Analysis
-
max time kernel
121s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system -
submitted
13-06-2024 21:33
Static task
static1
Behavioral task
behavioral1
Sample
installer.dll
Resource
win7-20231129-en
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
installer.dll
Resource
win10v2004-20240508-en
0 signatures
150 seconds
General
-
Target
installer.dll
-
Size
382KB
-
MD5
246833d687593ef7039aaa29e02f313f
-
SHA1
b49b20c253511eb8c7c751256a668d467652bb70
-
SHA256
b45c9226434df99fd3925600d4a8913319eeeb7e0f67a302a63976c3aa81e32e
-
SHA512
3fadd8f680c6ef917f2d871e00b4e9e356cbe7628db2a68a988225d330e7604a911592fb54ab5deaeadbb921983af06f9a97768ef5c0c78bdfa2e0e47605ae5f
-
SSDEEP
6144:/b4zt+1C68FxCN6p1c4W73N8QVxBpYVRXnyd:/b4zwoxH1udNVxfOg
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
rundll32.exedescription pid process target process PID 1044 wrote to memory of 2032 1044 rundll32.exe WerFault.exe PID 1044 wrote to memory of 2032 1044 rundll32.exe WerFault.exe PID 1044 wrote to memory of 2032 1044 rundll32.exe WerFault.exe