Overview

overview

10

Static

static

2b29fc39e4...b1.exe

windows7_x64

10

2b29fc39e4...b1.exe

windows10_x64

1

Analysis

  • max time kernel
    136s
  • max time network
    147s
  • platform
    windows10_x64
  • resource
    win10v200430
  • submitted
    18-07-2020 01:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b29fc39e49ee3b885f9f61248d3b4bc1204856f99b30b9d215660b707a3e2b1.exe

  • Size

    273KB

  • MD5

    bf17c084715099f9987c2b3f1a51b24e

  • SHA1

    bf7c7cd3fd6635b40ac0ec594a678f2856bdd2d8

  • SHA256

    2b29fc39e49ee3b885f9f61248d3b4bc1204856f99b30b9d215660b707a3e2b1

  • SHA512

    8a3a8ffecd32f5c5a10c22631731f702719d9c3c6c423761831416ae445422518ef8b7054eac11b1da141a2c765cc7d4b80d5e24822897eb1e29fb9f576fb8b3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: EmotetMutantsSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2b29fc39e49ee3b885f9f61248d3b4bc1204856f99b30b9d215660b707a3e2b1.exe
    "C:\Users\Admin\AppData\Local\Temp\2b29fc39e49ee3b885f9f61248d3b4bc1204856f99b30b9d215660b707a3e2b1.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: EmotetMutantsSpam
    • Suspicious use of SetWindowsHookEx
    PID:3848

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3848-0-0x00000000021D0000-0x00000000021DC000-memory.dmp

    Filesize

    48KB

    Download

  • memory/3848-1-0x0000000000400000-0x0000000000449000-memory.dmp

    Filesize

    292KB

    Download