Overview

overview

6

Static

static

8724b9bd54...a9.dll

windows7-x64

6

8724b9bd54...a9.dll

windows10-2004-x64

6

Analysis

  • max time kernel
    225s
  • max time network
    333s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    29/11/2022, 15:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8724b9bd541cd37f0c557e9e2679d4c62a229b26e9d0ced71dd0e5ea57dc60a9.dll

  • Size

    695KB

  • MD5

    03b0547c1f79d6fa976d68410daa9f59

  • SHA1

    b56c9f032458c88332249c4475f5267627a3d33e

  • SHA256

    8724b9bd541cd37f0c557e9e2679d4c62a229b26e9d0ced71dd0e5ea57dc60a9

  • SHA512

    d2ad3093620d69d36a5ced6b29def6832541ca2736ecd0b8c32a712e34850816211f71088907ec10be3dd2f96a33809959c99036f34982fc0c184743537be6d3

  • SSDEEP

    12288:HzBAox6E+qndKZJMcVad4axiVZudGM3aP///I1B4aZEXKZ83up0/2rbvQTVK1P5:TBvx6E+qksLAVZ4aP//w1B3bYTVK1

Score
6/10
adwarestealer

Malware Config

Signatures

  • Installs/modifies Browser Helper Object 2 TTPs 2 IoCs

    BHOs are DLL modules which act as plugins for Internet Explorer.

    stealeradware
  • Modifies registry class 5 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\8724b9bd541cd37f0c557e9e2679d4c62a229b26e9d0ced71dd0e5ea57dc60a9.dll
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1868
    • C:\Windows\SysWOW64\regsvr32.exe
      /s C:\Users\Admin\AppData\Local\Temp\8724b9bd541cd37f0c557e9e2679d4c62a229b26e9d0ced71dd0e5ea57dc60a9.dll
      2⤵
      • Installs/modifies Browser Helper Object
      • Modifies registry class
      PID:1808

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1808-56-0x0000000076931000-0x0000000076933000-memory.dmp

    Filesize

    8KB

    Download

  • memory/1868-54-0x000007FEFC0B1000-0x000007FEFC0B3000-memory.dmp

    Filesize

    8KB

    Download