7010ea36735e5a720f5f7c30ab1cf560e4d47e4fc4a983ed2f6f3d9770fd7737 | Triage

Analysis

max time kernel
91s
max time network
125s
platform
windows10-2004_x64
resource
win10v2004-20220414-en
submitted
27/06/2022, 21:43

Sharing

Report Analysis Logs

General

Target

invo/n3zarek.dll
Size

1.4MB
MD5

3bd955af74d15e226fd00c7c8556858d
SHA1

8bd4d50e485813c5578b59d5e12658e739a9b818
SHA256

c8902ab26a64078ebab618afe410edc41c3d9c6b429a7d84207f112d740cfc51
SHA512

8c47d5360324fba49da30384ee05a34ae1abea772c34ec8fa3d5db2793b39d6aa25e59f1551a72a9cafd931d401ab143f618accdd460bd707d9c09f81f52f758

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3680	4772	WerFault.exe	24

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\invo\n3zarek.dll,#1
1⤵
PID:4772
- C:\Windows\system32\WerFault.exe
  C:\Windows\system32\WerFault.exe -u -p 4772 -s 328
  2⤵
  - Program crash
  PID:3680

C:\Windows\system32\WerFault.exe
C:\Windows\system32\WerFault.exe -pss -s 408 -p 4772 -ip 4772
1⤵
PID:4312

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads