bbc1d9d0ac37c862b73ab90af3b71eecbb4b9ab82eecf13fbd3f37e9676f6151

Analysis

max time kernel
117s
max time network
118s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
05/10/2024, 07:08

Target

bbc1d9d0ac37c862b73ab90af3b71eecbb4b9ab82eecf13fbd3f37e9676f6151.dll
Size

3.5MB
MD5

c153b0ae4089f8659bca9dfe55a6692e
SHA1

f69af3eb49428381d4b4b9fe107003285d0e382b
SHA256

bbc1d9d0ac37c862b73ab90af3b71eecbb4b9ab82eecf13fbd3f37e9676f6151
SHA512

0220c3150c5b1065f4c0a6983281d0b14e98151fb7f2bab74a0a5635ec42b924949f55521bc7fe2e0fac1af3ea4cebe59a05773b564d16a16717eda248468bc3
SSDEEP

49152:WwApIj2UwOmhJfOkNqZbPxrH4jP/A7+Lc37acfmWd/5gPzpuOEeMzj+TALICmwdW:Wrmj3EA6qNJ7F7yTWnRYEeMzj7BxMxF

Score

1^/10

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
2360	rundll32.exe
2360	rundll32.exe

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\bbc1d9d0ac37c862b73ab90af3b71eecbb4b9ab82eecf13fbd3f37e9676f6151.dll,#1
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:2360

memory/2360-5-0x00000000770A0000-0x00000000770A2000-memory.dmp

Filesize
8KB

Download
memory/2360-10-0x000007FEF5150000-0x000007FEF56ED000-memory.dmp

Filesize
5.6MB

Download
memory/2360-9-0x000007FEF5150000-0x000007FEF56ED000-memory.dmp

Filesize
5.6MB

Download
memory/2360-3-0x00000000770A0000-0x00000000770A2000-memory.dmp

Filesize
8KB

Download
memory/2360-1-0x00000000770A0000-0x00000000770A2000-memory.dmp

Filesize
8KB

Download
memory/2360-0-0x000007FEF5173000-0x000007FEF536F000-memory.dmp

Filesize
2.0MB

Download