Overview

overview

10

Static

static

3

loaderV6/AcXtrnal.dll

windows10-1703-x64

3

loaderV6/AcXtrnal.dll

windows10-2004-x64

3

loaderV6/A...ds.dll

windows10-1703-x64

3

loaderV6/A...ds.dll

windows10-2004-x64

3

loaderV6/LoaderV6.exe

windows10-1703-x64

10

loaderV6/LoaderV6.exe

windows10-2004-x64

8

loaderV6/L...er.dll

windows10-1703-x64

3

loaderV6/L...er.dll

windows10-2004-x64

3

loaderV6/L...dm.dll

windows10-1703-x64

3

loaderV6/L...dm.dll

windows10-2004-x64

3

loaderV6/L...pi.dll

windows10-1703-x64

3

loaderV6/L...pi.dll

windows10-2004-x64

3

loaderV6/acwow64.dll

windows10-1703-x64

3

loaderV6/acwow64.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    135s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    11-08-2024 23:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    loaderV6/AdaptiveCards.dll

  • Size

    41KB

  • MD5

    43c11ee7a1d9f62c429972c07dd33229

  • SHA1

    c091b972937d18f9a52c4fd33188e4f3e401ccb7

  • SHA256

    f8e015de2e77647dcaa2d0e1b9b1ac284e9d987385b9947591813b4bd6796e32

  • SHA512

    cb9a76ae4ffe1c297bb81537efb14b2686f2a7c37dcce874d107d22b37bf28b34d4f0b2e29fd2fdb992dfb15dc583dce7c140bb8a4d20f0331bc93b26f6401c8

  • SSDEEP

    768:svEUgi5QYojjPIKg7yrGEw4zk/NF1IzZLrop4NVXldt1vZstPGck6jv:s8UgiW7jPIKeyrARNF+lu0JDvZsBGcks

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\loaderV6\AdaptiveCards.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:820
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\loaderV6\AdaptiveCards.dll,#1
      2⤵
      • System Location Discovery: System Language Discovery
      PID:4316

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads