Analysis

  • max time kernel
    132s
  • max time network
    151s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240221-en
  • resource tags

    arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    22/02/2024, 17:46

General

  • Target

    Rail.Route.v1.19.3/Rail.Route.v1.19.3/Rail Route_Data/Managed/mscorlib.dll

  • Size

    4.4MB

  • MD5

    06c93bc68f62e250f1faa65cd8b7e112

  • SHA1

    3db272876e7cbd89ee1c6d0edc8eda760e91bdda

  • SHA256

    af0cfa8241c1ef60c60b3ce06fdd901006f95966479ef5fff142cbd0968c45f9

  • SHA512

    fdfef615caea21bae51af0433918d174396e9dffdf035b7f3c0c802f76a20e01a845bb0acf89e3718b0aae4a5c601948f67d4e152dce3eb14e182ff25538caf0

  • SSDEEP

    98304:0vIAbYst0AH/NNAzzg/IwACSAkdE1awRUndZBlKj4Xl59xWIKWBCFzXjg1WUqSBV:050st0AH/NNAzzg/IwACSbEXq

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Rail.Route.v1.19.3\Rail.Route.v1.19.3\Rail Route_Data\Managed\mscorlib.dll",#1
    1⤵
      PID:2220

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads