Overview

overview

10

Static

static

10

bb7707d567...ed.dll

windows7-x64

1

bb7707d567...ed.dll

windows10-2004-x64

10

Analysis

  • max time kernel
    45s
  • max time network
    49s
  • platform
    windows7_x64
  • resource
    win7-20220715-en
  • resource tags

    arch:x64arch:x86image:win7-20220715-enlocale:en-usos:windows7-x64system
  • submitted
    24-07-2022 21:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bb7707d5672a409d7b69356ca1f2ed947bc5c76a683431c8b636e60845fa17ed.dll

  • Size

    164KB

  • MD5

    f7f3fd2b59b0979bb7c8265122547f9a

  • SHA1

    b8316833bd136d8b41422995fa590f44ce809067

  • SHA256

    bb7707d5672a409d7b69356ca1f2ed947bc5c76a683431c8b636e60845fa17ed

  • SHA512

    0fca83351f1925db5626218c57087ff76e3a0dc0f1a5a5c54057d140c83c47136f0265ead345765aef4ef9d81d2ec4f4c8ec71f87f1ed1910bdc0c2ba2ac9d27

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\bb7707d5672a409d7b69356ca1f2ed947bc5c76a683431c8b636e60845fa17ed.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1704
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\bb7707d5672a409d7b69356ca1f2ed947bc5c76a683431c8b636e60845fa17ed.dll,#1
      2⤵
        PID:1768

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1768-54-0x0000000000000000-mapping.dmp

      Download

    • memory/1768-55-0x00000000764D1000-0x00000000764D3000-memory.dmp

      Filesize

      8KB

      Download

    • memory/1768-56-0x0000000000C30000-0x0000000000CF9000-memory.dmp

      Filesize

      804KB

      Download

    • memory/1768-58-0x0000000003130000-0x000000000325D000-memory.dmp

      Filesize

      1.2MB

      Download

    • memory/1768-59-0x0000000000400000-0x000000000041F000-memory.dmp

      Filesize

      124KB

      Download

    • memory/1768-60-0x0000000003360000-0x0000000003469000-memory.dmp

      Filesize

      1.0MB

      Download

    • memory/1768-61-0x00000000000B0000-0x00000000000BA000-memory.dmp

      Filesize

      40KB

      Download

    • memory/1768-62-0x0000000000220000-0x0000000000226000-memory.dmp

      Filesize

      24KB

      Download