Analysis

  • max time kernel
    185s
  • max time network
    181s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20221111-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/11/2022, 05:57

General

  • Target

    06fb27ac220956d703ef8731a5665449a43239d425e8676c749a924a1c4c1c33.dll

  • Size

    4KB

  • MD5

    be717c744e7a32179d261943d582ad60

  • SHA1

    d7956dbf79bcc78da0a0e2f60efddbd35ee29876

  • SHA256

    06fb27ac220956d703ef8731a5665449a43239d425e8676c749a924a1c4c1c33

  • SHA512

    3ccb4af10a4d69484d260f9160bf11d8ada38fe7de3cae3688c255b2d8a72ff9a34dc9fe8382b5b827925687f093828c84301d34559240fefc1043854abbae38

  • SSDEEP

    48:a5zjMTGcITBVQVE1lcLprLSdpHw1YYGzCO7oI3D1wFF/PG:iT3Qu8lgw1jGzC93hG

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\06fb27ac220956d703ef8731a5665449a43239d425e8676c749a924a1c4c1c33.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:672
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\06fb27ac220956d703ef8731a5665449a43239d425e8676c749a924a1c4c1c33.dll,#1
      2⤵
        PID:3116

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads