Overview

overview

3

Static

static

3

612a69aa65...68.dll

windows7-x64

1

612a69aa65...68.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    135s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/09/2024, 18:32

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    612a69aa650231a58ac16724b6898d45639fa20751cb23f33d434310dba88868.dll

  • Size

    3.5MB

  • MD5

    9bd5fa9f969099d15bb3211fbf9ed5a4

  • SHA1

    1c5427be3c53129a8eca319236d63f3380842b28

  • SHA256

    612a69aa650231a58ac16724b6898d45639fa20751cb23f33d434310dba88868

  • SHA512

    940bc363d13e995d89ae7ff776b46643c9ddb6818142db3b658b11e94b4ac0a222dc33cb03f22f5aa452475c1054709d05c0bd6c7ce29341fcbd203bb44f480b

  • SSDEEP

    49152:1m9HeH4FtP460/Igc9F3eKozoBkwAYwlNUdh12MZXHBSn+YmW4O3m7cjmMQTC+zJ:8QKotcTlBk9YwzEhPbYzjmMtccXk8KF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 4 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\612a69aa650231a58ac16724b6898d45639fa20751cb23f33d434310dba88868.dll,#1
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:548

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/548-0-0x00007FFE18053000-0x00007FFE18252000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/548-1-0x00007FFE35D10000-0x00007FFE35D12000-memory.dmp

          Filesize

          8KB

          Download

        • memory/548-2-0x00007FFE18030000-0x00007FFE185D8000-memory.dmp

          Filesize

          5.7MB

          Download

        • memory/548-5-0x00007FFE18030000-0x00007FFE185D8000-memory.dmp

          Filesize

          5.7MB

          Download