056d15b9d25e9d5a89a8e325f0ea80db9dbed29ac4299b478c2eea1bca0b7222 | Triage

Analysis

max time kernel
95s
max time network
101s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
06-09-2024 08:36

Sharing

Report Analysis Logs

General

Target

ex7-m1_release_h1/wrp64.dll
Size

103KB
MD5

a15d1a9bf9cefe3f398b04c24d5236ad
SHA1

e7881a459c5361b1123eedf7e6ae2cc9872028de
SHA256

375c1b2af55500a4948a2d9392c6f31a1356054bf9857f9b3803e437105af7a0
SHA512

15550a42e2cad1fe607e7a46d274344d246b5b366f4b11483f50e5d5a4c6e2c73064325315abace847f0dbee03903ea389f78cbd1d9ef96ecf70bbaff91c97dc
SSDEEP

1536:H4qmj0vKkWQO26AtE1pD0W1Zyx3M/tfvzwuU0xEilxf4mTra7S:99WQORuBM/tfv805dam

Score

1^/10

Malware Config

Signatures

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
1884	rundll32.exe
1884	rundll32.exe

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\ex7-m1_release_h1\wrp64.dll,#1
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:1884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads