Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6401 | June 24, 2024, 11:01 a.m. | June 24, 2024, 11:04 a.m. |
-
rundll32.exe "C:\Windows\System32\rundll32.exe" C:\Users\test22\AppData\Local\Temp\a.dll,
2672
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
resource name | WAVE |
name | WAVE | language | LANG_CHINESE | filetype | RIFF (little-endian) data, WAVE audio, Microsoft ADPCM, mono 22050 Hz | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x00071270 | size | 0x00002404 | ||||||||||||||||||
name | RT_DIALOG | language | LANG_CHINESE | filetype | data | sublanguage | SUBLANG_CHINESE_SIMPLIFIED | offset | 0x000711d0 | size | 0x0000009a |
Lionic | Trojan.Win32.Generic.4!c |
Cynet | Malicious (score: 85) |
Sangfor | Malware |
F-Secure | Trojan.TR/Spy.Gen |
Ikarus | Trojan.Spy |
Avira | TR/Spy.Gen |
BitDefenderTheta | Gen:NN.ZedlaF.34282.Dy5@aKVkFhjb |