60bc04ff7c5f6a5c9de16d2bcaf0f0a7ad3b25ad1549bdc521ade92f6fa34aa2 | Triage

Analysis

max time kernel
121s
max time network
124s
platform
windows10_x64
resource
win10-en-20211208
submitted
15-01-2022 02:06

Sharing

Report Analysis Logs

General

Target

60bc04ff7c5f6a5c9de16d2bcaf0f0a7ad3b25ad1549bdc521ade92f6fa34aa2.dll
Size

574KB
MD5

041b01008b4b44820c2aa35002a51972
SHA1

7b7a1360ba04be8aa3115c00ad580251d560c62c
SHA256

60bc04ff7c5f6a5c9de16d2bcaf0f0a7ad3b25ad1549bdc521ade92f6fa34aa2
SHA512

2f4c5e04677bdb56aa8facdb495c5ee610a71736b8aaea549c192a3f9f214d6c11754c0200ad03d5d7ad4ebf857c33d6bd10aee5421b5b94fe8c8fce9e7383ec

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 6 IoCs

Processes:

regsvr32.exeregsvr32.exe

description	pid	process	target process
PID 3140 wrote to memory of 3424	3140	regsvr32.exe	regsvr32.exe
PID 3140 wrote to memory of 3424	3140	regsvr32.exe	regsvr32.exe
PID 3140 wrote to memory of 3424	3140	regsvr32.exe	regsvr32.exe
PID 3424 wrote to memory of 1340	3424	regsvr32.exe	rundll32.exe
PID 3424 wrote to memory of 1340	3424	regsvr32.exe	rundll32.exe
PID 3424 wrote to memory of 1340	3424	regsvr32.exe	rundll32.exe

C:\Windows\system32\regsvr32.exe
regsvr32 /s C:\Users\Admin\AppData\Local\Temp\60bc04ff7c5f6a5c9de16d2bcaf0f0a7ad3b25ad1549bdc521ade92f6fa34aa2.dll
1⤵
- Suspicious use of WriteProcessMemory
PID:3140

C:\Windows\SysWOW64\regsvr32.exe
/s C:\Users\Admin\AppData\Local\Temp\60bc04ff7c5f6a5c9de16d2bcaf0f0a7ad3b25ad1549bdc521ade92f6fa34aa2.dll
2⤵
- Suspicious use of WriteProcessMemory
PID:3424

C:\Windows\SysWOW64\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe "C:\Users\Admin\AppData\Local\Temp\60bc04ff7c5f6a5c9de16d2bcaf0f0a7ad3b25ad1549bdc521ade92f6fa34aa2.dll",DllRegisterServer
3⤵
PID:1340

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1340-118-0x0000000000000000-mapping.dmp

Download
memory/3424-115-0x0000000000000000-mapping.dmp

Download
memory/3424-117-0x00000000010C5000-0x00000000010C6000-memory.dmp

Filesize
4KB

Download