4e943075967fb249b56a16f3f7c9d647e98d6d85af2b162aa623ee7fc33dc331 | Triage

Submit
Reports

Overview

overview

Static

static

8

gescanntes...nt.zip

windows7-x64

1

gescanntes...nt.zip

windows10-2004-x64

1

gescanntes...nt.doc

windows7-x64

gescanntes...nt.doc

windows10-2004-x64

Resubmissions

17-03-2023 10:17

230317-mbr8pshf9x 10

16-03-2023 13:49

230316-q42vdsba75 10

16-03-2023 13:38

230316-qxl6csdc9w 10

Analysis

max time kernel
30s
max time network
33s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
16-03-2023 13:38

Sharing

Static task

static1

macro macro_on_action

2 signatures

Behavioral task

behavioral1

Sample

gescanntes-Dokument.zip

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

gescanntes-Dokument.zip

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

gescanntes-Dokument.doc

Resource

win7-20230220-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral4

Sample

gescanntes-Dokument.doc

Resource

win10v2004-20230220-en

emotet epoch4 banker persistence trojan

windows10-2004-x64

12 signatures

150 seconds

Report Analysis Logs

General

Target

gescanntes-Dokument.zip
Size

1.2MB
MD5

6d9cbb363088b30514e5f6d2fb720578
SHA1

cf9e4c7534e0116cae7f8714e3284061ce058ff6
SHA256

399d678e20c83ded5fc09691b409286ff278787f1e9406cda316110518f285c4
SHA512

5556dffeef24c9fd2b976019e54123984bc907eb1c8f08bb81299d2975098e6a4ec07ee3327da95045005d136ccd2b335d3b79d64d121f78916e83a6f3718f9d
SSDEEP

12288:7hY6fxW+B96/KYREga72L2X0lMNPZqv5Uiu3stsRkT/mCadF5qs:7hXfxl91UOqufVZkTOdv7

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\Explorer.exe
C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\gescanntes-Dokument.zip
1⤵
PID:1208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy