8244d3c049d38b92198166cd4f16d6a77f67c731fd157683c25decf4e699867e

Analysis

max time kernel
141s
max time network
277s
platform
windows11-21h2_x64
resource
win11-20240412-en
resource tags

arch:x64arch:x86image:win11-20240412-enlocale:en-usos:windows11-21h2-x64system
submitted
16/04/2024, 19:36

Target

chrome_elf.dll
Size

2.5MB
MD5

da2feeb6acade61f1d31de705088b18d
SHA1

0aaba8314db7a0972bbafe12d911cd391bee7a02
SHA256

e188f182cd678b3929c9ade9922c1a02d9e15454046baf4aa71241dfcb39c6f1
SHA512

50911aeb33959591264f4aed218342444fbedd38fcf341c2de0db7db216e20f893a06ee63a39a173907ebef5885f0a3cbe477892d90e87aedb68cc4978d196bf
SSDEEP

49152:Uw6666666666666666666666666666666x666666666666666fwwwwwwwwwwwwwV:j6666666666666666666666666666664

Score

1^/10

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 1072 wrote to memory of 2176	1072	rundll32.exe	80
PID 1072 wrote to memory of 2176	1072	rundll32.exe	80
PID 1072 wrote to memory of 2176	1072	rundll32.exe	80

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\chrome_elf.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:1072
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\chrome_elf.dll,#1
  2⤵
  PID:2176