Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 18:58

General

  • Target

    $TEMP/~nsis/c3a019/mineepnad.dll

  • Size

    581KB

  • MD5

    84e4af439cfa4e555eb2e84f36fcb1fe

  • SHA1

    11f495bc7b6941ffdd881c7d135ddf674667bd6b

  • SHA256

    9f3c348b2967a2582f3276f426343cce69a13fccf58a7413d64fa2deb156fa03

  • SHA512

    10549db9c5cd20b2f3b3431e75aff38ed002572b7dced4808636e66c768291d8b9739f0b9d056955accc623b146939a1e1406ec656eb85021dec1e286feede95

  • SSDEEP

    12288:8smX4sTXqqBv/g7hU2RaWDYOfWupaUY3PBeTm6uOjaTTzw0:24UWUCDYOeQY3PBeTm6uOjeTzw0

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\$TEMP\~nsis\c3a019\mineepnad.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2548
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\$TEMP\~nsis\c3a019\mineepnad.dll,#1
      2⤵
        PID:2852

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads