Overview
overview
7Static
static
3Connectify...it.bat
windows7-x64
1Connectify...it.bat
windows10-2004-x64
1Connectify...er.exe
windows7-x64
7Connectify...er.exe
windows10-2004-x64
7Connectify...ng.dll
windows7-x64
1Connectify...ng.dll
windows10-2004-x64
1Connectify...ps.dll
windows7-x64
1Connectify...ps.dll
windows10-2004-x64
1Connectify...fy.exe
windows7-x64
3Connectify...fy.exe
windows10-2004-x64
3Connectify...ce.dll
windows7-x64
1Connectify...ce.dll
windows10-2004-x64
1Connectify...me.dll
windows7-x64
1Connectify...me.dll
windows10-2004-x64
1Connectify...ib.dll
windows7-x64
1Connectify...ib.dll
windows10-2004-x64
1Connectify...rs.dll
windows7-x64
1Connectify...rs.dll
windows10-2004-x64
1Connectify...re.dll
windows7-x64
1Connectify...re.dll
windows10-2004-x64
1Connectify...er.dll
windows7-x64
1Connectify...er.dll
windows10-2004-x64
1Connectify...er.dll
windows7-x64
1Connectify...er.dll
windows10-2004-x64
1Connectify...ib.dll
windows7-x64
1Connectify...ib.dll
windows10-2004-x64
1Connectify...Vw.dll
windows7-x64
1Connectify...Vw.dll
windows10-2004-x64
1Connectify...ip.dll
windows7-x64
1Connectify...ip.dll
windows10-2004-x64
1Connectify...ns.dll
windows7-x64
1Connectify...ns.dll
windows10-2004-x64
1Analysis
-
max time kernel
1636s -
max time network
1600s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system -
submitted
09/06/2023, 16:51
Static task
static1
Behavioral task
behavioral1
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/ConnectifyExit.bat
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral2
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/ConnectifyExit.bat
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/ConnectifyInstaller.exe
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral4
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/ConnectifyInstaller.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Branding.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral6
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Branding.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/BuildProps.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral8
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/BuildProps.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Connectify.exe
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral10
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Connectify.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/ConnectifyPluginInterface.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral12
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/ConnectifyPluginInterface.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/ConnectifyTheme.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral14
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/ConnectifyTheme.dll
Resource
win10v2004-20230221-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/DriverLib.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral16
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/DriverLib.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/ErrorNumbers.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral18
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/ErrorNumbers.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/FsprgEmbeddedStore.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral20
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/FsprgEmbeddedStore.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/HttpServer.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral22
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/HttpServer.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/IconFinder.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral24
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/IconFinder.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Interop.NetFwTypeLib.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral26
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Interop.NetFwTypeLib.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Interop.SHDocVw.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral28
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Interop.SHDocVw.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Ionic.Zip.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral30
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/Ionic.Zip.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/LibraryFunctions.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral32
Sample
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/LibraryFunctions.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
General
-
Target
Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]/crack/LibraryFunctions.dll
-
Size
57KB
-
MD5
40b6b3a055ae6c42df91942f9432e489
-
SHA1
e555c4af91451e6941a2322ebb229c87e5dc0fd4
-
SHA256
dc5ca98e6c610bdd90836ffb7aff9306d101ae1064eb82dc3a0df5f7cb856ba3
-
SHA512
8f39d9502d0d8552d4522027a00c9c6653e9879dd80a7451132fdf680b9244949aae6ff049510a7fd33628bdcdad5aa642c9f15968e9c6c831eaf06981630499
-
SSDEEP
768:P9s4cmfBQCA9E4Tsp9Xt5C/uRn+WgL7/tvsLTMpcy6wrWHQuVof258TRJSsyK:P9snDMa/Y+f7KLkn6wrm558TRJXyK
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 1176 wrote to memory of 1412 1176 rundll32.exe 83 PID 1176 wrote to memory of 1412 1176 rundll32.exe 83 PID 1176 wrote to memory of 1412 1176 rundll32.exe 83
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe "C:\Users\Admin\AppData\Local\Temp\Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]\crack\LibraryFunctions.dll",#11⤵
- Suspicious use of WriteProcessMemory
PID:1176 -
C:\Windows\SysWOW64\rundll32.exerundll32.exe "C:\Users\Admin\AppData\Local\Temp\Connectify Hotspot PRO 7.1.29279 + Crack [ThumperDC]\crack\LibraryFunctions.dll",#12⤵PID:1412
-