Overview

overview

3

Static

static

1

dtQOiiSe.dll

windows7-x64

3

dtQOiiSe.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    257s
  • max time network
    246s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-04-2023 15:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dtQOiiSe.dll

  • Size

    229KB

  • MD5

    e43f21732e357ac28674842585dad8b2

  • SHA1

    704aa4365c952633d6e8b2f4331a2c3b45fef1ea

  • SHA256

    6c6623787ae81d19e1199da95a9d1980d1fe7ec8a91ee75f219c27262dfcdc42

  • SHA512

    684b5f754cd1d6cfacfb2d9783d9a4210e6a04d29723b26f034c43e90bb6b6c508042cd116bf8b6e8e997739c73cc587c8e25d5937b2d1aa6782e5b7a5d96813

  • SSDEEP

    3072:Z3PpKjAr1AaA+y23h0xFu92Hs8gEHm1XRZqSplVil/A2g5tqgZE+89TBXn:NAAr1AaA+N2xFy2He5tJEhBX

Score
3/10

Malware Config

Signatures

  • Program crash 2 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\dtQOiiSe.dll,#1
    1⤵
      PID:4900
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -u -p 4900 -s 364
        2⤵
        • Program crash
        PID:3200
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -pss -s 408 -p 4900 -ip 4900
      1⤵
        PID:548
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -pss -s 548 -p 3804 -ip 3804
        1⤵
          PID:1072
        • C:\Windows\system32\WerFault.exe
          C:\Windows\system32\WerFault.exe -u -p 3804 -s 1748
          1⤵
          • Program crash
          PID:2420

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads