88977075356dc9e4c81ff59e5ffc004ab3d62070c1062ce7b690a941d5328090 | Triage

Analysis

max time kernel
119s
max time network
120s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
24-04-2024 14:07

Sharing

Report Analysis Logs

General

Target

GDISpyB.sys
Size

39KB
MD5

5cf9e58c41f6b23cfd51cfd2bb843f99
SHA1

f7e2a97188c3e343e4210cf4f8618a16dc2c30f8
SHA256

02113d24b82ec4fd61371f5ceef5fbcf6250d540137c34ba31566f1a6c089c7f
SHA512

f16101f8bc6179de21af2ec6b29dfd1b70c618c5b4a4260a5c23c362d849232b14a9d3d99bc039ae78ef843423297af166434d8b582c487a5ec91c8ecfd3f223
SSDEEP

384:Us+eQb89MP+TPTUYKCwrRt3ayaGBYA7e8Fst3MN4ZvQ094hKulmBqB3j:UslQb6MP+TPTU/5Rt3ayD/78JI/oIz

Score

1^/10

Malware Config

Signatures

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\GDISpyB.sys
1⤵
PID:2928
- C:\Users\Admin\AppData\Local\Temp\GDISpyB.sys
  C:\Users\Admin\AppData\Local\Temp\GDISpyB.sys
  2⤵
  PID:2300

C:\Windows\SysWOW64\DllHost.exe
C:\Windows\SysWOW64\DllHost.exe /Processid:{06622D85-6856-4460-8DE1-A81921B41C4B}
1⤵
PID:2260

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2300-0-0x0000000000010000-0x0000000000019F00-memory.dmp

Filesize
39KB

Download