Overview

overview

10

Static

static

10

Bawless Wi...es.dll

windows10-2004-x64

3

Bawless Wi...Ip.dll

windows7-x64

1

Bawless Wi...Ip.dll

windows10-2004-x64

1

Bawless Wi...vc.dll

windows10-2004-x64

3

Bawless Wi...c6.dll

windows10-2004-x64

3

Bawless Wi...er.dll

windows7-x64

3

Bawless Wi...er.dll

windows10-2004-x64

3

Bawless Wi...ib.dll

windows7-x64

1

Bawless Wi...ib.dll

windows10-2004-x64

1

Bawless Wi...pi.dll

windows10-2004-x64

3

Bawless Wi...nt.dll

windows10-2004-x64

3

Bawless Wi...rc.dll

windows7-x64

1

Bawless Wi...rc.dll

windows10-2004-x64

1

Bawless Wi...ct.dll

windows10-2004-x64

3

Bawless Wi...pt.dll

windows10-2004-x64

3

Bawless Wi...lp.dll

windows10-2004-x64

3

Bawless Wi...rd.dll

windows7-x64

1

Bawless Wi...rd.dll

windows10-2004-x64

1

Bawless Wi...es.dll

windows10-2004-x64

1

Bawless Wi...es.dll

windows10-2004-x64

1

Bawless Wi...n1.dll

windows10-2004-x64

3

Bawless Wi...lp.dll

windows10-2004-x64

3

Bawless Wi...32.dll

windows10-2004-x64

3

Bawless Wi...00.exe

windows7-x64

1

Bawless Wi...00.exe

windows10-2004-x64

1

Bawless Wi...28.dll

windows7-x64

3

Bawless Wi...28.dll

windows10-2004-x64

1

Bawless Wi...00.dll

windows10-2004-x64

1

Bawless Wi...00.exe

windows7-x64

1

Bawless Wi...00.exe

windows10-2004-x64

1

Bawless Wi...55.exe

windows7-x64

1

Bawless Wi...55.exe

windows10-2004-x64

3

Resubmissions

07-12-2024 03:02

241207-djr38sylbk 10

Analysis

  • max time kernel
    145s
  • max time network
    159s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07-12-2024 03:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bawless Windows Cracked By Vidhayakji786/Logs/WinTypes.dll

  • Size

    867KB

  • MD5

    ed9e0808858db01c14325b6c0f1188f5

  • SHA1

    4412bc08811417f260beb8d899d3a3a9ad85eefd

  • SHA256

    a3e691c68a18f376cf57e7e559b95a186f59cbd84807e5e36ff62ad1fb9813d1

  • SHA512

    3a9de78cbc6c47a6ee796eb27a47cb9b24033fe8e993cb1a906726693068a4cf19ed6dfd842a3e05b4fbfe050867c5afc80f31144f93c8a7edf05d2cec830b00

  • SSDEEP

    12288:ceX6jM/WbpVqOF41cG+2vFaZZsQspkZ5P7juLxq:HXlWbzE1f+OFaZZPspk/juL

Score
3/10
discovery

Malware Config

Signatures

  • Program crash 1 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Bawless Windows Cracked By Vidhayakji786\Logs\WinTypes.dll",#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2616
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Bawless Windows Cracked By Vidhayakji786\Logs\WinTypes.dll",#1
      2⤵
      • System Location Discovery: System Language Discovery
      PID:4060
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4060 -s 564
        3⤵
        • Program crash
        PID:2248
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 4060 -ip 4060
    1⤵
      PID:2044

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads