Overview
overview
7Static
static
7GUNA UI/Guna.UI.dll
windows7-x64
1GUNA UI/Guna.UI.dll
windows10-2004-x64
1GUNA UI/Guna.UI2.dll
windows7-x64
1GUNA UI/Guna.UI2.dll
windows10-2004-x64
1Universal ...er.vbs
windows7-x64
1Universal ...er.vbs
windows10-2004-x64
1Universal ...es.vbs
windows7-x64
1Universal ...es.vbs
windows10-2004-x64
1Universal ...er.vbs
windows7-x64
1Universal ...er.vbs
windows10-2004-x64
1Universal ...UI.dll
windows7-x64
1Universal ...UI.dll
windows10-2004-x64
1Universal ...I2.dll
windows7-x64
1Universal ...I2.dll
windows10-2004-x64
1Universal ...ct.exe
windows7-x64
7Universal ...ct.exe
windows10-2004-x64
7Universal ...rd.vbs
windows7-x64
1Universal ...rd.vbs
windows10-2004-x64
1Universal ...in.vbs
windows7-x64
1Universal ...in.vbs
windows10-2004-x64
1Universal ...in.vbs
windows7-x64
1Universal ...in.vbs
windows10-2004-x64
1Universal ...in.vbs
windows7-x64
1Universal ...in.vbs
windows10-2004-x64
1Universal ...gs.vbs
windows7-x64
1Universal ...gs.vbs
windows10-2004-x64
1Universal ...sh.vbs
windows7-x64
1Universal ...sh.vbs
windows10-2004-x64
1Universal ...sh.vbs
windows7-x64
1Universal ...sh.vbs
windows10-2004-x64
1Universal ...vb.dll
windows7-x64
1Universal ...vb.dll
windows10-2004-x64
1Analysis
-
max time kernel
187s -
max time network
221s -
platform
windows10-2004_x64 -
resource
win10v2004-20230915-en -
resource tags
arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system -
submitted
14/10/2023, 01:48
Behavioral task
behavioral1
Sample
GUNA UI/Guna.UI.dll
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
GUNA UI/Guna.UI.dll
Resource
win10v2004-20230915-en
Behavioral task
behavioral3
Sample
GUNA UI/Guna.UI2.dll
Resource
win7-20230831-en
Behavioral task
behavioral4
Sample
GUNA UI/Guna.UI2.dll
Resource
win10v2004-20230915-en
Behavioral task
behavioral5
Sample
Universal Project/My Project/Resources.Designer.vbs
Resource
win7-20230831-en
Behavioral task
behavioral6
Sample
Universal Project/My Project/Resources.Designer.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral7
Sample
Universal Project/My Project/Resources.vbs
Resource
win7-20230831-en
Behavioral task
behavioral8
Sample
Universal Project/My Project/Resources.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral9
Sample
Universal Project/My Project/Settings.Designer.vbs
Resource
win7-20230831-en
Behavioral task
behavioral10
Sample
Universal Project/My Project/Settings.Designer.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral11
Sample
Universal Project/bin/Debug/Guna.UI.dll
Resource
win7-20230831-en
Behavioral task
behavioral12
Sample
Universal Project/bin/Debug/Guna.UI.dll
Resource
win10v2004-20230915-en
Behavioral task
behavioral13
Sample
Universal Project/bin/Debug/Guna.UI2.dll
Resource
win7-20230831-en
Behavioral task
behavioral14
Sample
Universal Project/bin/Debug/Guna.UI2.dll
Resource
win10v2004-20230915-en
Behavioral task
behavioral15
Sample
Universal Project/bin/Debug/Universal Project.exe
Resource
win7-20230831-en
Behavioral task
behavioral16
Sample
Universal Project/bin/Debug/Universal Project.exe
Resource
win10v2004-20230915-en
Behavioral task
behavioral17
Sample
Universal Project/frmDashobard.vbs
Resource
win7-20230831-en
Behavioral task
behavioral18
Sample
Universal Project/frmDashobard.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral19
Sample
Universal Project/frmLogin.vbs
Resource
win7-20230831-en
Behavioral task
behavioral20
Sample
Universal Project/frmLogin.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral21
Sample
Universal Project/frmLogin.vbs
Resource
win7-20230831-en
Behavioral task
behavioral22
Sample
Universal Project/frmLogin.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral23
Sample
Universal Project/frmMain.vbs
Resource
win7-20230831-en
Behavioral task
behavioral24
Sample
Universal Project/frmMain.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral25
Sample
Universal Project/frmSettings.vbs
Resource
win7-20230831-en
Behavioral task
behavioral26
Sample
Universal Project/frmSettings.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral27
Sample
Universal Project/frmSplash.vbs
Resource
win7-20230831-en
Behavioral task
behavioral28
Sample
Universal Project/frmSplash.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral29
Sample
Universal Project/frmSplash.vbs
Resource
win7-20230831-en
Behavioral task
behavioral30
Sample
Universal Project/frmSplash.vbs
Resource
win10v2004-20230915-en
Behavioral task
behavioral31
Sample
Universal Project/obj/Debug/TempPE/My Project.Resources.Designer.vb.dll
Resource
win7-20230831-en
Behavioral task
behavioral32
Sample
Universal Project/obj/Debug/TempPE/My Project.Resources.Designer.vb.dll
Resource
win10v2004-20230915-en
General
-
Target
Universal Project/bin/Debug/Universal Project.exe
-
Size
848KB
-
MD5
1d0249175ad0d5ef7b45abda9217d985
-
SHA1
774e22b0b759f2295b928e7ddd80d72d5b3d7033
-
SHA256
c8257e7c100f75ba982e3505efc19c25c04ddbc9d0059aef36075d569d51fea4
-
SHA512
9ae8cda66af681a7829b91eea8ca79209ebb2ae385464e97f6839ea1cd636c47e7d3441b0e56346c7b2cbcab929756cfef464a41d3600f4eeb1a8aadc6574ffb
-
SSDEEP
12288:WcHqbvW+vWBXbQSCaFpxXLXHwQRv1XEW+vDYP35Wl8Cgw9EnQGW+3:96vW+vWFx3XDHJ0W+vDYBWlnXcQGW+3
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
pid Process 3848 Universal Project.exe -
Obfuscated with Agile.Net obfuscator 1 IoCs
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
resource yara_rule behavioral16/memory/3848-8-0x0000000005EC0000-0x000000000610C000-memory.dmp agile_net -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 3848 Universal Project.exe 3848 Universal Project.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
136KB
MD59af5eb006bb0bab7f226272d82c896c7
SHA1c2a5bb42a5f08f4dc821be374b700652262308f0
SHA25677dc05a6bda90757f66552ee3f469b09f1e00732b4edca0f542872fb591ed9db
SHA5127badd41be4c1039302fda9bba19d374ec9446ce24b7db33b66bee4ef38180d1abcd666d2aea468e7e452aa1e1565eedfefed582bf1c2fe477a4171d99d48772a
-
Filesize
136KB
MD59af5eb006bb0bab7f226272d82c896c7
SHA1c2a5bb42a5f08f4dc821be374b700652262308f0
SHA25677dc05a6bda90757f66552ee3f469b09f1e00732b4edca0f542872fb591ed9db
SHA5127badd41be4c1039302fda9bba19d374ec9446ce24b7db33b66bee4ef38180d1abcd666d2aea468e7e452aa1e1565eedfefed582bf1c2fe477a4171d99d48772a