Overview

overview

3

Static

static

3

version.dll

windows7-x64

1

version.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    94s
  • max time network
    96s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08-08-2024 15:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    version.dll

  • Size

    116KB

  • MD5

    ac4b9bf7a82ae070ae835793b7afa573

  • SHA1

    2a28528845d0ce84b0a4a9b6117d277309c10a42

  • SHA256

    3af47cab7209b10e67f5627264ff175eb760b9f5c223cc31e13d911089fa9450

  • SHA512

    82477934485bf969ad80f4b1a27d669b9ff105cea259697526eaf18a393a2870cf2769c6c04690edb8f9a4a83ba6559e0e869634c4b0a9293d3dad2b3ff6ad7f

  • SSDEEP

    3072:bl8XlUghmmstzx1uAi4xZZDBBqdsC1fxgKTccckVPxIiTmi:qXlhhm5x1uAFxTBA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\version.dll,#1
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:3212

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3212-0-0x000001F6F5E10000-0x000001F6F5E40000-memory.dmp

    Filesize

    192KB

    Download