Overview
overview
9Static
static
9DLL下载.url
windows7-x64
1DLL下载.url
windows10-2004-x64
1X86/2_ 0_ ...DK.dll
windows7-x64
8X86/2_ 0_ ...DK.dll
windows10-2004-x64
8X86/2_ 0_ ...DK.dll
windows7-x64
1X86/2_ 0_ ...DK.dll
windows10-2004-x64
1X86/3_ 0_ ...DK.dll
windows7-x64
1X86/3_ 0_ ...DK.dll
windows10-2004-x64
1X86/3_ 0_ ...DK.dll
windows7-x64
1X86/3_ 0_ ...DK.dll
windows10-2004-x64
1X86/3_ 0_ ...DK.dll
windows7-x64
1X86/3_ 0_ ...DK.dll
windows10-2004-x64
1X86/3_ 0_ ...DK.dll
windows7-x64
1X86/3_ 0_ ...DK.dll
windows10-2004-x64
1X86/3_ 0_ ...DK.dll
windows7-x64
1X86/3_ 0_ ...DK.dll
windows10-2004-x64
1X86/3_ 0_ ...DK.dll
windows7-x64
1X86/3_ 0_ ...DK.dll
windows10-2004-x64
1X86/3_ 0_ ...DK.dll
windows7-x64
1X86/3_ 0_ ...DK.dll
windows10-2004-x64
1X86/4_ 0_ ...DK.dll
windows7-x64
1X86/4_ 0_ ...DK.dll
windows10-2004-x64
1X86/6_ 0_ ...DK.dll
windows7-x64
1X86/6_ 0_ ...DK.dll
windows10-2004-x64
1X86/6_ 0_ ...DK.dll
windows7-x64
1X86/6_ 0_ ...DK.dll
windows10-2004-x64
1X86/6_ 8_ ...DK.dll
windows7-x64
1X86/6_ 8_ ...DK.dll
windows10-2004-x64
1X86/6_ 9_ ...DK.dll
windows7-x64
1X86/6_ 9_ ...DK.dll
windows10-2004-x64
1Analysis
-
max time kernel
40s -
max time network
45s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
25/11/2022, 21:50
Behavioral task
behavioral1
Sample
DLL下载.url
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
DLL下载.url
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
X86/2_ 0_ 0_ 0/JVSDK.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral4
Sample
X86/2_ 0_ 0_ 0/JVSDK.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
X86/2_ 0_ 1_ 0/JVSDK.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral6
Sample
X86/2_ 0_ 1_ 0/JVSDK.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
X86/3_ 0_ 4_ 1/JVSDK.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral8
Sample
X86/3_ 0_ 4_ 1/JVSDK.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
X86/3_ 0_ 5_ 4/JVSDK.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral10
Sample
X86/3_ 0_ 5_ 4/JVSDK.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
X86/3_ 0_ 6_ 6/JVSDK.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral12
Sample
X86/3_ 0_ 6_ 6/JVSDK.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
X86/3_ 0_ 6_ 7/JVSDK.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral14
Sample
X86/3_ 0_ 6_ 7/JVSDK.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
X86/3_ 0_ 7_ 0/JVSDK.dll
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral16
Sample
X86/3_ 0_ 7_ 0/JVSDK.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
X86/3_ 0_ 8_ 2/JVSDK.dll
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral18
Sample
X86/3_ 0_ 8_ 2/JVSDK.dll
Resource
win10v2004-20220901-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
X86/3_ 0_ 8_ 8/JVSDK.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral20
Sample
X86/3_ 0_ 8_ 8/JVSDK.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
X86/4_ 0_ 0_ 0/JVSDK.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral22
Sample
X86/4_ 0_ 0_ 0/JVSDK.dll
Resource
win10v2004-20220901-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
X86/6_ 0_ 0_ 2/JVSDK.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral24
Sample
X86/6_ 0_ 0_ 2/JVSDK.dll
Resource
win10v2004-20220901-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
X86/6_ 0_ 0_ 4/JVSDK.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral26
Sample
X86/6_ 0_ 0_ 4/JVSDK.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
X86/6_ 8_ 0_ 5/JVSDK.dll
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral28
Sample
X86/6_ 8_ 0_ 5/JVSDK.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
X86/6_ 9_ 3_ 3/JVSDK.dll
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral30
Sample
X86/6_ 9_ 3_ 3/JVSDK.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
General
-
Target
X86/3_ 0_ 8_ 8/JVSDK.dll
-
Size
68KB
-
MD5
2906f9168af217cc3cacd0cd6137bece
-
SHA1
d4ad8e134228665debf33a387ff3c731772d31a9
-
SHA256
215c63bfae71ac5387e9b98ad4d0fe6162251f9b68a4f7471c51fdd6bc1bdfa4
-
SHA512
76c79d6189c4298b00eb6c3dcc6fca22367984fbab522b9139bd57529d62fa55f8fe49d44d4cc4b49cae02c2942702c6e1ddd73394673791696c8c9b258ae68d
-
SSDEEP
768:NreE+4Uw6wGVFRVxsPoCFyWcNDq24uQJOWbNW/FYEAyK:VeeUw6wGVFRqYNDq24fwWbNW/4T
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 1248 wrote to memory of 1120 1248 rundll32.exe 26 PID 1248 wrote to memory of 1120 1248 rundll32.exe 26 PID 1248 wrote to memory of 1120 1248 rundll32.exe 26 PID 1248 wrote to memory of 1120 1248 rundll32.exe 26 PID 1248 wrote to memory of 1120 1248 rundll32.exe 26 PID 1248 wrote to memory of 1120 1248 rundll32.exe 26 PID 1248 wrote to memory of 1120 1248 rundll32.exe 26