Analysis
-
max time kernel
6s -
platform
windows11-21h2_x64 -
resource
win11-20240611-en -
resource tags
arch:x64arch:x86image:win11-20240611-enlocale:en-usos:windows11-21h2-x64system -
submitted
13/06/2024, 03:42
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
reWASD.dll
Resource
win11-20240508-en
9 signatures
150 seconds
Behavioral task
behavioral2
Sample
reWASDCommon.dll
Resource
win11-20240611-en
1 signatures
150 seconds
General
-
Target
reWASDCommon.dll
-
Size
3.7MB
-
MD5
11ec326493c0ef3c707c74be9c4fd76b
-
SHA1
28ff9355c27da6897d66f81c48dac7173749e28f
-
SHA256
70c18d75b21c15b571a87461eb07f173050917b08cabe2fc45b044adc8b010e3
-
SHA512
40461e00b22bd30a292e1904cc2b5f572251218e8fd6ff8077d9f5c6e081f7713df52738b52717eb388e4b807195e2567590c7ed7c952c2f20664e15be5a96d4
-
SSDEEP
49152:URREfAteVuuYm/oXloBtqeA/AP4u+VRbg4UvsFF:ULE4teVuuYRMtVA//uERd
Score
1/10
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 1996 wrote to memory of 3416 1996 rundll32.exe 81 PID 1996 wrote to memory of 3416 1996 rundll32.exe 81 PID 1996 wrote to memory of 3416 1996 rundll32.exe 81