Overview

overview

10

Static

static

document01.lnk

windows7-x64

8

document01.lnk

windows10-2004-x64

7

ipchains.dll

windows7-x64

8

ipchains.dll

windows10-2004-x64

10

price.bat

windows7-x64

3

price.bat

windows10-2004-x64

10

Analysis

  • max time kernel
    46s
  • max time network
    50s
  • platform
    windows7_x64
  • resource
    win7-20220901-en
  • resource tags

    arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system
  • submitted
    10-01-2023 17:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ipchains.dll

  • Size

    572KB

  • MD5

    8fdd7858bf72589cafba3e8f98a6730b

  • SHA1

    ee3d8b9e6c4fc004a167d8ad5cfd1b479d009769

  • SHA256

    39cc8085e331d0fbf1122e561472f87611de3df5f70344ac7b160d96b3cf576f

  • SHA512

    0666c91cdf842f5755cffbfb7da8d69a84de024d90d56772e3fe9b71b0c923791205e9215469c96cd3d66f8ba2956fc9d3fc99303481b72eb00ac7de7b97a7ad

  • SSDEEP

    6144:5RsC6WbKlOsSPfGGu3KFGSpdc0x/POh4OML3OLyK9kon8m5I5XWOFLBSmOJQgyxy:5qt7s3TvV4hBML3OLyoytj2mzdI

Score
8/10

Malware Config

Signatures

  • Blocklisted process makes network request 20 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\ipchains.dll,#1
    1⤵
    • Blocklisted process makes network request
    PID:1816

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads