Overview

overview

8

Static

static

7

Oneshot/Da...78.ps1

windows10-1703-x64

3

Oneshot/LAUNCHER.exe

windows10-1703-x64

6

Oneshot/OpenAL32.dll

windows10-1703-x64

1

Oneshot/SDL2.dll

windows10-1703-x64

1

Oneshot/SD...ge.dll

windows10-1703-x64

1

Oneshot/SDL2_ttf.dll

windows10-1703-x64

1

Oneshot/Sm...mu.dll

windows10-1703-x64

1

Oneshot/Sm...64.dll

windows10-1703-x64

1

Oneshot/_R...up.exe

windows10-1703-x64

7

Oneshot/_R...up.exe

windows10-1703-x64

7

Oneshot/_R...st.exe

windows10-1703-x64

6

Oneshot/_R...86.exe

windows10-1703-x64

7

Oneshot/_R...st.msi

windows10-1703-x64

8

Oneshot/_______.exe

windows10-1703-x64

7

Oneshot/li...mt.dll

windows10-1703-x64

3

Oneshot/libbz2.dll

windows10-1703-x64

3

Oneshot/li...-6.dll

windows10-1703-x64

3

Oneshot/li...-1.dll

windows10-1703-x64

3

Oneshot/li...-0.dll

windows10-1703-x64

3

Oneshot/libgmp-10.dll

windows10-1703-x64

3

Oneshot/li...-0.dll

windows10-1703-x64

1

Oneshot/li...-2.dll

windows10-1703-x64

3

Oneshot/libintl-8.dll

windows10-1703-x64

3

Oneshot/libjpeg-9.dll

windows10-1703-x64

3

Oneshot/liblzma-5.dll

windows10-1703-x64

3

Oneshot/libogg-0.dll

windows10-1703-x64

3

Oneshot/libpcre-1.dll

windows10-1703-x64

3

Oneshot/libphysfs.dll

windows10-1703-x64

3

Oneshot/li...-0.dll

windows10-1703-x64

1

Oneshot/li...16.dll

windows10-1703-x64

1

Oneshot/li...-0.dll

windows10-1703-x64

3

Oneshot/li...-6.dll

windows10-1703-x64

3

Analysis

  • max time kernel
    127s
  • max time network
    319s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-es
  • resource tags

    arch:x64arch:x86image:win10-20230220-eslocale:es-esos:windows10-1703-x64systemwindows
  • submitted
    02-04-2023 17:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Oneshot/SmartSteamEmu64.dll

  • Size

    6.1MB

  • MD5

    5dc6236319a29bd23ac65f6bf958f60c

  • SHA1

    c7768f878d21b647ef9e3d30ac28cd4cfa0071d3

  • SHA256

    31814363fd8fb818bf7a7626723171891c5ae6fd4c0518ea9583efc4d6cecaf0

  • SHA512

    c3326a4ba62647579be395cdcca5ac2e6ae03d58327ac06893681af5f007c2f40eb8d13a666baef0577cab6fddd5fec570fd7de8dfaf95214ec494885971964f

  • SSDEEP

    49152:avUiYowIrXeoFNDElZtQWsbwafzprwHiny0uKoKBjizdpaPDiwvMrgRMbc3+85u9:aTA6wMaL0+KdiU1RM7SsOsv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 16 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\Oneshot\SmartSteamEmu64.dll,#1
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:4404

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4404-117-0x00007FF8095F0000-0x00007FF809600000-memory.dmp
    Filesize

    64KB

    Download
  • memory/4404-116-0x00007FF8065A0000-0x00007FF8065B0000-memory.dmp
    Filesize

    64KB

    Download