Overview

overview

7

Static

static

7

Advanced S...SC.exe

windows7-x64

1

Advanced S...SC.exe

windows10-2004-x64

1

Advanced S...on.dll

windows7-x64

4

Advanced S...on.dll

windows10-2004-x64

4

Advanced S...an.dll

windows7-x64

1

Advanced S...an.dll

windows10-2004-x64

1

Advanced S...t_.dll

windows7-x64

1

Advanced S...t_.dll

windows10-2004-x64

1

Advanced S...up.exe

windows7-x64

7

Advanced S...up.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    142s
  • max time network
    160s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17-03-2023 15:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Advanced SystemCare Ultimate 16.1.0.16 Multilingual/Crack UZ1/Scan.dll

  • Size

    1015KB

  • MD5

    7f820e18f787d8cd7cb1e6673d22851c

  • SHA1

    6941cd04df72ca4cb16854b74b5afb090066f696

  • SHA256

    9597ca6bc4a672a696542933d18bb9e4fb619695c6c9d46ba8b6d9fd4039e42c

  • SHA512

    f459cf4eb5c10a13f079427bccd7414bac5220e59f0c3da8545761cabce7c5b6778cbf1021750b845c8951b2ab059f9fb846756c2b46eb6baa71744faf644ea9

  • SSDEEP

    24576:cemGnWJz7LMHxZSTpaG9BifXABSAUwqwDnNo3+ud1Tsxu3K:tmrz8RYTpaCFRUKNjKTsR

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Advanced SystemCare Ultimate 16.1.0.16 Multilingual\Crack UZ1\Scan.dll",#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:4680
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Advanced SystemCare Ultimate 16.1.0.16 Multilingual\Crack UZ1\Scan.dll",#1
      2⤵
        PID:3356

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads