Overview

overview

3

Static

static

3

Nova pasta...LT.dll

windows7-x64

1

Nova pasta...LT.dll

windows10-2004-x64

1

Nova pasta/BitSys.dll

windows7-x64

1

Nova pasta/BitSys.dll

windows10-2004-x64

1

Nova pasta/COMCAT.dll

windows7-x64

1

Nova pasta/COMCAT.dll

windows10-2004-x64

1

Nova pasta...er.exe

windows7-x64

1

Nova pasta...er.exe

windows10-2004-x64

1

Nova pasta...32.dll

windows7-x64

1

Nova pasta...32.dll

windows10-2004-x64

1

Nova pasta...32.dll

windows7-x64

1

Nova pasta...32.dll

windows10-2004-x64

1

Nova pasta/SETUP1.exe

windows7-x64

3

Nova pasta/SETUP1.exe

windows10-2004-x64

3

Nova pasta...ST.exe

windows7-x64

1

Nova pasta...ST.exe

windows10-2004-x64

1

Nova pasta...E2.dll

windows7-x64

1

Nova pasta...E2.dll

windows10-2004-x64

1

Nova pasta...IT.dll

windows7-x64

1

Nova pasta...IT.dll

windows10-2004-x64

1

Nova pasta...32.dll

windows7-x64

1

Nova pasta...32.dll

windows10-2004-x64

1

Nova pasta...60.dll

windows7-x64

1

Nova pasta...60.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    58s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    11-02-2024 18:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Nova pasta/BitSys.dll

  • Size

    64KB

  • MD5

    f6cea89f337e77f662782f4331794678

  • SHA1

    03b7738fe3551353056db9f253b99530073da9f2

  • SHA256

    7732c7b5dbd448c2c535f13ab95239e25242f53f0339bf866179b9b488ed8e0b

  • SHA512

    699a4b48784c44ba950056db4f0879861169deaf21a493d965a3f6b22967e53b739bae63b05b5fd005f7d04806314b532b6971e70e7c9fbf4d14c79a64a95e15

  • SSDEEP

    768:/2mzZ9j8KnZ9GVtuRUhGVNq+iCqePGyISGy/FpnUq+iC/yqEpr7yZ7DvOHD0aSC/:v9jRZ59wSGIriDmOy/

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Nova pasta\BitSys.dll",#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2992
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Nova pasta\BitSys.dll",#1
      2⤵
        PID:2376
    • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
      "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"
      1⤵
      • Suspicious use of SetWindowsHookEx
      PID:2768

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
      Filesize

      3KB

      MD5

      67affe9c3ce486b53ff7dfceb455c314

      SHA1

      bb992b68d7b4c10c6e85f61c0947945846d00ae0

      SHA256

      8151178a8c5426696b3f2dbefc372bcbd3d9cd33686e7df5da706057f77ccc2a

      SHA512

      be885ce7a13d08639af4dc6428ff54a56ee3fc238cb36357aad7c03e933f997d4e188516ac59cf93cdaa160720e1fc482138e523b30eb725c9cad244ace38b9c

      Download Submit