Overview

overview

10

Static

static

10

Remote Adm...p1.exe

windows10-2004-x64

1

Remote Adm...db.dll

windows10-2004-x64

1

Remote Adm...ks.dll

windows10-2004-x64

1

Remote Adm...T).exe

windows10-2004-x64

10

Remote Adm...ub.exe

windows10-2004-x64

10

Remote Adm...db.dll

windows10-2004-x64

1

Remote Adm...ks.dll

windows10-2004-x64

1

Remote Adm...ix.exe

windows10-2004-x64

10

Remote Adm...x1.exe

windows10-2004-x64

7

Remote Adm...ub.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    103s
  • max time network
    130s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250314-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08/04/2025, 18:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Remote Administration Tool (RAT)/x64/Mono.Cecil.Rocks.dll

  • Size

    27KB

  • MD5

    6e7f0f4fff6c49e3f66127c23b7f1a53

  • SHA1

    14a529f8c7ee9f002d1e93dcf8ff158ab74c7e1a

  • SHA256

    2e2623319bdc362974a78ea4a43f4893011ec257884d24267f4594142fcd436e

  • SHA512

    0c773da6717dd6919cd6241d3cee26ab00bb61ea2dbeff24844a067af4c87ff5cbdb2fe3ada5db4707cee921b3fb353bd12ee22b8490597d4f67ad39bace235e

  • SSDEEP

    384:70ve8JOuJ5iC7n2NwxEXCni+VXcMeDz8PmR1ugLoaeuLMBG9UphJAprjE3uFLHa9:7+m4iCyrXOhG8uRssveum1pMFLHFBvd

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Remote Administration Tool (RAT)\x64\Mono.Cecil.Rocks.dll",#1
    1⤵
      PID:6072

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads