Analysis

  • max time kernel
    6s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240611-en
  • resource tags

    arch:x64arch:x86image:win11-20240611-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    13/06/2024, 03:42

General

  • Target

    reWASDCommon.dll

  • Size

    3.7MB

  • MD5

    11ec326493c0ef3c707c74be9c4fd76b

  • SHA1

    28ff9355c27da6897d66f81c48dac7173749e28f

  • SHA256

    70c18d75b21c15b571a87461eb07f173050917b08cabe2fc45b044adc8b010e3

  • SHA512

    40461e00b22bd30a292e1904cc2b5f572251218e8fd6ff8077d9f5c6e081f7713df52738b52717eb388e4b807195e2567590c7ed7c952c2f20664e15be5a96d4

  • SSDEEP

    49152:URREfAteVuuYm/oXloBtqeA/AP4u+VRbg4UvsFF:ULE4teVuuYRMtVA//uERd

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\reWASDCommon.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1996
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\reWASDCommon.dll,#1
      2⤵
        PID:3416

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads