Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 01:05 UTC

General

  • Target

    c8aca2cec5f3f33ae22cbb839aefa1ddc0faebcdabbb0ca4f4fb8a637dace05c.dll

  • Size

    899KB

  • MD5

    b7571620fa15053529384bd55e6d843e

  • SHA1

    1d545f2b0dc516ad88b3a4b83a5906c55b65f148

  • SHA256

    c8aca2cec5f3f33ae22cbb839aefa1ddc0faebcdabbb0ca4f4fb8a637dace05c

  • SHA512

    60c23a9d6c5499ef6cce508c322f77270f354d965f486d4e2103d770464984b7b9c80607ae1eba14657c3ad1f93e3543d7b9e3216cfed0f2fe3da22e917618b0

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXV:7wqd87VV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: RenamesItself 1 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\c8aca2cec5f3f33ae22cbb839aefa1ddc0faebcdabbb0ca4f4fb8a637dace05c.dll,#1
    1⤵
    • Suspicious behavior: RenamesItself
    PID:2964
  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\c8aca2cec5f3f33ae22cbb839aefa1ddc0faebcdabbb0ca4f4fb8a637dace05c.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.