Overview
overview
3Static
static
109226550d2...a0.dll
windows7-x64
309226550d2...a0.dll
windows10-2004-x64
310e7cb9cc5...6c.dll
windows7-x64
110e7cb9cc5...6c.dll
windows10-2004-x64
115fec7f03a...a4.dll
windows7-x64
115fec7f03a...a4.dll
windows10-2004-x64
116a0edbb1e...9b.dll
windows7-x64
116a0edbb1e...9b.dll
windows10-2004-x64
122f0b72249...42.exe
windows7-x64
122f0b72249...42.exe
windows10-2004-x64
1333da0e09d...cf.dll
windows7-x64
1333da0e09d...cf.dll
windows10-2004-x64
134c4846121...66.dll
windows7-x64
134c4846121...66.dll
windows10-2004-x64
16141fb362c...df.dll
windows7-x64
36141fb362c...df.dll
windows10-2004-x64
37bcd7645bb...e6.dll
windows7-x64
37bcd7645bb...e6.dll
windows10-2004-x64
382c1137163...77.dll
windows7-x64
382c1137163...77.dll
windows10-2004-x64
38b6e19529c...f9.exe
windows7-x64
18b6e19529c...f9.exe
windows10-2004-x64
1a1cae443e8...fe.dll
windows7-x64
1a1cae443e8...fe.dll
windows10-2004-x64
1a79ef93283...73.dll
windows7-x64
1a79ef93283...73.dll
windows10-2004-x64
1a88f00d964...66.dll
windows7-x64
1a88f00d964...66.dll
windows10-2004-x64
1a94482d6e3...e4.dll
windows7-x64
1a94482d6e3...e4.dll
windows10-2004-x64
1becbdf4e69...72.exe
windows7-x64
1becbdf4e69...72.exe
windows10-2004-x64
1Analysis
-
max time kernel
35s -
max time network
43s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
03/02/2023, 10:48
Static task
static1
Behavioral task
behavioral1
Sample
09226550d29005d6067e9da5ac70bb915cc49b8989cae6816f274f4b2d27c4a0.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral2
Sample
09226550d29005d6067e9da5ac70bb915cc49b8989cae6816f274f4b2d27c4a0.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
10e7cb9cc5e7ea92fd9d306b3c1a0ce5b0ff9a3dce90c469b2970997e7edb26c.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral4
Sample
10e7cb9cc5e7ea92fd9d306b3c1a0ce5b0ff9a3dce90c469b2970997e7edb26c.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
15fec7f03a39481bc5e52d0171c64aa31718f331ac0e5e53b1369bab1effb9a4.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral6
Sample
15fec7f03a39481bc5e52d0171c64aa31718f331ac0e5e53b1369bab1effb9a4.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
16a0edbb1e872dfa2af41b0418192bb068bc767658446a0cc4b7c61de5581b9b.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral8
Sample
16a0edbb1e872dfa2af41b0418192bb068bc767658446a0cc4b7c61de5581b9b.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
22f0b722495fb86607db3b0933ff517f642c8cc32dbbe41f918956bc23cebe42.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral10
Sample
22f0b722495fb86607db3b0933ff517f642c8cc32dbbe41f918956bc23cebe42.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
333da0e09ddd69f86de2323418e17684a9ad2184e822a12bf1595b35fdeff0cf.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral12
Sample
333da0e09ddd69f86de2323418e17684a9ad2184e822a12bf1595b35fdeff0cf.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
34c484612115684ab525e42bb13139393f4189c0b28f5dd11e2c5418ba56b766.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral14
Sample
34c484612115684ab525e42bb13139393f4189c0b28f5dd11e2c5418ba56b766.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
6141fb362ce3612035e617aff38dad1f1e840bbc7659e0c7a3e960183590bddf.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral16
Sample
6141fb362ce3612035e617aff38dad1f1e840bbc7659e0c7a3e960183590bddf.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
7bcd7645bbd8bbb94c9039eb90e1f72c3ade3691154dbb56254582ffe7bf2fe6.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral18
Sample
7bcd7645bbd8bbb94c9039eb90e1f72c3ade3691154dbb56254582ffe7bf2fe6.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
82c113716309150dc10b48db2de6cf3e5f23a0d410e1fd5e6ee25118fc7a1b77.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral20
Sample
82c113716309150dc10b48db2de6cf3e5f23a0d410e1fd5e6ee25118fc7a1b77.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
8b6e19529cf5858ff1a2095e13fb575185d48bad9266e32d3a68dea583d162f9.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral22
Sample
8b6e19529cf5858ff1a2095e13fb575185d48bad9266e32d3a68dea583d162f9.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
a1cae443e86670b45507c13eb733d4e8d2ebcd37ca36dcd1e3b594f7a8c3cbfe.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral24
Sample
a1cae443e86670b45507c13eb733d4e8d2ebcd37ca36dcd1e3b594f7a8c3cbfe.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
a79ef93283b1cbeceffff94b791dfc466f881f0c09f1cfffb6d78bd2158e6473.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral26
Sample
a79ef93283b1cbeceffff94b791dfc466f881f0c09f1cfffb6d78bd2158e6473.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
a88f00d964ffdf863c148af759174c892e54c5a074f010458f9549dd4058e866.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral28
Sample
a88f00d964ffdf863c148af759174c892e54c5a074f010458f9549dd4058e866.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
a94482d6e395cf1ad98ec30f238f430e9ab9d7744e670a60834e145dc1e400e4.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral30
Sample
a94482d6e395cf1ad98ec30f238f430e9ab9d7744e670a60834e145dc1e400e4.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
becbdf4e6942d4afbda0146383fb594af0a332d4f35aae250628880f7f808972.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral32
Sample
becbdf4e6942d4afbda0146383fb594af0a332d4f35aae250628880f7f808972.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
General
-
Target
15fec7f03a39481bc5e52d0171c64aa31718f331ac0e5e53b1369bab1effb9a4.dll
-
Size
391KB
-
MD5
695a090841f6624f59f903ca67aeb1ec
-
SHA1
ae02b937441d2d8144d121a5d137a5928638c179
-
SHA256
15fec7f03a39481bc5e52d0171c64aa31718f331ac0e5e53b1369bab1effb9a4
-
SHA512
13280b30a5cac12fe19966bb2204ae1815db17b1dfc178bc364163060531f5d21ec97264763a51c14143be9d86237d02dc2d4232818f91d127b179fb3a661f93
-
SSDEEP
12288:h6ix9NgT2ShB3F3ok8iyteDhdAIwc0QU4hHFk5JbhzvyIYRaOW6a:oii+hzvvOat
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 1096 wrote to memory of 1476 1096 rundll32.exe 26 PID 1096 wrote to memory of 1476 1096 rundll32.exe 26 PID 1096 wrote to memory of 1476 1096 rundll32.exe 26 PID 1096 wrote to memory of 1476 1096 rundll32.exe 26 PID 1096 wrote to memory of 1476 1096 rundll32.exe 26 PID 1096 wrote to memory of 1476 1096 rundll32.exe 26 PID 1096 wrote to memory of 1476 1096 rundll32.exe 26
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\15fec7f03a39481bc5e52d0171c64aa31718f331ac0e5e53b1369bab1effb9a4.dll,#11⤵
- Suspicious use of WriteProcessMemory
PID:1096 -
C:\Windows\SysWOW64\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\15fec7f03a39481bc5e52d0171c64aa31718f331ac0e5e53b1369bab1effb9a4.dll,#12⤵PID:1476
-