Analysis

  • max time kernel
    132s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-06-2024 13:14

General

  • Target

    prjDaysOrder.dll

  • Size

    1.5MB

  • MD5

    af2d70a172822a73d6e07b4e630a6387

  • SHA1

    5516a74793591e6185129580d5fdf7dffa6892cc

  • SHA256

    a58cb440e73e03c71c097b38d8d5edbcc4b8c403ec02727a4ab68e4210060c41

  • SHA512

    ec598eeedab12a07cea54541011ff7dc6b03bb8cbb28a5370d6ef7f4ac07b77331411674ad3be0a417e21e3f394a89b1c75a982e4c8513d1c3980ff449a9fc58

  • SSDEEP

    24576:NVqcT5dJfJO5/dSEzOpsE+uPiRJRoduiRPiunsn6S+5/0lTVQesvWLMfN8xTN3Lu:NVqcTDJB0FSi2sMsnj+VGTVQcMCN3y

Score
1/10

Malware Config

Signatures

  • Modifies registry class 45 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\prjDaysOrder.dll
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1800
    • C:\Windows\SysWOW64\regsvr32.exe
      /s C:\Users\Admin\AppData\Local\Temp\prjDaysOrder.dll
      2⤵
      • Modifies registry class
      PID:4304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads