Analysis
-
max time kernel
183s -
max time network
194s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
11-05-2023 16:06
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
23lk42joia.dll
Resource
win7-20230220-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
23lk42joia.dll
Resource
win10v2004-20230220-en
1 signatures
150 seconds
General
-
Target
23lk42joia.dll
-
Size
418KB
-
MD5
064255eb27867f9afc3d03d540d9be7c
-
SHA1
cc6177a86bbb1453c21a8fe4d9a2eea5f11a079f
-
SHA256
a770f54e2275c283b919ffa78c3679e331450ca0c40d0e482ffdf2feb361cf68
-
SHA512
9fa834e5ee58e92755116591b5f095950046f840e4c9fe49dd98ab4ab8d4337a9f0bd3055aaf24f45ce6600bd277468d793e4f29f309d4db2b711798208cdd96
-
SSDEEP
6144:Fnb/YzXA6ZNHyqh8vKlhDdNwEXtKmrSPWaDw3kOuOI+Xuizf8n:9/Cw6Z4nilhFX8mCXDckOPeJ
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
rundll32.exedescription pid Process procid_target PID 4888 wrote to memory of 4452 4888 rundll32.exe 81 PID 4888 wrote to memory of 4452 4888 rundll32.exe 81 PID 4888 wrote to memory of 4452 4888 rundll32.exe 81