Overview

overview

3

Static

static

3

09507975f3...1f.dll

windows7-x64

1

09507975f3...1f.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    161s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/12/2023, 00:58

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    09507975f357a55a2820c8c56692af1f.dll

  • Size

    663KB

  • MD5

    09507975f357a55a2820c8c56692af1f

  • SHA1

    4dd0ceaf3cdfc05292537605f96bfc40a417dbb3

  • SHA256

    39ca97c0b289d8bd234d90afb3f5172465449a577bf353bc86331deb84a1753b

  • SHA512

    41a0b1840fe7f414b4ee51c40ebb7b69f7a19a6d7ff2dbbdd43b6e793ab5eed83e2019bceb98efe8a7554aec3defb1a9611a7ac016d968cfb345516f25c12846

  • SSDEEP

    12288:HjT6dVTOyBSTasouRwGtnJ/gnqf+ys4BTC6jQcQovnjTuZrDIHH7z7JB:Hj+dAysJhwMntn+yFTd/jqJyn7JB

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\09507975f357a55a2820c8c56692af1f.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1136
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\09507975f357a55a2820c8c56692af1f.dll,#1
      2⤵
      • Suspicious use of SetWindowsHookEx
      PID:4712

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads