Overview

overview

8

Static

static

SMBHelperClass.dll

windows7-x64

1

SMBHelperClass.dll

windows10-2004-x64

1

SRH.dll

windows7-x64

1

SRH.dll

windows10-2004-x64

1

SmiEngine.dll

windows7-x64

1

SmiEngine.dll

windows10-2004-x64

8

SndVol.exe

windows7-x64

SndVol.exe

windows10-2004-x64

1

SndVolSSO.dll

windows7-x64

1

SndVolSSO.dll

windows10-2004-x64

1

SnippingTool.exe

windows7-x64

SnippingTool.exe

windows10-2004-x64

1

Sort.exe

windows7-x64

Sort.exe

windows10-2004-x64

1

SpatialAud...rv.exe

windows7-x64

SpatialAud...rv.exe

windows10-2004-x64

1

shutdownux.dll

windows7-x64

1

shutdownux.dll

windows10-2004-x64

1

shwebsvc.dll

windows7-x64

1

shwebsvc.dll

windows10-2004-x64

1

signdrv.dll

windows7-x64

1

signdrv.dll

windows10-2004-x64

1

simauth.dll

windows7-x64

1

simauth.dll

windows10-2004-x64

3

simcfg.dll

windows7-x64

1

simcfg.dll

windows10-2004-x64

3

simpdata.dll

windows7-x64

1

simpdata.dll

windows10-2004-x64

1

slc.dll

windows7-x64

1

slc.dll

windows10-2004-x64

3

smbwmiv2.dll

windows7-x64

1

smbwmiv2.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    21s
  • max time network
    43s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    15-09-2022 06:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    signdrv.dll

  • Size

    51KB

  • MD5

    20f0cb9b5bca72044e35892f657176db

  • SHA1

    03d91730093b1104f65831c16ae2facf80dcf2db

  • SHA256

    92f77f0ec2bf759f4308bdef1a298adea7d4105c334e3518a7266b4d1d5e1ff0

  • SHA512

    2ad6b3f023836ff3c3f4ee198266a2269aa0d339ecb38866e70148f2c3e35d020f37bba87198d5cc7eda8f872487ff8a170a9cb8a999c90dbca223acaf5c2e27

  • SSDEEP

    768:4xWcDy7ISsDRKqOoeLyI2hNhcSZOjdWy:+xyMxeeI2hNhcSZOjdW

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\signdrv.dll
    1⤵
      PID:1720

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1720-54-0x000007FEFBC01000-0x000007FEFBC03000-memory.dmp

      Filesize

      8KB

      Download