Analysis
-
max time kernel
148s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
21-05-2024 05:52
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
exit.dll
Resource
win7-20240508-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
exit.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
exit.dll
-
Size
83KB
-
MD5
3848244f628f2c1a4ef229c0cb904e2a
-
SHA1
ab9d47fe2e448cbb58bfc7727d2ecc0f1f0f3f34
-
SHA256
b755e1dd72b8beb12b1accec382ad6cc120361fe5e4cfc961a2c70f7f2e3c795
-
SHA512
019a0e06837df5d3e9f0996b65544834067ed769c78d05da0f76f4d6c5abd6b99fff4d9110154edcc4666f2a52547f8fdd08ccdef47c50e9320ca4ddc5544038
-
SSDEEP
1536:HvDpbseN1yFFxCNkNOiKAhUKzdSDdTOZW7Co1sWdncdmbhq1+wFFTYv:HBkNzf51W7n1Wmbhq82Fkv
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 3076 wrote to memory of 680 3076 rundll32.exe 82 PID 3076 wrote to memory of 680 3076 rundll32.exe 82 PID 3076 wrote to memory of 680 3076 rundll32.exe 82