Overview

overview

3

Static

static

3

fdbe227832...a5.dll

windows7-x64

1

fdbe227832...a5.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11-09-2024 05:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fdbe22783271d4fc60b50ca6cfa87750d0be1739ddd7e54f897e2b374634bfa5.dll

  • Size

    3.5MB

  • MD5

    08f4ab118ce4453b6852444856f9b5e9

  • SHA1

    c07f1776e42e330a22f936725328fae898cd8d69

  • SHA256

    fdbe22783271d4fc60b50ca6cfa87750d0be1739ddd7e54f897e2b374634bfa5

  • SHA512

    29fd691a79f9614404180b54391856ae5afae1c2f2c272cc1c91ff31e587958d4e1fe8ae366e973605aff8bd37743e674b596d772cb8ba6a539b53d268f72a26

  • SSDEEP

    49152:1m9HeH4FtP460/Igc9F3eKozoBkwAYwlNUdh12MZXHBSn+YmW4O3m7cjmMQTC+zh:8QKotcTlBk9YwzEhPbYzjmMtccXk8K9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 4 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\fdbe22783271d4fc60b50ca6cfa87750d0be1739ddd7e54f897e2b374634bfa5.dll,#1
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3016-0-0x00007FFD00843000-0x00007FFD00A42000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/3016-1-0x00007FFD1E8F0000-0x00007FFD1E8F2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/3016-2-0x00007FFD00820000-0x00007FFD00DC8000-memory.dmp

    Filesize

    5.7MB

    Download

  • memory/3016-5-0x00007FFD00820000-0x00007FFD00DC8000-memory.dmp

    Filesize

    5.7MB

    Download