Overview
overview
10Static
static
1Slither x3...er.exe
windows7-x64
7Slither x3...er.exe
windows10-2004-x64
7Slither x3...47.dll
windows7-x64
3Slither x3...47.dll
windows10-2004-x64
3Slither x3...up.exe
windows7-x64
7Slither x3...up.exe
windows10-2004-x64
7Slither x3...eg.dll
windows7-x64
3Slither x3...eg.dll
windows10-2004-x64
3Slither x3...GL.dll
windows7-x64
1Slither x3...GL.dll
windows10-2004-x64
1Slither x3...v2.dll
windows7-x64
1Slither x3...v2.dll
windows10-2004-x64
1Slither x3...lob.js
windows7-x64
1Slither x3...lob.js
windows10-2004-x64
1Slither x3...de.dll
windows7-x64
1Slither x3...de.dll
windows10-2004-x64
10Slither x3...nw.dll
windows7-x64
3Slither x3...nw.dll
windows10-2004-x64
3Slither x3...nw.exe
windows7-x64
7Slither x3...nw.exe
windows10-2004-x64
7Slither x3...ent.js
windows7-x64
1Slither x3...ent.js
windows10-2004-x64
1Slither x3...ent.js
windows7-x64
1Slither x3...ent.js
windows10-2004-x64
1Slither x3...lf.dll
windows7-x64
1Slither x3...lf.dll
windows10-2004-x64
3Slither x3...ces.js
windows7-x64
1Slither x3...ces.js
windows10-2004-x64
1Analysis
-
max time kernel
39s -
max time network
45s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
03-02-2023 19:44
Static task
static1
Behavioral task
behavioral1
Sample
Slither x32y 64/Slither.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
Slither x32y 64/Slither.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
Slither x32y 64/d3dcompiler_47.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral4
Sample
Slither x32y 64/d3dcompiler_47.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
Slither x32y 64/dxwebsetup.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral6
Sample
Slither x32y 64/dxwebsetup.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
Slither x32y 64/ffmpeg.dll
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral8
Sample
Slither x32y 64/ffmpeg.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
Slither x32y 64/libEGL.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral10
Sample
Slither x32y 64/libEGL.dll
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
Slither x32y 64/libGLESv2.dll
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral12
Sample
Slither x32y 64/libGLESv2.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
Slither x32y 64/natives_blob.js
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral14
Sample
Slither x32y 64/natives_blob.js
Resource
win10v2004-20220901-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
Slither x32y 64/node.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral16
Sample
Slither x32y 64/node.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
Slither x32y 64/nw.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral18
Sample
Slither x32y 64/nw.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
Slither x32y 64/nw.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral20
Sample
Slither x32y 64/nw.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
Slither x32y 64/nw_100_percent.js
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral22
Sample
Slither x32y 64/nw_100_percent.js
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
Slither x32y 64/nw_200_percent.js
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral24
Sample
Slither x32y 64/nw_200_percent.js
Resource
win10v2004-20220812-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
Slither x32y 64/nw_elf.dll
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral26
Sample
Slither x32y 64/nw_elf.dll
Resource
win10v2004-20221111-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
Slither x32y 64/resources.js
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral28
Sample
Slither x32y 64/resources.js
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
Slither x32y 64/node.dll
-
Size
3.0MB
-
MD5
d3a05d58135ff127809aef74ba5f450d
-
SHA1
af13b12297df1f677113fa4dc5484bcc03cd544c
-
SHA256
667ca7ba7937159e384902d0beb91e6de0c6d422cd5bf30c0a376af8c31c804b
-
SHA512
10536abd9aaacb3189e7288782d25f28b49d5ae8a42a5795780fef3c50bba6e093647a18def0eefdb8f7527f0c97dd80392b9d4b2865db652761e8eeba96fcb8
-
SSDEEP
49152:TQ5eHjb4RG33EVvcT/ETwF49sKneit6QsxsKBGgyqUyLbMDd4qaP1TXtcZ:TfnEUF49sKnea6S
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 744 wrote to memory of 1644 744 rundll32.exe 28 PID 744 wrote to memory of 1644 744 rundll32.exe 28 PID 744 wrote to memory of 1644 744 rundll32.exe 28 PID 744 wrote to memory of 1644 744 rundll32.exe 28 PID 744 wrote to memory of 1644 744 rundll32.exe 28 PID 744 wrote to memory of 1644 744 rundll32.exe 28 PID 744 wrote to memory of 1644 744 rundll32.exe 28