4999ddfa8add7326b2715fca4d2a169fe1160e00349cac2a38c53754ac639794 | Triage

Submit
Reports

Overview

overview

3

Static

static

3

ConfigKelmis.exe

windows7-x64

1

ConfigKelmis.exe

windows10-2004-x64

1

Kelmis.exe

windows7-x64

1

Kelmis.exe

windows10-2004-x64

1

Kelmis_Dat...ty.dll

windows7-x64

1

Kelmis_Dat...ty.dll

windows10-2004-x64

1

Kelmis_Dat...rp.dll

windows7-x64

1

Kelmis_Dat...rp.dll

windows10-2004-x64

1

Kelmis_Dat...UI.dll

windows7-x64

1

Kelmis_Dat...UI.dll

windows10-2004-x64

1

Kelmis_Dat...ib.dll

windows7-x64

1

Kelmis_Dat...ib.dll

windows10-2004-x64

1

Kelmis_Dat...te.dll

windows7-x64

1

Kelmis_Dat...te.dll

windows10-2004-x64

1

Kelmis_Dat...ix.dll

windows7-x64

1

Kelmis_Dat...ix.dll

windows10-2004-x64

1

Kelmis_Dat...ty.dll

windows7-x64

1

Kelmis_Dat...ty.dll

windows10-2004-x64

1

Kelmis_Dat...er.dll

windows7-x64

1

Kelmis_Dat...er.dll

windows10-2004-x64

1

Kelmis_Dat...on.dll

windows7-x64

1

Kelmis_Dat...on.dll

windows10-2004-x64

1

Kelmis_Dat...ap.dll

windows7-x64

1

Kelmis_Dat...ap.dll

windows10-2004-x64

1

Kelmis_Dat...on.dll

windows7-x64

1

Kelmis_Dat...on.dll

windows10-2004-x64

1

Kelmis_Dat...ns.dll

windows7-x64

1

Kelmis_Dat...ns.dll

windows10-2004-x64

1

Kelmis_Dat...on.dll

windows7-x64

1

Kelmis_Dat...on.dll

windows10-2004-x64

1

Kelmis_Dat...re.dll

windows7-x64

1

Kelmis_Dat...re.dll

windows10-2004-x64

1

Analysis

max time kernel
103s
max time network
203s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
07-11-2023 14:03

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ConfigKelmis.exe

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ConfigKelmis.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Kelmis.exe

Resource

win7-20231020-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

Kelmis.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

Kelmis_Data/Managed/Accessibility.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Kelmis_Data/Managed/Accessibility.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Kelmis_Data/Managed/Assembly-CSharp.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Kelmis_Data/Managed/Assembly-CSharp.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Kelmis_Data/Managed/Coffee.SoftMaskForUGUI.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Kelmis_Data/Managed/Coffee.SoftMaskForUGUI.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Kelmis_Data/Managed/ICSharpCode.SharpZipLib.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Kelmis_Data/Managed/ICSharpCode.SharpZipLib.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Kelmis_Data/Managed/Mono.Data.Sqlite.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Kelmis_Data/Managed/Mono.Data.Sqlite.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

Kelmis_Data/Managed/Mono.Posix.dll

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Kelmis_Data/Managed/Mono.Posix.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Kelmis_Data/Managed/Mono.Security.dll

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Kelmis_Data/Managed/Mono.Security.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Kelmis_Data/Managed/Mono.WebBrowser.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Kelmis_Data/Managed/Mono.WebBrowser.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Kelmis_Data/Managed/Newtonsoft.Json.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Kelmis_Data/Managed/Newtonsoft.Json.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Kelmis_Data/Managed/Novell.Directory.Ldap.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Kelmis_Data/Managed/Novell.Directory.Ldap.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Kelmis_Data/Managed/System.ComponentModel.Composition.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Kelmis_Data/Managed/System.ComponentModel.Composition.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Kelmis_Data/Managed/System.ComponentModel.DataAnnotations.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Kelmis_Data/Managed/System.ComponentModel.DataAnnotations.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Kelmis_Data/Managed/System.Configuration.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Kelmis_Data/Managed/System.Configuration.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Kelmis_Data/Managed/System.Core.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Kelmis_Data/Managed/System.Core.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Kelmis_Data/Managed/System.ComponentModel.DataAnnotations.dll
Size

82KB
MD5

b34188fa0a45b438f5cef1362e85147c
SHA1

1a4fa7ec667969e2d6177e42952b03536b6bb0c1
SHA256

4b2b8f7b2eebff970ef247ec94d271d6664514dee62a0a97f03b03dbe589f357
SHA512

12c40a7e1c61f33e8c8610c35a5a8c74e739ecd8458f0e6403508d5dea69956904d299718889036daf71fecf5d01236b0dc04dbc0206acd49b4c1e6dcc1e9e84
SSDEEP

1536:CoZEzJ7HR3HMNI1nL5WZpNT6n3Ur/UlcjUK6NBTgV:CTxXbLkZpNT6n3UglcjUK6NBTgV

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Kelmis_Data\Managed\System.ComponentModel.DataAnnotations.dll,#1
1⤵
PID:3380

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy