Analysis
-
max time kernel
39s -
max time network
46s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
-
submitted
27-01-2023 07:39
General
-
Target
NewInformation/NewIssues.dll
-
Size
817KB
-
MD5
7db2241ddce77297d6a6fd44c57386a7
-
SHA1
6565677c9ccf0805af012b641d2a75354ed290d6
-
SHA256
fcb79d3aa7ee29b7a6dca44bc061abbe521089edb79d6596ada71b05c64b4a8a
-
SHA512
a42ed635d896b5b7ef8200facdf4b90e236afd83cc02b492be702ffd23bb475816776a2b462ed1b16975b7317b3d59eeeeba919e6458973a0161aa6a18a99d70
-
SSDEEP
12288:JJGwvTfCMf8rVomRle7XBr4fi7wDqo4TARMhxMrFND648j4xhT6dl:JY5rVtcsfi7wDP4TAR0sFN+Ux
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
Suspicious use of WriteProcessMemory 11 IoCs
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\NewInformation\NewIssues.dll,#11⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\NewInformation\NewIssues.dll,#12⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 884 -s 2243⤵
- Program crash
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/884-54-0x0000000000000000-mapping.dmp
-
memory/884-55-0x00000000762D1000-0x00000000762D3000-memory.dmpFilesize
8KB
-
memory/1708-56-0x0000000000000000-mapping.dmp