ce0bdee0ae776e9203b4da8c5440e98e86dccbb7cdfcdf65365179f0b89983d1 | Triage

Analysis

max time kernel
10s
max time network
12s
platform
windows10-2004_x64
resource
win10v2004-20231127-en
resource tags

arch:x64arch:x86image:win10v2004-20231127-enlocale:en-usos:windows10-2004-x64system
submitted
07-12-2023 23:26

Sharing

Report Analysis Logs

General

Target

PlayerIDLookup.dll
Size

48KB
MD5

c013789c1f285a1e609f6c8b0c90e053
SHA1

87a38e6f6807023cb97297148ac1da00dfc3f4e7
SHA256

ce0bdee0ae776e9203b4da8c5440e98e86dccbb7cdfcdf65365179f0b89983d1
SHA512

a6c286e899f11c003543cf5707dd2e025e86fbdab2812cd3f7f5c936069af6cdb77fb4d30238bd8cd6eaf391280c6038c8035484bddb145c294950803b5b8c8f
SSDEEP

768:wtGbTNnERgJMYDrw0nfnjWk0VJRPJB/poWR4rT975sPy:wtE9HPPjWk0Bnp+Vey

Score

1^/10

Malware Config

Signatures

Suspicious use of FindShellTrayWindow 1 IoCs

Processes:

rundll32.exe

pid process

4856 rundll32.exe

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\PlayerIDLookup.dll,#1
1⤵
- Suspicious use of FindShellTrayWindow
PID:4856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads