Analysis
-
max time kernel
145s -
max time network
129s -
platform
windows7_x64 -
resource
win7-en-20210920 -
submitted
02-10-2021 20:44
Static task
static1
Behavioral task
behavioral1
Sample
10000000.bcdf.dll
Resource
win7-en-20210920
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
10000000.bcdf.dll
Resource
win10v20210408
windows10_x64
0 signatures
0 seconds
General
-
Target
10000000.bcdf.dll
-
Size
50KB
-
MD5
4d4be2544b2e0a61beac5371a7695e04
-
SHA1
fabc2d4e221280b53a57814beb8b44d73855d4d6
-
SHA256
f745ae59b8e4c4c5d5d0872b86168bc8c82fef459bd2303993ac166cbe79acf9
-
SHA512
bcd9094363ea96d50530609a14cbeebd6db6e3ff285fd2556a6a11d7645244bb8da15848803a666931dde48cf93a94a238c1d16b778fccd6255bd6c5f20d83a3
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 1216 wrote to memory of 852 1216 regsvr32.exe 27 PID 1216 wrote to memory of 852 1216 regsvr32.exe 27 PID 1216 wrote to memory of 852 1216 regsvr32.exe 27 PID 1216 wrote to memory of 852 1216 regsvr32.exe 27 PID 1216 wrote to memory of 852 1216 regsvr32.exe 27 PID 1216 wrote to memory of 852 1216 regsvr32.exe 27 PID 1216 wrote to memory of 852 1216 regsvr32.exe 27