Overview

overview

8

Static

static

3

Asteroid +....2.zip

windows10-2004-x64

1

AsteroidPC.dll

windows10-2004-x64

8

Sources/injector.py

windows10-2004-x64

3

Sources/read me.txt

windows10-2004-x64

1

injector.exe

windows10-2004-x64

7

injector.pyc

windows10-2004-x64

3

Analysis

  • max time kernel
    43s
  • max time network
    51s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01-07-2024 17:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    AsteroidPC.dll

  • Size

    5.6MB

  • MD5

    1f700227cc21bf03fb3bd0bae157317d

  • SHA1

    e10ab7aa1f8a1ee8c3c5e58e40131e936350be04

  • SHA256

    1bddbcb21f3e7f81ef3732b3e85e4ffecaa4476ec7b34871aa177d1d6a249f71

  • SHA512

    bcfc163f812a797a8be09abe8a9ef845d0d44177c874218c84d209cd449c1360a68474df68e43e5285a1103f25c620aba22cd0bc2e10e652bcd16820024bad85

  • SSDEEP

    98304:fG+6qMDde6nlL0Sk7t/VEbFDOsClCZkyv3/Xnekba/ofFST:eLqce6nlL0Sk7tVExDQkZkyv3/XnekG1

Score
8/10

Malware Config

Signatures

  • Blocklisted process makes network request 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\AsteroidPC.dll,#1
    1⤵
    • Blocklisted process makes network request
    PID:2556

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads