3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378 | Triage

Analysis

max time kernel
146s
max time network
146s
platform
windows10_x64
resource
win10v200430
submitted
18-07-2020 10:58

Sharing

Report Analysis Logs

General

Target

3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe
Size

273KB
MD5

023152e8edd31e1700da11bbc53c0062
SHA1

9d5bae4619e4b3abf98c880cbca40349006cb050
SHA256

3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378
SHA512

dfeea2184ce96615170df810bf82b48745a5cbf113ec6c185bb8724c3ac37fb69647587a0b92994404f834c7c2eb1a6068aff3eaff0dfceda631162385e42836

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe

Suspicious behavior: EnumeratesProcesses 6 IoCs

pid	Process
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe

Suspicious behavior: EmotetMutantsSpam 1 IoCs

pid	Process
1808	3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe

C:\Users\Admin\AppData\Local\Temp\3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe
"C:\Users\Admin\AppData\Local\Temp\3a2b46cbdec52f075a53aaa054be903bfd1addf65f8a9838b1703edb836b8378.exe"
1⤵
- Suspicious use of SetWindowsHookEx
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: EmotetMutantsSpam
PID:1808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1808-0-0x0000000002250000-0x000000000225C000-memory.dmp

Filesize
48KB

Download
memory/1808-1-0x0000000000400000-0x0000000000449000-memory.dmp

Filesize
292KB

Download