Overview

overview

3

Static

static

3

0d16e1736b...58.dll

windows7-x64

1

0d16e1736b...58.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    129s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/09/2024, 20:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0d16e1736b2aad062645daaae503671cd563989031270594a975e32611ab2658.dll

  • Size

    3.5MB

  • MD5

    244fdc587dd061f51631185a5feeebe7

  • SHA1

    11bbb66acafede367a50623ed916c4bf90d9ddf0

  • SHA256

    0d16e1736b2aad062645daaae503671cd563989031270594a975e32611ab2658

  • SHA512

    ea6e945304f7c8879c4368f9d69dfa07ab4fa47a6088e0d2f898c5fff24240d0e4515a1cffe35e5e40683d17be629329bf428204030586eac5fa5e7ddf866045

  • SSDEEP

    49152:1m9HeH4FtP460/Igc9F3eKozoBkwAYwlNUdh12MZXHBSn+YmW4O3m7cjmMQTC+zl:8QKotcTlBk9YwzEhPbYzjmMtccXk8KR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 4 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\0d16e1736b2aad062645daaae503671cd563989031270594a975e32611ab2658.dll,#1
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:4932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4932-0-0x00007FF8FA7A3000-0x00007FF8FA9A2000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4932-2-0x00007FF8FA780000-0x00007FF8FAD28000-memory.dmp

    Filesize

    5.7MB

    Download

  • memory/4932-1-0x00007FF9188B0000-0x00007FF9188B2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/4932-5-0x00007FF8FA780000-0x00007FF8FAD28000-memory.dmp

    Filesize

    5.7MB

    Download