Overview
overview
7Static
static
3840971f6b9...0N.exe
windows7-x64
7840971f6b9...0N.exe
windows10-2004-x64
7$COMMONFIL...ip.dll
windows7-x64
3$COMMONFIL...ip.dll
windows10-2004-x64
1$PLUGINSDI...er.dll
windows7-x64
3$PLUGINSDI...er.dll
windows10-2004-x64
3$PLUGINSDIR/Math.dll
windows7-x64
3$PLUGINSDIR/Math.dll
windows10-2004-x64
3$PLUGINSDI...ls.dll
windows7-x64
3$PLUGINSDI...ls.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows7-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
37ZipDLL.dll
windows7-x64
17ZipDLL.dll
windows10-2004-x64
1CommonLogg...on.dll
windows7-x64
1CommonLogg...on.dll
windows10-2004-x64
1CommonSpecialist.dll
windows7-x64
1CommonSpecialist.dll
windows10-2004-x64
3ExtensionManager.dll
windows7-x64
3ExtensionManager.dll
windows10-2004-x64
3HandleUpdate.dll
windows7-x64
3HandleUpdate.dll
windows10-2004-x64
3LiteUnzip.dll
windows7-x64
3LiteUnzip.dll
windows10-2004-x64
1LiteZip.dll
windows7-x64
3LiteZip.dll
windows10-2004-x64
3MyResources.dll
windows7-x64
1MyResources.dll
windows10-2004-x64
1RegHookSpecialist.dll
windows7-x64
1RegHookSpecialist.dll
windows10-2004-x64
3Analysis
-
max time kernel
13s -
max time network
19s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system -
submitted
16-07-2024 06:46
Static task
static1
Behavioral task
behavioral1
Sample
840971f6b9e264361d0748afca50d310N.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral2
Sample
840971f6b9e264361d0748afca50d310N.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
$COMMONFILES/SpeedyPC Software/UUS3/LiteUnzip.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral4
Sample
$COMMONFILES/SpeedyPC Software/UUS3/LiteUnzip.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
$PLUGINSDIR/GraphicalInstaller.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral6
Sample
$PLUGINSDIR/GraphicalInstaller.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
$PLUGINSDIR/Math.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral8
Sample
$PLUGINSDIR/Math.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
$PLUGINSDIR/SkinnedControls.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral10
Sample
$PLUGINSDIR/SkinnedControls.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral12
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral14
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
7ZipDLL.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral16
Sample
7ZipDLL.dll
Resource
win10v2004-20240704-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
CommonLoggingExtension.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral18
Sample
CommonLoggingExtension.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
CommonSpecialist.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral20
Sample
CommonSpecialist.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
ExtensionManager.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral22
Sample
ExtensionManager.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
HandleUpdate.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral24
Sample
HandleUpdate.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
LiteUnzip.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral26
Sample
LiteUnzip.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
LiteZip.dll
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral28
Sample
LiteZip.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
MyResources.dll
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral30
Sample
MyResources.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
RegHookSpecialist.dll
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral32
Sample
RegHookSpecialist.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
General
-
Target
CommonLoggingExtension.dll
-
Size
151KB
-
MD5
c208b1d248531b0035a8f3a3235017c4
-
SHA1
007a1541aa837f07070bc5bf5207e1c52c6441ef
-
SHA256
e28f4d9dad57441c3690af654733804cfa06a94ba22ce64854e82bbe55e24c68
-
SHA512
c5d4f074449900af68b84f06e7a8aa1a2b78171a8f9e86bdea05a6868ec0b7048a7735ad2d2caa9742e9844b70abef7e02b8abb323039bd736377d3e31b29ece
-
SSDEEP
3072:xMO/k7ZqgzQzIpPTnvwxWbgbro4F1LuB2qWiCzUcBW1ogaeqnFYLIDhQpebQU/zR:xMosAEMIpLnvwxWbgvosLuB2qBgUcg16
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 2776 wrote to memory of 2160 2776 rundll32.exe 30 PID 2776 wrote to memory of 2160 2776 rundll32.exe 30 PID 2776 wrote to memory of 2160 2776 rundll32.exe 30 PID 2776 wrote to memory of 2160 2776 rundll32.exe 30 PID 2776 wrote to memory of 2160 2776 rundll32.exe 30 PID 2776 wrote to memory of 2160 2776 rundll32.exe 30 PID 2776 wrote to memory of 2160 2776 rundll32.exe 30