Analysis
-
max time kernel
142s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system -
submitted
26-08-2023 15:32
Static task
static1
Behavioral task
behavioral1
Sample
README.txt
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral2
Sample
README.txt
Resource
win10v2004-20230703-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
Synapse Launcher.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral4
Sample
Synapse Launcher.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
General
-
Target
Synapse Launcher.exe
-
Size
788KB
-
MD5
20e1eb6b9b733bbd26ac8be5be603de2
-
SHA1
36beefc2467d94b5ec9ae843b2bb099898581bed
-
SHA256
73af760ad2ffdd931210079ef4b719a1a8c41a864e7d0a39faa5c1783fb140d6
-
SHA512
d486fc560f0f6d94428b58ae041a17053659e78c49fe9154ca9e642d692da43aeb7dd3f03b1aeb428ea398bdbdfab743960c2f0fa885cd97bc31655be2e42e0b
-
SSDEEP
12288:GoK0iEH0u6YNNCObkXxHDc/n3jUOSpUMh:nipzXonoOSpUMh
Malware Config
Signatures
-
Downloads MZ/PE file
-
Executes dropped EXE 5 IoCs
Processes:
qrzo29nnWp8PydouP.binYvG5eA7EvDbvNRB4iIK.exeCefSharp.BrowserSubprocess.exeCefSharp.BrowserSubprocess.exeCefSharp.BrowserSubprocess.exepid Process 4252 qrzo29nnWp8PydouP.bin 1188 YvG5eA7EvDbvNRB4iIK.exe 2252 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe -
Loads dropped DLL 32 IoCs
Processes:
YvG5eA7EvDbvNRB4iIK.exeCefSharp.BrowserSubprocess.exeCefSharp.BrowserSubprocess.exeCefSharp.BrowserSubprocess.exepid Process 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe -
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target Process procid_target 3916 1188 WerFault.exe 88 -
Suspicious behavior: EnumeratesProcesses 16 IoCs
Processes:
Synapse Launcher.exeqrzo29nnWp8PydouP.binYvG5eA7EvDbvNRB4iIK.exeCefSharp.BrowserSubprocess.exeCefSharp.BrowserSubprocess.exeCefSharp.BrowserSubprocess.exepid Process 4984 Synapse Launcher.exe 4252 qrzo29nnWp8PydouP.bin 1188 YvG5eA7EvDbvNRB4iIK.exe 1188 YvG5eA7EvDbvNRB4iIK.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 2252 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 1700 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe 2596 CefSharp.BrowserSubprocess.exe -
Suspicious behavior: LoadsDriver 6 IoCs
Processes:
pid Process 4