58f19c9d25cd0a8d0a8bab054b67cdd3e592e22736235969943c3a90cb23bd9e | Triage

Submit
Reports

Overview

overview

3

Static

static

3

ConfigKelmis.exe

windows7-x64

1

ConfigKelmis.exe

windows10-2004-x64

1

Kelmis.exe

windows7-x64

1

Kelmis.exe

windows10-2004-x64

1

Kelmis_Dat...ty.dll

windows7-x64

1

Kelmis_Dat...ty.dll

windows10-2004-x64

1

Kelmis_Dat...rp.dll

windows7-x64

1

Kelmis_Dat...rp.dll

windows10-2004-x64

1

Kelmis_Dat...UI.dll

windows7-x64

1

Kelmis_Dat...UI.dll

windows10-2004-x64

1

Kelmis_Dat...ib.dll

windows7-x64

1

Kelmis_Dat...ib.dll

windows10-2004-x64

1

Kelmis_Dat...te.dll

windows7-x64

1

Kelmis_Dat...te.dll

windows10-2004-x64

1

Kelmis_Dat...ix.dll

windows7-x64

1

Kelmis_Dat...ix.dll

windows10-2004-x64

1

Kelmis_Dat...ty.dll

windows7-x64

1

Kelmis_Dat...ty.dll

windows10-2004-x64

1

Kelmis_Dat...er.dll

windows7-x64

1

Kelmis_Dat...er.dll

windows10-2004-x64

1

Kelmis_Dat...on.dll

windows7-x64

1

Kelmis_Dat...on.dll

windows10-2004-x64

1

Kelmis_Dat...ap.dll

windows7-x64

1

Kelmis_Dat...ap.dll

windows10-2004-x64

1

Kelmis_Dat...on.dll

windows7-x64

1

Kelmis_Dat...on.dll

windows10-2004-x64

1

Kelmis_Dat...ns.dll

windows7-x64

1

Kelmis_Dat...ns.dll

windows10-2004-x64

1

Kelmis_Dat...on.dll

windows7-x64

1

Kelmis_Dat...on.dll

windows10-2004-x64

1

Kelmis_Dat...re.dll

windows7-x64

1

Kelmis_Dat...re.dll

windows10-2004-x64

1

Analysis

max time kernel
250s
max time network
396s
platform
windows10-2004_x64
resource
win10v2004-20231023-en
resource tags

arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
submitted
07/11/2023, 14:12

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ConfigKelmis.exe

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ConfigKelmis.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Kelmis.exe

Resource

win7-20231023-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

Kelmis.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

Kelmis_Data/Managed/Accessibility.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Kelmis_Data/Managed/Accessibility.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Kelmis_Data/Managed/Assembly-CSharp.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Kelmis_Data/Managed/Assembly-CSharp.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Kelmis_Data/Managed/Coffee.SoftMaskForUGUI.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Kelmis_Data/Managed/Coffee.SoftMaskForUGUI.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Kelmis_Data/Managed/ICSharpCode.SharpZipLib.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Kelmis_Data/Managed/ICSharpCode.SharpZipLib.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Kelmis_Data/Managed/Mono.Data.Sqlite.dll

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Kelmis_Data/Managed/Mono.Data.Sqlite.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Kelmis_Data/Managed/Mono.Posix.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Kelmis_Data/Managed/Mono.Posix.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Kelmis_Data/Managed/Mono.Security.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Kelmis_Data/Managed/Mono.Security.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Kelmis_Data/Managed/Mono.WebBrowser.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Kelmis_Data/Managed/Mono.WebBrowser.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Kelmis_Data/Managed/Newtonsoft.Json.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Kelmis_Data/Managed/Newtonsoft.Json.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Kelmis_Data/Managed/Novell.Directory.Ldap.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Kelmis_Data/Managed/Novell.Directory.Ldap.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Kelmis_Data/Managed/System.ComponentModel.Composition.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Kelmis_Data/Managed/System.ComponentModel.Composition.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Kelmis_Data/Managed/System.ComponentModel.DataAnnotations.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Kelmis_Data/Managed/System.ComponentModel.DataAnnotations.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Kelmis_Data/Managed/System.Configuration.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Kelmis_Data/Managed/System.Configuration.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Kelmis_Data/Managed/System.Core.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Kelmis_Data/Managed/System.Core.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Kelmis_Data/Managed/Assembly-CSharp.dll
Size

1011KB
MD5

b09c7f44566d14d1ac3c8572948b80b2
SHA1

50632d6d83fdb55380078e8f31d938ff97730139
SHA256

bafbb37d359835739fc90fb286940aa513a1ba546627d0cf905d412659aad745
SHA512

2ab349136e806c89c9674a9ee20f400890f55a803d4443e9354c00e4d48764d5fde5a54558035ec92f607e21082c4c619b3d8e1bb4c6961034f175d60bdd389f
SSDEEP

12288:ysj0iNT/RT2toz2xcAd9+wjjeyEwWr+BpD4a2kPfcmBbLWMkXqP:yswippTCjc+7xPUmhKMS

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Kelmis_Data\Managed\Assembly-CSharp.dll,#1
1⤵
PID:4748

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy