1a2a8f604b8e4917a7e5a2a8994f748b59ca435c8aabc6d3ed211c696b883bc4 | Triage

Resubmissions

12-03-2022 04:45

220312-fde8laafhm 10

Analysis

max time kernel
131s
max time network
155s
platform
windows10-2004_x64
resource
win10v2004-en-20220113
submitted
12-03-2022 04:45

Sharing

Report Analysis Logs

General

Target

youyou_unpacked.dll
Size

16KB
MD5

43f4f42d604409c862db1f4ac30efbf1
SHA1

16a4535ce8a884b14a629c467e15d33b3a6caf6a
SHA256

1a2a8f604b8e4917a7e5a2a8994f748b59ca435c8aabc6d3ed211c696b883bc4
SHA512

08355d0c797fa9eba2f79d6ab880c7e231500ed3c610d7eceb51d8128aa94486cba94075748564ca16fc3eab75191d68eafcb730398b022f7a9af7416e5f102a

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes:

regsvr32.exe

pid process

2472 regsvr32.exe
2472 regsvr32.exe

C:\Windows\system32\regsvr32.exe
regsvr32 /s C:\Users\Admin\AppData\Local\Temp\youyou_unpacked.dll
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:2472

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads