Overview

overview

7

Static

static

3

~x64__x32_...__.zip

windows7-x64

1

~x64__x32_...__.zip

windows10-2004-x64

1

fh/HalExtI...MA.dll

windows10-2004-x64

1

fh/fh.dll

windows10-2004-x64

1

fh/gpsvc.dll

windows10-2004-x64

1

fh/msftedit.dll

windows10-2004-x64

1

rmclient/SEMgrSvc.dll

windows10-2004-x64

1

rmclient/SRH.dll

windows10-2004-x64

1

rmclient/rilproxy.dll

windows10-2004-x64

1

rmclient/rmclient.dll

windows10-2004-x64

1

vdsbas/Tok...er.dll

windows10-2004-x64

1

vdsbas/Vault.dll

windows10-2004-x64

1

vdsbas/tquery.dll

windows10-2004-x64

1

vdsbas/vdsbas.dll

windows10-2004-x64

1

winspool/wdmaud.dll

windows10-2004-x64

1

winspool/winspool.dll

windows10-2004-x64

1

winspool/wvc.dll

windows10-2004-x64

7

x64__insta....5.msi

windows7-x64

6

x64__insta....5.msi

windows10-2004-x64

6

Resubmissions

02/08/2024, 14:19

240802-rnce8sscne 3

02/08/2024, 14:17

240802-rl7hlasclb 7

Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240730-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240730-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/08/2024, 14:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fh/HalExtIntcLpioDMA.dll

  • Size

    20KB

  • MD5

    14cf6bf532b9ea9eb756fa3ac1b48047

  • SHA1

    ea202ce337eb25677fd78239ba007ef62299ade5

  • SHA256

    3da7cf0676adf77a65d46964ef738400c549963364208d6d2ece1bb120b1f357

  • SHA512

    50354291f7b7ba91e9fcdedf7e50bc78efa91fae6277639878defae237588da2a5d1bf1c3b534e7568d189144d66e8bfa49120de7f8fedbe101d13e0224c09a7

  • SSDEEP

    384:Uc4sYkHlo0olx8J+xYpmbAvWzPWhgxvlmKm:UxsYq4H3bF32

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\fh\HalExtIntcLpioDMA.dll,#1
    1⤵
      PID:4696

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads