Analysis

  • max time kernel
    146s
  • max time network
    156s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    02-12-2024 22:03

General

  • Target

    BoostBotSell/pytransform/_pytransform.dll

  • Size

    1.1MB

  • MD5

    88e3acb88b6ee62979d833cffe03bc58

  • SHA1

    090300946506a5a4acb44a9d202eaec58b4de271

  • SHA256

    3ffb5a714a87f3f790621a8e94b71e614c24a60097d592d8211c2682caa1d1ed

  • SHA512

    748d4c173678305c79c7c471428cf27ac38408bbb5791e3e33760a533ebb9dbc85d75b6ca3a71a28653621239302c883eef7157cb9f7a05e347bc598a22757d3

  • SSDEEP

    24576:0IGAamncZzdcZ7fUoPPEMz/0n71enodvQa90:EAamncge7zvP9

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\BoostBotSell\pytransform\_pytransform.dll,#1
    1⤵
      PID:4496

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4496-0-0x0000000070A00000-0x0000000070B2F000-memory.dmp

      Filesize

      1.2MB