Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23/04/2024, 02:40

General

  • Target

    2ec15a707383c724be54410cd7416d598da40bdfcd011bc8840301f5ccb8b714.dll

  • Size

    899KB

  • MD5

    71453378ee254fdc83bba373e1555128

  • SHA1

    12120d4768ff47017441aedbaf36e2086e232315

  • SHA256

    2ec15a707383c724be54410cd7416d598da40bdfcd011bc8840301f5ccb8b714

  • SHA512

    36c366e6142e365333a554765e59e0499be432322cbd62b979ec8b26ad1ca8f01a74b76f0ac3147e9dc124588f73b091a06994dc01504b4de2f3f1063dcee02d

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXM:7wqd87VM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: RenamesItself 1 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\2ec15a707383c724be54410cd7416d598da40bdfcd011bc8840301f5ccb8b714.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1044
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\2ec15a707383c724be54410cd7416d598da40bdfcd011bc8840301f5ccb8b714.dll,#1
      2⤵
      • Suspicious behavior: RenamesItself
      PID:2060

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads