Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 17:57

General

  • Target

    8fc9c8b8023d87ef168753346bc69093.dll

  • Size

    607KB

  • MD5

    8fc9c8b8023d87ef168753346bc69093

  • SHA1

    5bdbe9756280ffe02fa82f989af0146ed8730c93

  • SHA256

    a8bd5abeab9c337ee4aa8f0b47f073838bd7a7e37ca0a57b87a0daa63e610a86

  • SHA512

    244d40ee80f52c540834a1d6ba20512ceef2be7f47134717d81095b62d61aabbaec2ea5eb15273c675c5dda7a84b31d46dcfa04d62ff4044a51777ec3d7aa240

  • SSDEEP

    12288:ipIt9HX65cspWkY5DARyLuaIg3QaomrdnsLm0X/:ietFXsoB7LGnaomr6m0X

Score
6/10

Malware Config

Signatures

  • Installs/modifies Browser Helper Object 2 TTPs 1 IoCs

    BHOs are DLL modules which act as plugins for Internet Explorer.

  • Modifies registry class 11 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\8fc9c8b8023d87ef168753346bc69093.dll
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2340
    • C:\Windows\SysWOW64\regsvr32.exe
      /s C:\Users\Admin\AppData\Local\Temp\8fc9c8b8023d87ef168753346bc69093.dll
      2⤵
      • Installs/modifies Browser Helper Object
      • Modifies registry class
      PID:2916

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads