Overview

overview

6

Static

static

3

help.chm

windows7-x64

1

help.chm

windows10-2004-x64

1

iumsdk.dll

windows7-x64

1

iumsdk.dll

windows10-2004-x64

1

iumsdkx.dll

windows7-x64

1

iumsdkx.dll

windows10-2004-x64

1

setup.exe

windows7-x64

setup.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    15s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26-01-2024 18:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    iumsdkx.dll

  • Size

    22KB

  • MD5

    b27e2b886da33ac7398b90f3753237d9

  • SHA1

    1f2313801c973095ec5a2d8603f4452d5c297478

  • SHA256

    759398bf89295a9e5161034fa0255eb2a8efc332f64239fad72048576b56e7d6

  • SHA512

    9e36113c1c8fcb54225b1e1491ee59f925c65af64aa6e175eeb6807155d4a10a62b82ff4e8bc3cc9e80dbac80b33c18392213cc39f0751580cddc617f6bb9798

  • SSDEEP

    384:ilLkoCwcgR2deJ4eRKWsX1cMW88W+jVyDBRJ3YGMveuOMlA6:iVEPwKWwQjI1P3nMvsw

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\iumsdkx.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1924
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -u -p 1924 -s 80
      2⤵
        PID:2376

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads