Overview

overview

6

Static

static

6

499ce7e26f...9a.exe

windows7-x64

4

499ce7e26f...9a.exe

windows10-2004-x64

4

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

PanoramaSt...ch.pdf

windows7-x64

3

PanoramaSt...ch.pdf

windows10-2004-x64

3

PanoramaSt...al.pdf

windows7-x64

3

PanoramaSt...al.pdf

windows10-2004-x64

3

PanoramaSt...ro.exe

windows7-x64

1

PanoramaSt...ro.exe

windows10-2004-x64

1

Qt5CoreR.dll

windows7-x64

1

Qt5CoreR.dll

windows10-2004-x64

1

Qt5GuiR.dll

windows7-x64

1

Qt5GuiR.dll

windows10-2004-x64

1

Qt5NetworkR.dll

windows7-x64

1

Qt5NetworkR.dll

windows10-2004-x64

1

Qt5PrintSupportR.dll

windows7-x64

1

Qt5PrintSupportR.dll

windows10-2004-x64

1

Qt5SvgR.dll

windows7-x64

1

Qt5SvgR.dll

windows10-2004-x64

1

Qt5WidgetsR.dll

windows7-x64

1

Qt5WidgetsR.dll

windows10-2004-x64

1

concrt140.dll

windows7-x64

1

concrt140.dll

windows10-2004-x64

1

filters.dll

windows7-x64

1

filters.dll

windows10-2004-x64

1

msvcp140.dll

windows7-x64

1

msvcp140.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    92s
  • max time network
    139s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-11-2024 09:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    filters.dll

  • Size

    783KB

  • MD5

    125b2ec11c6a22d0b1453fc2a8fbefd8

  • SHA1

    9e53b012a2ad70b89171f82f14a253fd00339fb1

  • SHA256

    4a73f53ae9e911774cd5450a4674da1e7937818a28a595f001fd96a48f9c3d6c

  • SHA512

    99685b9cae90bd4cb72fb3a6866ba08245243bea3b564c1894b3dcc95c8fc9bfc4dc8bedfec10edfbb640e3cac1d2f2086ab0d7e708fd87b192c5654facc50e3

  • SSDEEP

    12288:sqwIZwBSvb+HE8SHs3dv/T58krdxy1mdclHs3dv/T58krz2IaGY4zzm:fTTMy8N8jF8N8O2Ik4zi

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\filters.dll,#1
    1⤵
      PID:2212

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2212-0-0x00007FFE76790000-0x00007FFE76CE3000-memory.dmp

      Filesize

      5.3MB

      Download