Overview

overview

3

Static

static

元神电�...to.dll

windows7-x64

1

元神电�...to.dll

windows10-2004-x64

1

元神电�...ib.dll

windows7-x64

1

元神电�...ib.dll

windows10-2004-x64

1

元神电�...vm.dll

windows7-x64

1

元神电�...vm.dll

windows10-2004-x64

1

元神电�...er.exe

windows7-x64

3

元神电�...er.exe

windows10-2004-x64

3

元神电�...ib.dll

windows7-x64

3

元神电�...ib.dll

windows10-2004-x64

3

元神电�...on.dll

windows7-x64

1

元神电�...on.dll

windows10-2004-x64

1

元神电�...UI.dll

windows7-x64

1

元神电�...UI.dll

windows10-2004-x64

1

元神电�...PF.dll

windows7-x64

1

元神电�...PF.dll

windows10-2004-x64

1

元神电�...QQ.xml

windows7-x64

1

元神电�...QQ.xml

windows10-2004-x64

1

元神电�...rd.xml

windows7-x64

1

元神电�...rd.xml

windows10-2004-x64

1

元神电�...ub.xml

windows7-x64

1

元神电�...ub.xml

windows10-2004-x64

1

元神电�...pf.dll

windows7-x64

1

元神电�...pf.dll

windows10-2004-x64

1

元神电�...re.dll

windows7-x64

1

元神电�...re.dll

windows10-2004-x64

1

元神电�...ss.dll

windows7-x64

1

元神电�...ss.dll

windows10-2004-x64

1

元神电�...om.dll

windows7-x64

1

元神电�...om.dll

windows10-2004-x64

1

元神电�...el.dll

windows7-x64

1

元神电�...el.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    57s
  • max time network
    111s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-10-2022 23:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    元神电脑教程/原神电脑启动器3.1版本/Launcher.exe

  • Size

    79KB

  • MD5

    1bf4b2c451a1a8cd1c50edb25ccccd78

  • SHA1

    5df0823b1d0343da953681c5672a1bc444313cc0

  • SHA256

    a31b9be59882e0acf984b47924db07ab39f3e2b4a25c6eda7238299f7ce403de

  • SHA512

    0ae96264d680db55e47da02604987fd26b6c08b0caa1974461438203bef71465a1f94f6da707138d7e4574b6a664eac8da252c6192b6e073991a71c76104e778

  • SSDEEP

    1536:4YknC8ThFtj7CujDbGpXa7sRcVcBzL6zLvzLizLhe:V+vtXCBKSzL6zLvzLizLhe

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\元神电脑教程\原神电脑启动器3.1版本\Launcher.exe
    "C:\Users\Admin\AppData\Local\Temp\元神电脑教程\原神电脑启动器3.1版本\Launcher.exe"
    1⤵
      PID:3812
      • C:\Windows\system32\WerFault.exe
        C:\Windows\system32\WerFault.exe -u -p 3812 -s 728
        2⤵
        • Program crash
        PID:2816
    • C:\Windows\system32\WerFault.exe
      C:\Windows\system32\WerFault.exe -pss -s 408 -p 3812 -ip 3812
      1⤵
        PID:1624

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3812-132-0x000001D397620000-0x000001D39763A000-memory.dmp

        Filesize

        104KB

        Download

      • memory/3812-133-0x00007FFBFE490000-0x00007FFBFEF51000-memory.dmp

        Filesize

        10.8MB

        Download