Overview

overview

10

Static

static

10

1184-54-0x...ry.dll

windows7-x64

3

1184-54-0x...ry.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    91s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-09-2022 20:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1184-54-0x0000000180000000-0x0000000180009000-memory.dll

  • Size

    36KB

  • MD5

    5b051d9c7b0b7ba2b45017edb6130dfc

  • SHA1

    64ca9a4f54d367aa0a69840fe557d59f170ca6c2

  • SHA256

    d915d359598f55342d3b0675bb1174044ca8a3d0403fb2dd147a40614d74be14

  • SHA512

    884490fc842122d5af4c33468a42617131a83a30d6a2633f89a8ad9c4959e501e098464c061823fc690e7c825fda0f73f64f7f41cf94180f3a92408793762dc1

  • SSDEEP

    192:hHVMfa7TTCjJSixzPSAA56RCK7Yu/VPgw7gXBAQYfPq/3Kb:h1Mf0gJSix2AA56RCiZVoGQYnq/6b

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\1184-54-0x0000000180000000-0x0000000180009000-memory.dll,#1
    1⤵
      PID:4824
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -u -p 4824 -s 240
        2⤵
        • Program crash
        PID:2256
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -pss -s 184 -p 4824 -ip 4824
      1⤵
        PID:4840

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads