Analysis
-
max time kernel
150s -
max time network
149s -
platform
windows10_x64 -
resource
win10-en-20210920 -
submitted
12-10-2021 19:51
Static task
static1
Behavioral task
behavioral1
Sample
stage2.bin.dll
Resource
win7v20210408
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
stage2.bin.dll
Resource
win10-en-20210920
windows10_x64
0 signatures
0 seconds
General
-
Target
stage2.bin.dll
-
Size
76KB
-
MD5
e8ae3940c30296d494e534e0379f15d6
-
SHA1
3bcb5e7bc9c317c3c067f36d7684a419da79506c
-
SHA256
d6caf64597bd5e0803f7d0034e73195e83dae370450a2e890b82f77856830167
-
SHA512
d07b8e684fc1c7a103b64b46d777091bb79103448e91f862c12f0080435feff1c9e907472b7fd4e236ff0b0a8e90dbbaaac202e2238f95578fed1ff6f5247386
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 1720 wrote to memory of 1920 1720 regsvr32.exe 70 PID 1720 wrote to memory of 1920 1720 regsvr32.exe 70 PID 1720 wrote to memory of 1920 1720 regsvr32.exe 70