Overview

overview

3

Static

static

1

SkinChangerPro.dll

windows10-1703-x64

3

hookloader.exe

windows10-1703-x64

1

Analysis

  • max time kernel
    51s
  • max time network
    75s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-en
  • resource tags

    arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    18/04/2023, 16:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SkinChangerPro.dll

  • Size

    183KB

  • MD5

    1101883384ba161f4f8b460a551a0b6a

  • SHA1

    9f4a42f2b5852b335ac8e656e13f8c07782ac8c5

  • SHA256

    46a8e765781443b9223cff3ab71ad8f4b32b4edb5f6338b70a514b1a5b591f82

  • SHA512

    1dda96f5116cb462d2996968508a400ebde95be891e75ffb6dc7f85dcedaf5524ee05e214eb6158a8bc5043ad6f7c007b1a071cb277fce8a649bf5e3cb326927

  • SSDEEP

    3072:8uIKq9YnWTkFp85aK5KbswUczxa9M2/A4oY46MYg4:839uwkr85Rcbhc9tohn

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\SkinChangerPro.dll,#1
    1⤵
      PID:3944
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -u -p 3944 -s 220
        2⤵
        • Program crash
        PID:4168
    • C:\Windows\System32\rundll32.exe
      C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
      1⤵
        PID:4100

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3944-120-0x00000250A79F0000-0x00000250A79F1000-memory.dmp

        Filesize

        4KB

        Download