Analysis
-
max time kernel
31s -
max time network
34s -
platform
windows7_x64 -
resource
win7-20230220-en -
resource tags
arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system -
submitted
02/03/2023, 18:49
Static task
static1
Behavioral task
behavioral1
Sample
ssd.dll
Resource
win7-20230220-en
1 signatures
150 seconds
General
-
Target
ssd.dll
-
Size
352KB
-
MD5
4e57bc503140d50f5937444aa7719ad2
-
SHA1
d44dbfe2f0112a72969e7dcd97e969a2d1bf7cb4
-
SHA256
987ac6627a2e59290a15e91ec91b9028106e7f9ebce059a2b54cbbb4b30c3d48
-
SHA512
4cb22c31bd3e170763d45ad3816d12884232625a41aa7462c45337ddd4be7635cdbb94ef177be8ca8e3a895ff1122e6fc16068d4cd4a1c8a33151cbce44b59b9
-
SSDEEP
6144:dlZfHJBfoMMiKYYXytfltzOWsDGCitOiXfG5iIZE90:btHJtoMMiYXytflttsDGCitZf6iIO9
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 1744 wrote to memory of 2004 1744 rundll32.exe 28 PID 1744 wrote to memory of 2004 1744 rundll32.exe 28 PID 1744 wrote to memory of 2004 1744 rundll32.exe 28 PID 1744 wrote to memory of 2004 1744 rundll32.exe 28 PID 1744 wrote to memory of 2004 1744 rundll32.exe 28 PID 1744 wrote to memory of 2004 1744 rundll32.exe 28 PID 1744 wrote to memory of 2004 1744 rundll32.exe 28