Overview

overview

1

Static

static

SlurpeeEXE

windows10_x64

1

Analysis

  • max time kernel
    70s
  • max time network
    73s
  • platform
    windows10_x64
  • resource
    win10v20201028
  • submitted
    22-01-2021 09:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    emotet_exe_e1_4f2f9643f342c72b7c21a592605a0706fa596c5b0f3737fa11bf155461c10706_2021-01-22__094001._exe.dll

  • Size

    423KB

  • MD5

    27ac4bce8d5f78dc96b2202e45af77a2

  • SHA1

    6dff683b345b65b13d2631402114b9178b3b812e

  • SHA256

    ff92cc5557ee9c76410c6e98f48d5108eff7fead0aae15947621be2dbc41b81f

  • SHA512

    ace37e64d47564b2316144124634b1b04c86ee18e1fec8fcb7f252c81a503c03820ce221957bc5774db09770342f49c959a5d7a0309dacf984d7a2e7dfa0ba58

Score
1/10

Malware Config

Signatures

  • Modifies registry class 13 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\emotet_exe_e1_4f2f9643f342c72b7c21a592605a0706fa596c5b0f3737fa11bf155461c10706_2021-01-22__094001._exe.dll
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:3884
    • C:\Windows\SysWOW64\regsvr32.exe
      /s C:\Users\Admin\AppData\Local\Temp\emotet_exe_e1_4f2f9643f342c72b7c21a592605a0706fa596c5b0f3737fa11bf155461c10706_2021-01-22__094001._exe.dll
      2⤵
      • Modifies registry class
      PID:1260

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1260-2-0x0000000000000000-mapping.dmp
    Download