Overview

overview

10

Static

static

10

45446f6e75...6b.exe

windows7-x64

7

45446f6e75...6b.exe

windows10-2004-x64

7

$PLUGINSDI...ol.dll

windows7-x64

3

$PLUGINSDI...ol.dll

windows10-2004-x64

3

$PLUGINSDI...re.dll

windows7-x64

3

$PLUGINSDI...re.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...om.dll

windows7-x64

7

$PLUGINSDI...om.dll

windows10-2004-x64

7

API.dll

windows7-x64

1

API.dll

windows10-2004-x64

1

Accessibility.dll

windows7-x64

1

Accessibility.dll

windows10-2004-x64

1

AntivirusLibrary.dll

windows7-x64

1

AntivirusLibrary.dll

windows10-2004-x64

1

Brand.dll

windows7-x64

1

Brand.dll

windows10-2004-x64

1

CacApp.exe

windows7-x64

1

CacApp.exe

windows10-2004-x64

1

CacApp.exe

windows7-x64

1

CacApp.exe

windows10-2004-x64

1

D3DCompile...r3.dll

windows10-2004-x64

3

DirectWrit...er.dll

windows7-x64

1

DirectWrit...er.dll

windows10-2004-x64

1

DotNetZip.dll

windows7-x64

1

DotNetZip.dll

windows10-2004-x64

1

EndpointPr...et.dll

windows7-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    12-07-2024 02:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    EndpointProtectionClient.Net.dll

  • Size

    88KB

  • MD5

    445d21f2f263713b328036d907dc3787

  • SHA1

    2d0d83e33cb45fe2b8c22fa3a00f2a56c9c1eec0

  • SHA256

    da3131ffd9263736083efbc26cc855117066188095d61716f0e79c69efc68e38

  • SHA512

    4c3174463340fe7bf2f84ae3e2da860e9932e35561c83f95903d864c46b8938b486d4d07680e4f2ff89c6785122fd5e5cf70eeea7626adf43267d38dfa8c2f15

  • SSDEEP

    1536:fIlS2mpMhxOb+nlKDek/yifRkdf486waBxIstxRcTUkmeeSLmEJJpIP8jmVStOfY:glS24qwK+ek/yifRc486b7Ist/cIkmeR

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\EndpointProtectionClient.Net.dll,#1
    1⤵
      PID:2784

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads