Overview

overview

10

Static

static

10

out.dll

windows7-x64

5

out.dll

windows10-2004-x64

5

Analysis

  • max time kernel
    139s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01-09-2022 19:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    out.dll

  • Size

    1.0MB

  • MD5

    0c8ef56d0e023dc3fcff82f85a942bc7

  • SHA1

    d1ef37a9997f3df7c00b42a5b77cf5d7e273be16

  • SHA256

    1f9e55d62093ddcf81cf26088a3fcbda001cf76bae9ab57ad14c6875ebdcec5b

  • SHA512

    7315e71f47537605ad2ff7daa044ed7456af5c9aaa935f641b7116c0c8c8086909ea457f752e25c823fbf9f9391749872b5bae44bc5f9c9e75dc5393a5ca572f

  • SSDEEP

    24576:cx2ubccfCEN1Wpv9hOQn7G9Zx/tGggFQhrxtxcZfeoX:kTCyWN9QQnq9Zx/ZgShrxtyfeo

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtCreateThreadExHideFromDebugger 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\out.dll,#1
    1⤵
    • Suspicious use of NtCreateThreadExHideFromDebugger
    PID:4812

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads