Analysis
-
max time kernel
134s -
max time network
144s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
03-11-2024 13:15
General
-
Target
Chams Sudden + Mado_s Injectors/UPDATE Chams Sudden Latino.dll
-
Size
64KB
-
MD5
c1f43582036e27067d974179b0ad4221
-
SHA1
00f36a8be369aa8fb9b8efc14e4146bd42f62bfc
-
SHA256
7f8da421f0eaadeda79ca46c417e2d446bdbc4b103f06d82a9e6ca33c76de82d
-
SHA512
83c898f706dbfaf963260ea5f29bb987b221e02daf97c3492a13c91da01481fa6b829cf231e35fefb4ef56d94f63abe1dda1ea053963c47f301fd412c11bc9ce
-
SSDEEP
1536:eszZ4c0NWs9EqD4AZJpjC3ERj2ZpeH2+yrW:NF0vl4AZu3NTeH2+yr
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe "C:\Users\Admin\AppData\Local\Temp\Chams Sudden + Mado_s Injectors\UPDATE Chams Sudden Latino.dll",#11⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\rundll32.exerundll32.exe "C:\Users\Admin\AppData\Local\Temp\Chams Sudden + Mado_s Injectors\UPDATE Chams Sudden Latino.dll",#12⤵
- System Location Discovery: System Language Discovery
-