9b2c2d78ed4fce7e637174f95b77ceee22a9023c563fd396be6cf2c419b2847b | Triage

Analysis

max time kernel
43s
max time network
46s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
17-08-2022 22:31

Sharing

Report Analysis Logs

General

Target

patched.dll
Size

1.1MB
MD5

6ac69893d567fb27c380543348ad48c7
SHA1

9c34fd73f90ba4ca9eae329b0708ac870dea5f40
SHA256

9b2c2d78ed4fce7e637174f95b77ceee22a9023c563fd396be6cf2c419b2847b
SHA512

110dff2a00e15477568571e08a365c51665cc0420846da277781476070cc440625b012a448e32c4fa89babd1dd70a840262a92b77663e55302143037cbbc4a7d

Score

5^/10

Malware Config

Signatures

Suspicious use of NtCreateThreadExHideFromDebugger 1 IoCs

pid	Process
1980	rundll32.exe

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\patched.dll,#1
1⤵
- Suspicious use of NtCreateThreadExHideFromDebugger
PID:1980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads