Analysis
-
max time kernel
114s -
max time network
121s -
platform
windows7_x64 -
resource
win7 -
submitted
07-07-2020 15:05
Static task
static1
Behavioral task
behavioral1
Sample
C.dll
Resource
win7
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
C.dll
Resource
win10v200430
windows10_x64
0 signatures
0 seconds
General
-
Target
C.dll
-
Size
36KB
-
MD5
c39c2a20e5ebab0a4db1e58f192ecc5e
-
SHA1
b15bd3a54b07ff4cb42bdc1e9de98ca511488ecf
-
SHA256
daf5fb094685e539b734678789da31bb003a3e4000a29c651d6bf93483fdc021
-
SHA512
3faacf3c433bf8cb05125f9a9e356ed070de5bec5a221d3a95a6db1a8628ebc5082c3e5785900c71c0c3cf1c866e8b5b893fe5c4d076b8787f372c2e88662ed5
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
Processes:
rundll32.exedescription pid process target process PID 1124 wrote to memory of 1072 1124 rundll32.exe rundll32.exe PID 1124 wrote to memory of 1072 1124 rundll32.exe rundll32.exe PID 1124 wrote to memory of 1072 1124 rundll32.exe rundll32.exe PID 1124 wrote to memory of 1072 1124 rundll32.exe rundll32.exe PID 1124 wrote to memory of 1072 1124 rundll32.exe rundll32.exe PID 1124 wrote to memory of 1072 1124 rundll32.exe rundll32.exe PID 1124 wrote to memory of 1072 1124 rundll32.exe rundll32.exe