Analysis

  • max time kernel
    1470s
  • max time network
    1478s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-es
  • resource tags

    arch:x64arch:x86image:win11-20241007-eslocale:es-esos:windows11-21h2-x64systemwindows
  • submitted
    16/10/2024, 20:14

General

  • Target

    Dism/OfflineSetupProvider.dll

  • Size

    183KB

  • MD5

    db1c840507ea36d04d8f8f503804daad

  • SHA1

    990152a67191059ac486074f0a50b97b840bd8e3

  • SHA256

    23fac2578e222a023c7b67186d67070518c17f08a6c39644fbef76293751efc4

  • SHA512

    90da4d328c27f1379f7f9e65019aa242e1899b1a2a5f9626f08aeea020b8f46583878891b8a73b4c555e381f1e8f8c5be5c54dce2d7a2498c2e3a40c8abcb5a3

  • SSDEEP

    3072:Ko8F4zlDtDlWY32LCG3F4l96gsFYryk/5FS7moOFmh36ZtPW80iO:Ko8OzljW3CoSl9eOmkFsDJyPk

Score
1/10

Malware Config

Signatures

  • Modifies registry class 10 IoCs

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\Dism\OfflineSetupProvider.dll
    1⤵
    • Modifies registry class
    PID:4660

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads