9cc57f02c45fb5c38a09aa715deba0c739d47ddc04d8a498270430936342d5c9 | Triage

Submit
Reports

Overview

overview

Static

static

1

dHogwarts ...on.dll

windows7-x64

1

dHogwarts ...on.dll

windows10-2004-x64

1

dHogwarts ...er.dll

windows7-x64

1

dHogwarts ...er.dll

windows10-2004-x64

1

dHogwarts ...er.dll

windows7-x64

1

dHogwarts ...er.dll

windows10-2004-x64

1

dHogwarts ...ce.dll

windows7-x64

1

dHogwarts ...ce.dll

windows10-2004-x64

1

dHogwarts ...in.xml

windows7-x64

1

dHogwarts ...in.xml

windows10-2004-x64

1

dHogwarts ...ls.xml

windows7-x64

1

dHogwarts ...ls.xml

windows10-2004-x64

1

dHogwarts ...up.exe

windows7-x64

dHogwarts ...up.exe

windows10-2004-x64

Analysis

max time kernel
150s
max time network
162s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
22-03-2023 04:37

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

dHogwarts Legacy/Data/Debug/Addition.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

dHogwarts Legacy/Data/Debug/Addition.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

dHogwarts Legacy/Data/Debug/Cracker.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

dHogwarts Legacy/Data/Debug/Cracker.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

dHogwarts Legacy/Data/Debug/Helper.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

dHogwarts Legacy/Data/Debug/Helper.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

dHogwarts Legacy/Data/Debug/Resource.dll

Resource

win7-20230220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

dHogwarts Legacy/Data/Debug/Resource.dll

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

dHogwarts Legacy/Data/Packaged/Main.xml

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral10

Sample

dHogwarts Legacy/Data/Packaged/Main.xml

Resource

win10v2004-20230220-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral11

Sample

dHogwarts Legacy/Data/Packaged/Utils.xml

Resource

win7-20230220-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral12

Sample

dHogwarts Legacy/Data/Packaged/Utils.xml

Resource

win10v2004-20230220-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral13

Sample

dHogwarts Legacy/setup.exe

Resource

win7-20230220-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

dHogwarts Legacy/setup.exe

Resource

win10v2004-20230220-en

vidar spyware stealer upx

windows10-2004-x64

14 signatures

150 seconds

Report Analysis Logs

General

Target

dHogwarts Legacy/Data/Debug/Addition.dll
Size

30KB
MD5

f22e849a370cdf127f48beab596bdd81
SHA1

fb1da47c7a246f2cda7f7686a468efafd9933b1e
SHA256

8be1f5581437b6f5ba48705e8956c8bc0765bbd1d6053242640c75bd94048aa9
SHA512

6ded81fe4d4db69586d74fdb425c4fc8c092508e7e0b49eb141a9045abf40626d14659fa6237a3920e58571ca7acf4911cdf03c4307fd89b6dc5e54172afbc14
SSDEEP

768:Fol18SuOO3bBAughXjNPQsXVjWuu7jqWdTS2gS:er6tAugVjN4sXJYjqWdm2V

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\dHogwarts Legacy\Data\Debug\Addition.dll",#1
1⤵
PID:3844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy