Overview

overview

10

Static

static

3

db6e1b6448...8c.dll

windows7-x64

10

db6e1b6448...8c.dll

windows10-2004-x64

10

Analysis

  • max time kernel
    0s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-03-2024 10:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    db6e1b6448189f395724004a5465ce8c.dll

  • Size

    38KB

  • MD5

    db6e1b6448189f395724004a5465ce8c

  • SHA1

    96ae8d941c0f4a4f57e0c2e621ee57e82ccd88e4

  • SHA256

    c7d0dd48bc5c3d78570fa583b6c05ec65202c6abb9d6bcf1a1bb7c5d5b74e091

  • SHA512

    330f7b442764c93f9e972c95ac68dffce44a58fc0c56348b0d5169a5a7ba34ddce6dca5ee5f6d7fa1751cffdebec76f128cae9dbc182c807211a91c7bf2f9532

  • SSDEEP

    768:Hxk0dnXaA0tiqdwmWlCh+o6pMauVwhQg63nJC0fGu+/wpQO9Jp1Lwu:C0otY9iH3auVwKgcJPkJO7

Score
10/10
magniberransomware

Malware Config

Signatures

  • Detect magniber ransomware 2 IoCs
  • Magniber Ransomware

    Ransomware family widely seen in Asia being distributed by the Magnitude exploit kit.

    ransomwaremagniber

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\db6e1b6448189f395724004a5465ce8c.dll,#1
    1⤵
      PID:5024

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2540-1-0x00000246C4C40000-0x00000246C4C45000-memory.dmp

      Filesize

      20KB

      Download

    • memory/2540-16-0x00000246C4C40000-0x00000246C4C45000-memory.dmp

      Filesize

      20KB

      Download

    • memory/5024-10-0x00000285EA6A0000-0x00000285EA6A1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-0-0x00000285EA330000-0x00000285EA66D000-memory.dmp

      Filesize

      3.2MB

      Download

    • memory/5024-8-0x00000285EA300000-0x00000285EA301000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-7-0x00000285EA2F0000-0x00000285EA2F1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-3-0x00000285EA2C0000-0x00000285EA2C1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-9-0x00000285EA310000-0x00000285EA311000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-14-0x00000285EA6D0000-0x00000285EA6D1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-13-0x00000285EA6C0000-0x00000285EA6C1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-12-0x00000285EA6B0000-0x00000285EA6B1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-6-0x00000285EA2E0000-0x00000285EA2E1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-2-0x00000285EA2B0000-0x00000285EA2B1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/5024-5-0x00000285EA2D0000-0x00000285EA2D1000-memory.dmp

      Filesize

      4KB

      Download