c0b53b4964ef602343f3f58bada5ad8009d97975202ca849a820420c10acafb3

Analysis

max time kernel
41s
max time network
46s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
03/10/2022, 08:51

Target

Virtual DJ Studio 8.1.2/Crack/vdj.dll
Size

237KB
MD5

dfe8321c5c9e919dab31e36991f79ccc
SHA1

74134d52e554d4d5a386073617bddc55bc0b9215
SHA256

7d174ee3eb6cdf3af5e3512c7f23657ab98b7ffae74d49b5bd4b6053ce8bc0b3
SHA512

e95cb676349633466779b4cc8b6383d054852a5fd57e316ccc423be447ed068353ed8d073d749cb75df45fa5ea7dd96661b8b1d444bb26b9e5568d989613d7de
SSDEEP

6144:tm1t8C9RaDNQLxuVIabk12AG20byDYbK2BZpmvCY8kIFlS:1gRzLke4Pu0by0bKBEk0l

Score

1^/10

Suspicious use of WriteProcessMemory 7 IoCs

description	pid	Process	procid_target
PID 1164 wrote to memory of 540	1164	rundll32.exe	27
PID 1164 wrote to memory of 540	1164	rundll32.exe	27
PID 1164 wrote to memory of 540	1164	rundll32.exe	27
PID 1164 wrote to memory of 540	1164	rundll32.exe	27
PID 1164 wrote to memory of 540	1164	rundll32.exe	27
PID 1164 wrote to memory of 540	1164	rundll32.exe	27
PID 1164 wrote to memory of 540	1164	rundll32.exe	27

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Virtual DJ Studio 8.1.2\Crack\vdj.dll",#1
1⤵
- Suspicious use of WriteProcessMemory
PID:1164
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Virtual DJ Studio 8.1.2\Crack\vdj.dll",#1
  2⤵
  PID:540

memory/540-55-0x0000000076171000-0x0000000076173000-memory.dmp

Filesize
8KB

Download