Overview

overview

8

Static

static

EasyAntiCh...up.exe

windows10-1703-x64

1

GameAssembly.dll

windows10-1703-x64

3

Modules/BE4v.dll

windows10-1703-x64

1

UnityCrash...64.exe

windows10-1703-x64

1

UnityPlayer.dll

windows10-1703-x64

1

VRCLoader.dll

windows10-1703-x64

1

VRChat.exe

windows10-1703-x64

1

VRChat_Dat...eo.dll

windows10-1703-x64

3

VRChat_Dat...RT.dll

windows10-1703-x64

VRChat_Dat...60.dll

windows10-1703-x64

VRChat_Dat...er.dll

windows10-1703-x64

VRChat_Dat...er.dll

windows10-1703-x64

3

VRChat_Dat...ng.dll

windows10-1703-x64

3

VRChat_Dat...in.dll

windows10-1703-x64

1

VRChat_Dat...ss.dll

windows10-1703-x64

1

VRChat_Dat...tor.js

windows10-1703-x64

1

VRChat_Dat...ne.xml

windows10-1703-x64

1

VRChat_Dat...gs.xml

windows10-1703-x64

1

VRChat_Dat...eb.xml

windows10-1703-x64

VRChat_Dat...tor.js

windows10-1703-x64

1

VRChat_Dat...ne.xml

windows10-1703-x64

1

VRChat_Dat...gs.xml

windows10-1703-x64

1

VRChat_Dat...eb.xml

windows10-1703-x64

1

VRChat_Dat...tor.js

windows10-1703-x64

1

VRChat_Dat...ne.xml

windows10-1703-x64

1

VRChat_Dat...gs.xml

windows10-1703-x64

1

VRChat_Dat...eb.xml

windows10-1703-x64

install.exe

windows10-1703-x64

1

launch.exe

windows10-1703-x64

start_prot...me.exe

windows10-1703-x64

1

shrek/bin/...1).dll

windows10-1703-x64

1

shrek/bin/...or.exe

windows10-1703-x64

8

Analysis

  • max time kernel
    35s
  • max time network
    186s
  • platform
    windows10-1703_x64
  • resource
    win10-20220812-en
  • resource tags

    arch:x64arch:x86image:win10-20220812-enlocale:en-usos:windows10-1703-x64system
  • submitted
    24-11-2022 23:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VRChat_Data/Plugins/x86_64/NativeProcess.dll

  • Size

    11KB

  • MD5

    511b16b450f0621d1755dcd6f32a2ad4

  • SHA1

    a6c34ae22d6fef9359df053d4a8ca208a72c20c3

  • SHA256

    9dd8638cdec61217f1c636cdd556d79453aaf36a52fdf64885553be7a4634774

  • SHA512

    afe3d0101c47c7cadd1a8f57ff165c755ddc563260f40523ff3e83dd7d6e559d8a8fe291a666c0cd98bc950eb2a2798ba8d83c398981b2f36d0023b176e8e4cf

  • SSDEEP

    96:P1dx6GQ/yYWEwuEnCl+g5zPOkRppW01g1ej7J5fX+iWWbAKwzh7Wj7XABJGAiU/i:xE3WmNKYp0qXobzhKy0AiU/

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\VRChat_Data\Plugins\x86_64\NativeProcess.dll,#1
    1⤵
      PID:2672

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads