Analysis
-
max time kernel
116s -
max time network
144s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system -
submitted
03-01-2023 11:20
Behavioral task
behavioral1
Sample
abcd.dll
Resource
win7-20220901-en
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
abcd.dll
Resource
win10v2004-20220812-en
2 signatures
150 seconds
General
-
Target
abcd.dll
-
Size
13KB
-
MD5
f0f6d923c6dc84408d7e8ac643b56244
-
SHA1
c7772dfbd501009028634797a1803d79faa3fcb4
-
SHA256
2f3dddb9952e0268def85fbe47f253056077894ce6bd966120654324787b83be
-
SHA512
9383d31c88bf936a19833dbbc6a75e27414542c5dd322029d467f593a04c4c30f302a39222485940afbbd15066a9ec4163593541b6dd5fa0c4487686be8e7884
-
SSDEEP
192:6P+nM5KC/zxayGc3gzq7YjDaqzJCueT+RfbZne9s6PLRP0tkYGijYc:s5Jxayczq7Yjt9lfle9s6PL16kYGi8
Score
8/10
Malware Config
Signatures
-
Blocklisted process makes network request 2 IoCs
Processes:
rundll32.exeflow pid process 4 4664 rundll32.exe 88 4664 rundll32.exe -
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
rundll32.exepid process 4664 rundll32.exe 4664 rundll32.exe