Analysis
-
max time kernel
144s -
max time network
140s -
platform
windows10-2004_x64 -
resource
win10v2004-20231222-en -
resource tags
arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system -
submitted
11-01-2024 14:06
Static task
static1
Behavioral task
behavioral1
Sample
Yeezus.rar
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
Yeezus.rar
Resource
win10v2004-20231215-en
Behavioral task
behavioral3
Sample
InjectionLibrary.dll
Resource
win7-20231215-en
Behavioral task
behavioral4
Sample
InjectionLibrary.dll
Resource
win10v2004-20231222-en
Behavioral task
behavioral5
Sample
ReaLTaiizor.dll
Resource
win7-20231215-en
Behavioral task
behavioral6
Sample
ReaLTaiizor.dll
Resource
win10v2004-20231215-en
Behavioral task
behavioral7
Sample
Yeezus.exe
Resource
win7-20231215-en
General
-
Target
InjectionLibrary.dll
-
Size
78KB
-
MD5
64ef546a5a013f36524507e7dfc70d09
-
SHA1
d6d0aabdc88b7a875fd666a65194e250cd9ef3e5
-
SHA256
7919342e61f58303b1efe7bc3f2a612b717d64069c45eb53f0193218821d0016
-
SHA512
b409aaaf770bf0ca436e66279a324158845cba04ad892bbe98c0e32e96faacf83108d5e5b2b51efb59c8a3fccb4476303af47408f1a26bd79b18008ceaa7cc6b
-
SSDEEP
1536:E2t6wUtyYiZdqESehfyNHhwTZNzTedgzmZLtQ/5i:7t6LMXZdkaKNHhwTZRTej9Y4
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 1468 wrote to memory of 4252 1468 rundll32.exe 88 PID 1468 wrote to memory of 4252 1468 rundll32.exe 88 PID 1468 wrote to memory of 4252 1468 rundll32.exe 88