Analysis
-
max time kernel
43s -
max time network
51s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
01-07-2024 17:19
Behavioral task
behavioral1
Sample
Asteroid + Injector 24.5.2.zip
Resource
win10v2004-20240611-en
Behavioral task
behavioral2
Sample
AsteroidPC.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
Sources/injector.py
Resource
win10v2004-20240508-en
Behavioral task
behavioral4
Sample
Sources/read me.txt
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
injector.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral6
Sample
injector.pyc
Resource
win10v2004-20240611-en
General
-
Target
AsteroidPC.dll
-
Size
5.6MB
-
MD5
1f700227cc21bf03fb3bd0bae157317d
-
SHA1
e10ab7aa1f8a1ee8c3c5e58e40131e936350be04
-
SHA256
1bddbcb21f3e7f81ef3732b3e85e4ffecaa4476ec7b34871aa177d1d6a249f71
-
SHA512
bcfc163f812a797a8be09abe8a9ef845d0d44177c874218c84d209cd449c1360a68474df68e43e5285a1103f25c620aba22cd0bc2e10e652bcd16820024bad85
-
SSDEEP
98304:fG+6qMDde6nlL0Sk7t/VEbFDOsClCZkyv3/Xnekba/ofFST:eLqce6nlL0Sk7tVExDQkZkyv3/XnekG1
Malware Config
Signatures
-
Blocklisted process makes network request 1 IoCs
Processes:
rundll32.exeflow pid process 4 2556 rundll32.exe