38b6fbd7cd3c6dc85c579ce3f623d3b6e6a0fad6fb135679495f72d4b6081796

Analysis

max time kernel
45s
max time network
48s
platform
windows7_x64
resource
win7-20220901-en
resource tags

arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
submitted
21/09/2022, 05:32

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

38b6fbd7cd3c6dc85c579ce3f623d3b6e6a0fad6fb135679495f72d4b6081796.dll
Size

2.2MB
MD5

413bb6e4ac680143edc218b35cea0738
SHA1

b9702813894c43e09211cadf75503c594a56d23c
SHA256

38b6fbd7cd3c6dc85c579ce3f623d3b6e6a0fad6fb135679495f72d4b6081796
SHA512

4bdddee9c10ea62746786b1766c4c59cc5fce11aa712358770b6c9358eeab4734f3738280ffce48c665aa2379e2c384344061ee8c9e0ee465089faae7e773236
SSDEEP

49152:KxMDuvh74AgXS+oDnz5sBC4HaqdLPaHXQq3/q:KymsAgcnNsBCdUUXQqPq

Score

5^/10

Malware Config

Signatures

Suspicious use of NtSetInformationThreadHideFromDebugger 1 IoCs

pid	Process
1048	rundll32.exe

Suspicious use of WriteProcessMemory 7 IoCs

description	pid	Process	procid_target
PID 1456 wrote to memory of 1048	1456	rundll32.exe	27
PID 1456 wrote to memory of 1048	1456	rundll32.exe	27
PID 1456 wrote to memory of 1048	1456	rundll32.exe	27
PID 1456 wrote to memory of 1048	1456	rundll32.exe	27
PID 1456 wrote to memory of 1048	1456	rundll32.exe	27
PID 1456 wrote to memory of 1048	1456	rundll32.exe	27
PID 1456 wrote to memory of 1048	1456	rundll32.exe	27

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\38b6fbd7cd3c6dc85c579ce3f623d3b6e6a0fad6fb135679495f72d4b6081796.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:1456
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\38b6fbd7cd3c6dc85c579ce3f623d3b6e6a0fad6fb135679495f72d4b6081796.dll,#1
  2⤵
  - Suspicious use of NtSetInformationThreadHideFromDebugger
  PID:1048

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1048-55-0x0000000074B51000-0x0000000074B53000-memory.dmp

Filesize
8KB

Download
memory/1048-57-0x0000000075BE0000-0x0000000075C27000-memory.dmp

Filesize
284KB

Download
memory/1048-183-0x0000000073C00000-0x000000007477D000-memory.dmp

Filesize
11.5MB

Download
memory/1048-188-0x0000000072A10000-0x000000007358D000-memory.dmp

Filesize
11.5MB

Download
memory/1048-191-0x0000000073C00000-0x000000007477D000-memory.dmp

Filesize
11.5MB

Download
memory/1048-467-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-468-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-469-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-470-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-466-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-472-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-473-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-474-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-475-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-471-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-477-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-478-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-479-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-480-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-476-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-482-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-483-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-484-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-481-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-485-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-486-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-487-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-489-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-490-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-491-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-488-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-493-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-494-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-495-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-496-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-497-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-492-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-499-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-500-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-501-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-502-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-503-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-498-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-505-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-506-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-507-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-508-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-509-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-504-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-510-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-511-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-512-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-513-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-515-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-516-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-517-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-518-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-519-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-514-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-520-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-521-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-523-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-522-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-524-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-526-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-527-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-525-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-1400-0x0000000000950000-0x0000000000A50000-memory.dmp

Filesize
1024KB

Download
memory/1048-1402-0x0000000002180000-0x0000000002301000-memory.dmp

Filesize
1.5MB

Download
memory/1048-4617-0x0000000000950000-0x0000000000A50000-memory.dmp

Filesize
1024KB

Download
memory/1048-4618-0x0000000002310000-0x0000000002421000-memory.dmp

Filesize
1.1MB

Download
memory/1048-4619-0x0000000072A10000-0x000000007358D000-memory.dmp

Filesize
11.5MB

Download
memory/1048-4620-0x0000000002430000-0x0000000002531000-memory.dmp

Filesize
1.0MB

Download
memory/1048-4621-0x0000000072A10000-0x000000007358D000-memory.dmp

Filesize
11.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads