Overview

overview

10

Static

static

10

rgoc1.dll

windows7_x64

1

rgoc1.dll

windows10-2004_x64

1

rgoc2.dll

windows7_x64

1

rgoc2.dll

windows10-2004_x64

1

Analysis

  • max time kernel
    78s
  • max time network
    134s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220414-en
  • submitted
    21-05-2022 10:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    rgoc2.dll

  • Size

    276KB

  • MD5

    280c45fdd645059f35e47aef8e4d555c

  • SHA1

    56d8b5335b3dec6bfb260522c65170aa6b3b5798

  • SHA256

    df90e36ead46dcff6b6235a71ef05f6ca52250f432ddb46a4a0b8b9142660ba3

  • SHA512

    0ad96ed3d1628a394fea1dad45e95feaf27cfae8b22107c764f2f6a920aa4df5391047ef1424033159fd1d06a7ccffb5cfcfadf742d214d8edf3fe097b5899ac

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\rgoc2.dll,#1
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:2116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2116-130-0x000001BDA43E0000-0x000001BDA43E3000-memory.dmp
    Filesize

    12KB

    Download
  • memory/2116-131-0x00007FFB56B40000-0x00007FFB56BAA000-memory.dmp
    Filesize

    424KB

    Download