Overview

overview

3

Static

static

BOOTVID.dll

windows7-x64

1

BOOTVID.dll

windows10-2004-x64

3

BootMenuUX.dll

windows7-x64

1

BootMenuUX.dll

windows10-2004-x64

3

BootRec.exe

windows7-x64

BootRec.exe

windows10-2004-x64

1

BroadcastE...ge.exe

windows7-x64

1

BroadcastE...ge.exe

windows10-2004-x64

1

BrokerLib.dll

windows7-x64

1

BrokerLib.dll

windows10-2004-x64

1

bootsect.exe

windows7-x64

1

bootsect.exe

windows10-2004-x64

1

bootstr.dll

windows7-x64

1

bootstr.dll

windows10-2004-x64

1

bootux.dll

windows7-x64

1

bootux.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    36s
  • max time network
    42s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    14-09-2022 09:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bootux.dll

  • Size

    3.8MB

  • MD5

    17173aa0b01a83e90baaaf747aa3547e

  • SHA1

    a7d80f21a89d4f7547a40de44455bc15a73fde7f

  • SHA256

    7f03d100daedc91cd9fee2a91dd6dc9d67142e9dc0e7aedb479cf320b827d1e6

  • SHA512

    6d77a9327320b68923ec3b7ab9c0db18ce63865df486ea4d4ea63034b318ad6074369ff7c446738f3d61c9e6460e57006359f3d3a74ef611888379093c6e53e4

  • SSDEEP

    6144:V+xTJJVyqgBJoyTZNAiLeWoa4xkBqjseh65Ym8WAk14:sNJJYqgBJoyTTAYgOqHh65YmzK

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\bootux.dll,#1
    1⤵
      PID:784

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads