Overview
overview
10Static
static
01e6aea8ea...48.dll
windows7_x64
301e6aea8ea...48.dll
windows10-2004_x64
305c21d7273...45.dll
windows7_x64
305c21d7273...45.dll
windows10-2004_x64
30b2b6268a8...6f.dll
windows7_x64
30b2b6268a8...6f.dll
windows10-2004_x64
30e34390458...c3.dll
windows7_x64
30e34390458...c3.dll
windows10-2004_x64
31c4c02c4a7...f2.dll
windows7_x64
31c4c02c4a7...f2.dll
windows10-2004_x64
321bd2c8889...87.dll
windows7_x64
1021bd2c8889...87.dll
windows10-2004_x64
102bf1bf8c79...f3.dll
windows7_x64
32bf1bf8c79...f3.dll
windows10-2004_x64
3627c7fb21f...5a.dll
windows7_x64
3627c7fb21f...5a.dll
windows10-2004_x64
36dce1465d4...77.dll
windows7_x64
36dce1465d4...77.dll
windows10-2004_x64
37431ff0c94...40.dll
windows7_x64
37431ff0c94...40.dll
windows10-2004_x64
37b0bffe1de...b1.dll
windows7_x64
37b0bffe1de...b1.dll
windows10-2004_x64
3825e874aa0...d6.dll
windows7_x64
3825e874aa0...d6.dll
windows10-2004_x64
38d52e22c56...6e.dll
windows7_x64
38d52e22c56...6e.dll
windows10-2004_x64
397eba4e90b...7b.dll
windows7_x64
397eba4e90b...7b.dll
windows10-2004_x64
39bf1d98278...16.dll
windows7_x64
39bf1d98278...16.dll
windows10-2004_x64
3b4660d1b6d...e1.dll
windows7_x64
3b4660d1b6d...e1.dll
windows10-2004_x64
3Analysis
-
max time kernel
43s -
max time network
50s -
platform
windows7_x64 -
resource
win7-20220414-en -
submitted
09/06/2022, 17:12
Static task
static1
Behavioral task
behavioral1
Sample
01e6aea8ea3f21142fc2be90ac6e3cce73fedf25acb85e69438be79c6c050048.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral2
Sample
01e6aea8ea3f21142fc2be90ac6e3cce73fedf25acb85e69438be79c6c050048.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral3
Sample
05c21d7273b3349857f64b6240cca49f45a453883958358d22e3cb7e19106045.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral4
Sample
05c21d7273b3349857f64b6240cca49f45a453883958358d22e3cb7e19106045.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral5
Sample
0b2b6268a8f1f12d758dda0e92c4093f958ddc0f4c1b75c030e0c8ac35c2416f.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral6
Sample
0b2b6268a8f1f12d758dda0e92c4093f958ddc0f4c1b75c030e0c8ac35c2416f.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral7
Sample
0e34390458e260d861a43fed3109ea0c6f46fbd4d786924dabaa666718d4e6c3.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral8
Sample
0e34390458e260d861a43fed3109ea0c6f46fbd4d786924dabaa666718d4e6c3.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral9
Sample
1c4c02c4a7e39607bddbc38e7bc5e9e44a71a6313302eecde8c8d2e6a8c0aff2.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral10
Sample
1c4c02c4a7e39607bddbc38e7bc5e9e44a71a6313302eecde8c8d2e6a8c0aff2.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral11
Sample
21bd2c88898f8fea3ba9dddb1c9e3cfb8f279d884099830dbda16acdde273587.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral12
Sample
21bd2c88898f8fea3ba9dddb1c9e3cfb8f279d884099830dbda16acdde273587.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral13
Sample
2bf1bf8c79685a9f78498d4f00b569f7a7860c40c6fda9ba9851256eb7b0acf3.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral14
Sample
2bf1bf8c79685a9f78498d4f00b569f7a7860c40c6fda9ba9851256eb7b0acf3.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral15
Sample
627c7fb21fa7eb045e1d5700badad186b8493cf205a831e46ec48919e2670f5a.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral16
Sample
627c7fb21fa7eb045e1d5700badad186b8493cf205a831e46ec48919e2670f5a.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral17
Sample
6dce1465d4909ad02402e4c4731ba5e004fa42705a19006f78b3680a84393e77.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral18
Sample
6dce1465d4909ad02402e4c4731ba5e004fa42705a19006f78b3680a84393e77.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral19
Sample
7431ff0c94256ead199dd9bd99d72bbf26b0d50fd6f0a1137b4a640e98047940.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral20
Sample
7431ff0c94256ead199dd9bd99d72bbf26b0d50fd6f0a1137b4a640e98047940.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral21
Sample
7b0bffe1de4e468f2d254396eb2d16bc72291f58813cf9339d120bd6b776e5b1.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral22
Sample
7b0bffe1de4e468f2d254396eb2d16bc72291f58813cf9339d120bd6b776e5b1.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral23
Sample
825e874aa0b6bca6968639b7ed812c46f9a074384cda86daefab50a9d15e8fd6.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral24
Sample
825e874aa0b6bca6968639b7ed812c46f9a074384cda86daefab50a9d15e8fd6.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral25
Sample
8d52e22c560ad1a1b6314dc143587b9bf1b78c764a8451a78868e5c692319d6e.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral26
Sample
8d52e22c560ad1a1b6314dc143587b9bf1b78c764a8451a78868e5c692319d6e.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral27
Sample
97eba4e90b8fb9fe5f631acad54eb0a44182eec4c2592291634a0b0940613a7b.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral28
Sample
97eba4e90b8fb9fe5f631acad54eb0a44182eec4c2592291634a0b0940613a7b.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral29
Sample
9bf1d98278c83fb073371a4cba49dc174566388e07ae512d91a4cf1226becd16.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral30
Sample
9bf1d98278c83fb073371a4cba49dc174566388e07ae512d91a4cf1226becd16.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
Behavioral task
behavioral31
Sample
b4660d1b6d5a5597b42a31efa90b240b45e9351f628fa6b8c7817ce576f630e1.dll
Resource
win7-20220414-en
windows7_x64
Behavioral task
behavioral32
Sample
b4660d1b6d5a5597b42a31efa90b240b45e9351f628fa6b8c7817ce576f630e1.dll
Resource
win10v2004-20220414-en
windows10-2004_x64
General
-
Target
b4660d1b6d5a5597b42a31efa90b240b45e9351f628fa6b8c7817ce576f630e1.dll
-
Size
1.7MB
-
MD5
4b8c5df127d7980809865a0e3f967a10
-
SHA1
1ceaea09de604f85f1013f378d0f9a873708f377
-
SHA256
b4660d1b6d5a5597b42a31efa90b240b45e9351f628fa6b8c7817ce576f630e1
-
SHA512
e65c528ca9a5a1ee4b09b3779aec3353ac22b4cae3ec048f7c8cd2879b2ce875b4d710cbadd795ff20634d0ae7f5d21f203770ce30368b9253f3aa6b6fdf11d5
Malware Config
Signatures
-
Program crash 1 IoCs
pid pid_target Process procid_target 1788 892 WerFault.exe 26 -
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 892 wrote to memory of 1788 892 rundll32.exe 27 PID 892 wrote to memory of 1788 892 rundll32.exe 27 PID 892 wrote to memory of 1788 892 rundll32.exe 27
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\b4660d1b6d5a5597b42a31efa90b240b45e9351f628fa6b8c7817ce576f630e1.dll,#11⤵
- Suspicious use of WriteProcessMemory
PID:892 -
C:\Windows\system32\WerFault.exeC:\Windows\system32\WerFault.exe -u -p 892 -s 842⤵
- Program crash
PID:1788
-