Overview

overview

8

Static

static

3

04e439dc2e...01.dll

windows7-x64

8

04e439dc2e...01.dll

windows10-2004-x64

8

Analysis

  • max time kernel
    150s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/12/2023, 16:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    04e439dc2ec4fcc61b9ee338031f9f01.dll

  • Size

    8KB

  • MD5

    04e439dc2ec4fcc61b9ee338031f9f01

  • SHA1

    a3ace6a66ab20edc4c67d2d48b3a4b6ecacf626b

  • SHA256

    8ac0a205f44c9ceb0325e5cc3e5703c37968a87d8c65f54dc2c3e1a3318cd65d

  • SHA512

    ecf7190474b92256403d5757034ce956592752c73492020b9f44583bc20be67c98bf772694165fa6ba69e0d520e0a9d78afbe56f7323c4677b1fc4974edc52db

  • SSDEEP

    192:KEcvd2/ekdzBTpdsxqHVOoDz+gv9/9i960HL9Emi:KEOd2/hdwGz+gvZW60Km

Score
8/10
persistence

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\04e439dc2ec4fcc61b9ee338031f9f01.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\04e439dc2ec4fcc61b9ee338031f9f01.dll,#1
      2⤵
        PID:4708

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads