cfe6b53554aaf19a2adf3a64ac5133705d6529396de72a80f88a9446ed5ccc6f

Submit
Reports

Overview

overview

Static

static

Agenzia_En...da.exe

windows7-x64

Agenzia_En...da.exe

windows10-2004-x64

Agenzia_En...ov.dll

windows7-x64

Agenzia_En...ov.dll

windows10-2004-x64

Agenzia_En...er.dll

windows7-x64

Agenzia_En...er.dll

windows10-2004-x64

Agenzia_En...bs.dll

windows7-x64

Agenzia_En...bs.dll

windows10-2004-x64

Agenzia_En...om.dll

windows7-x64

Agenzia_En...om.dll

windows10-2004-x64

Agenzia_En...in.dll

windows7-x64

Agenzia_En...in.dll

windows10-2004-x64

Agenzia_En...32.dll

windows7-x64

Agenzia_En...32.dll

windows10-2004-x64

Agenzia_En...xe.dll

windows7-x64

Agenzia_En...xe.dll

windows10-2004-x64

Agenzia_En...16.dll

windows7-x64

Agenzia_En...16.dll

windows10-2004-x64

Agenzia_En...bs.dll

windows7-x64

Agenzia_En...bs.dll

windows10-2004-x64

Agenzia_En...om.dll

windows7-x64

Agenzia_En...om.dll

windows10-2004-x64

Analysis

max time kernel
95s
max time network
160s
platform
windows10-2004_x64
resource
win10v2004-20230221-en
resource tags

arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
submitted
02-03-2023 12:42

Sharing

Copy URL

Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

Agenzia_Entrate/Informazione_Azienda.exe

Resource

win7-20230220-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

Agenzia_Entrate/Informazione_Azienda.exe

Resource

win10v2004-20230220-en

gozi 7709 banker isfb persistence trojan

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral3

Sample

Agenzia_Entrate/report/drivers/DMWmiBridgeProv.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Agenzia_Entrate/report/drivers/DMWmiBridgeProv.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Agenzia_Entrate/report/drivers/XblAuthManager.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Agenzia_Entrate/report/drivers/XblAuthManager.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Agenzia_Entrate/report/drivers/mfcsubs.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Agenzia_Entrate/report/drivers/mfcsubs.dll

Resource

win10v2004-20230221-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

Agenzia_Entrate/report/drivers/wxmsw30u_core_gcc_custom.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Agenzia_Entrate/report/drivers/wxmsw30u_core_gcc_custom.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Agenzia_Entrate/report/tran/app/drivers/AppManMigrationPlugin.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Agenzia_Entrate/report/tran/app/drivers/AppManMigrationPlugin.dll

Resource

win10v2004-20230220-en

persistence

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

Agenzia_Entrate/report/tran/app/drivers/cimwin32.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Agenzia_Entrate/report/tran/app/drivers/cimwin32.dll

Resource

win10v2004-20230220-en

persistence

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

Agenzia_Entrate/report/tran/app/en/audit.exe.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Agenzia_Entrate/report/tran/app/en/audit.exe.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Agenzia_Entrate/report/tran/app/en/libpng16-16.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Agenzia_Entrate/report/tran/app/en/libpng16-16.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Agenzia_Entrate/report/tran/app/short/Xaml.Controls.Tabs.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Agenzia_Entrate/report/tran/app/short/Xaml.Controls.Tabs.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Agenzia_Entrate/report/tran/app/short/wxmsw30u_core_gcc_custom.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Agenzia_Entrate/report/tran/app/short/wxmsw30u_core_gcc_custom.dll

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Agenzia_Entrate/report/tran/app/short/wxmsw30u_core_gcc_custom.dll
Size

3.9MB
MD5

96dc90661d7cce32c07ac48b5cad827a
SHA1

85c524c1f50918c031d4c89062585e631326b03e
SHA256

0e2b3d07a2a1566ebc88c62f5686b7442ab080748aaf3724a79905cec7ce2710
SHA512

4ae1657afd2de15fdc9c89746f6e65e1d8a3a2b1d5e5e85147a87fea5af65172960a28d5c6b6e11c48d9bdf630f9425681a8bef1acd494ee72b82b34bd89dcc1
SSDEEP

49152:HhKUOpZBGzuCxBjtPIUv2Ab3mktJGH7C7GH+a5O+lhDhV15JJrTfl+ii4efIYz2O:HOElxPbvN1wHVI

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Agenzia_Entrate\report\tran\app\short\wxmsw30u_core_gcc_custom.dll,#1
1⤵
PID:4456

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads