Analysis
-
max time kernel
44s -
max time network
50s -
platform
windows7_x64 -
resource
win7-20220901-en -
resource tags
-
submitted
23-11-2022 18:50
General
-
Target
f96ae678eb2eb51baac15d005fc2b0714533d49043f510a7286b73a6256fc617.dll
-
Size
312KB
-
MD5
266710952349ee4feed65e58c7bb0ec0
-
SHA1
edc028b3087dd7a4362334fc6d52e35622bdcf56
-
SHA256
f96ae678eb2eb51baac15d005fc2b0714533d49043f510a7286b73a6256fc617
-
SHA512
73bc238d467732129f4e00281bda6e0e4b47a7a9974642ba65384f14b6d4e76967b4720ed52b0738018678f56e38c66c488cdecb94704920fcc0d1b7ebcacb89
-
SSDEEP
6144:7sQl8r0FiGAn4yZ6XtrOt5Jxfw2dHLUIpDCzi5ijH:BW6pufwI9CmwjH
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\f96ae678eb2eb51baac15d005fc2b0714533d49043f510a7286b73a6256fc617.dll,#11⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\f96ae678eb2eb51baac15d005fc2b0714533d49043f510a7286b73a6256fc617.dll,#12⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1752-54-0x0000000000000000-mapping.dmp
-
memory/1752-55-0x00000000758B1000-0x00000000758B3000-memory.dmpFilesize
8KB
-
memory/1752-56-0x0000000010000000-0x000000001004E000-memory.dmpFilesize
312KB
-
memory/1752-57-0x0000000010000000-0x000000001004E000-memory.dmpFilesize
312KB
-
memory/1752-58-0x0000000010000000-0x000000001004E000-memory.dmpFilesize
312KB