b3c5de193a97a0d29110a90341f0c42741cf44b29f7fad18839c784a5b3984c8 | Triage

Submit
Reports

Overview

overview

3

Static

static

3

ConfigKelmis.exe

windows7-x64

1

ConfigKelmis.exe

windows10-2004-x64

1

Kelmis.exe

windows7-x64

1

Kelmis.exe

windows10-2004-x64

1

Kelmis_Dat...rp.dll

windows7-x64

1

Kelmis_Dat...rp.dll

windows10-2004-x64

1

Kelmis_Dat...ib.dll

windows7-x64

1

Kelmis_Dat...ib.dll

windows10-2004-x64

1

Kelmis_Dat...ix.dll

windows7-x64

1

Kelmis_Dat...ix.dll

windows10-2004-x64

1

Kelmis_Dat...ty.dll

windows7-x64

1

Kelmis_Dat...ty.dll

windows10-2004-x64

1

Kelmis_Dat...on.dll

windows7-x64

1

Kelmis_Dat...on.dll

windows10-2004-x64

1

Kelmis_Dat...re.dll

windows7-x64

1

Kelmis_Dat...re.dll

windows10-2004-x64

1

Kelmis_Dat...ng.dll

windows7-x64

1

Kelmis_Dat...ng.dll

windows10-2004-x64

1

Kelmis_Dat...ty.dll

windows7-x64

1

Kelmis_Dat...ty.dll

windows10-2004-x64

1

Kelmis_Dat...ml.dll

windows7-x64

1

Kelmis_Dat...ml.dll

windows10-2004-x64

1

Kelmis_Dat...em.dll

windows7-x64

1

Kelmis_Dat...em.dll

windows10-2004-x64

1

Kelmis_Dat...ro.dll

windows7-x64

1

Kelmis_Dat...ro.dll

windows10-2004-x64

1

Kelmis_Dat...ne.dll

windows7-x64

1

Kelmis_Dat...ne.dll

windows10-2004-x64

1

Kelmis_Dat...le.dll

windows7-x64

1

Kelmis_Dat...le.dll

windows10-2004-x64

1

Kelmis_Dat...le.dll

windows7-x64

1

Kelmis_Dat...le.dll

windows10-2004-x64

1

Analysis

max time kernel
143s
max time network
235s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
07-11-2023 14:00

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ConfigKelmis.exe

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ConfigKelmis.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Kelmis.exe

Resource

win7-20231020-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

Kelmis.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

Kelmis_Data/Managed/Assembly-CSharp.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Kelmis_Data/Managed/Assembly-CSharp.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Kelmis_Data/Managed/ICSharpCode.SharpZipLib.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Kelmis_Data/Managed/ICSharpCode.SharpZipLib.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Kelmis_Data/Managed/Mono.Posix.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Kelmis_Data/Managed/Mono.Posix.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Kelmis_Data/Managed/Mono.Security.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Kelmis_Data/Managed/Mono.Security.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Kelmis_Data/Managed/System.Configuration.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Kelmis_Data/Managed/System.Configuration.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Kelmis_Data/Managed/System.Core.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Kelmis_Data/Managed/System.Core.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Kelmis_Data/Managed/System.Drawing.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Kelmis_Data/Managed/System.Drawing.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Kelmis_Data/Managed/System.Security.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Kelmis_Data/Managed/System.Security.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Kelmis_Data/Managed/System.Xml.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Kelmis_Data/Managed/System.Xml.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Kelmis_Data/Managed/System.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Kelmis_Data/Managed/System.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Kelmis_Data/Managed/Unity.TextMeshPro.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Kelmis_Data/Managed/Unity.TextMeshPro.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Kelmis_Data/Managed/Unity.Timeline.dll

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Kelmis_Data/Managed/Unity.Timeline.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Kelmis_Data/Managed/UnityEngine.AIModule.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Kelmis_Data/Managed/UnityEngine.AIModule.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Kelmis_Data/Managed/UnityEngine.ARModule.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Kelmis_Data/Managed/UnityEngine.ARModule.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Kelmis_Data/Managed/System.Security.dll
Size

180KB
MD5

915fb88087c6ce36daa02bca9daff3dc
SHA1

ce5bb0edb6e50c70b0cf188dd875c257da76e627
SHA256

c931417eb4690730438d7c93d1cf6e1864695d8d90a5833fe83298802a84ee58
SHA512

07c4a7d5a656bbef00deae0b814be51eba0348e678f562a78881a81b9850605838d9061341904e8d0ad13ebb47c09d2d7023de1607f8cd8f1d97b83b6260ce58
SSDEEP

3072:Xr8JG/QlTReXnVzW72nDLR1RNdxz9nI/K6ZoedXHpnZQeU1GGeEebgUKFzODhSK0:Xr8JpeXnVzW72nDLhZz9J4oQJZQeBGeR

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Kelmis_Data\Managed\System.Security.dll,#1
1⤵
PID:1220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy