6db043517a37abab727907140dbafb8ac536d38fc848ed62631310fbfc0086df2e587a28bc598c413d1c

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2728	ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe
2728	ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2728	ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe
2728	ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe
2728	ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe
2728	ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe

C:\Users\Admin\AppData\Local\Temp\ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe
"C:\Users\Admin\AppData\Local\Temp\ee4b0e09071ac6d98bbc8e69f3fe19eacf0d1992b0e02dde2d1031168b31b10f.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: EnumeratesProcesses
PID:2728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2728-0-0x00000000021D0000-0x00000000021DC000-memory.dmp

Filesize
48KB

Download