5e529237967aee74d55a0843bf6d02ac9d39bd270b4ed06ee2a360d86aca2ba4 | Triage

Submit
Reports

Overview

overview

3

Static

static

3

Agent.exe

windows7-x64

1

Agent.exe

windows10-2004-x64

1

Agent.exe

windows7-x64

1

Agent.exe

windows10-2004-x64

1

Agent.sys

windows7-x64

1

Agent.sys

windows10-2004-x64

1

AudioSwitc...io.dll

windows7-x64

1

AudioSwitc...io.dll

windows10-2004-x64

1

AudioSwitc...pi.dll

windows7-x64

1

AudioSwitc...pi.dll

windows10-2004-x64

1

Core.Logger.dll

windows7-x64

1

Core.Logger.dll

windows10-2004-x64

1

EmbedIO.dll

windows7-x64

1

EmbedIO.dll

windows10-2004-x64

1

HTTPProtorol.dll

windows7-x64

1

HTTPProtorol.dll

windows10-2004-x64

1

HidSharp.dll

windows7-x64

1

HidSharp.dll

windows10-2004-x64

1

JsonFlatFi...re.dll

windows7-x64

1

JsonFlatFi...re.dll

windows10-2004-x64

1

LibreHardw...ib.dll

windows7-x64

1

LibreHardw...ib.dll

windows10-2004-x64

1

Logger.NLog.dll

windows7-x64

1

Logger.NLog.dll

windows10-2004-x64

1

Logger.Serilog.dll

windows7-x64

1

Logger.Serilog.dll

windows10-2004-x64

1

Microsoft....er.dll

windows7-x64

1

Microsoft....er.dll

windows10-2004-x64

1

Microsoft....ch.dll

windows7-x64

1

Microsoft....ch.dll

windows10-2004-x64

1

Microsoft....on.dll

windows7-x64

1

Microsoft....on.dll

windows10-2004-x64

1

Analysis

max time kernel
158s
max time network
165s
platform
windows10-2004_x64
resource
win10v2004-20231020-en
resource tags

arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
submitted
07/11/2023, 14:35

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Agent.exe

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

Agent.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Agent.exe

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Agent.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Agent.sys

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Agent.sys

Resource

win10v2004-20231020-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

AudioSwitcher.AudioApi.CoreAudio.dll

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

AudioSwitcher.AudioApi.CoreAudio.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

AudioSwitcher.AudioApi.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

AudioSwitcher.AudioApi.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Core.Logger.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Core.Logger.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

EmbedIO.dll

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

EmbedIO.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

HTTPProtorol.dll

Resource

win7-20231025-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

HTTPProtorol.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

HidSharp.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

HidSharp.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

JsonFlatFileDataStore.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

JsonFlatFileDataStore.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

LibreHardwareMonitorLib.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

LibreHardwareMonitorLib.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Logger.NLog.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Logger.NLog.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Logger.Serilog.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Logger.Serilog.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Microsoft.AspNetCore.Authentication.JwtBearer.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Microsoft.AspNetCore.Authentication.JwtBearer.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Microsoft.AspNetCore.JsonPatch.dll

Resource

win7-20231020-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Microsoft.AspNetCore.JsonPatch.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Microsoft.AspNetCore.Mvc.NewtonsoftJson.dll

Resource

win7-20231023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Microsoft.AspNetCore.Mvc.NewtonsoftJson.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Microsoft.AspNetCore.Authentication.JwtBearer.dll
Size

35KB
MD5

31b01e21e7a29d33d8634c5852ed26fb
SHA1

92ce8eb8a6947dbc03d026ad55feff196a8aba7a
SHA256

96ccfc46c68f80e9ba3599223078852286b16785e30e2392549f6adff4b74617
SHA512

93c032714b6450758fced274dc12ffde2e1978143cfc0d31522a30253800f00a828c21d70213e2b5332960d874daa3cb4079bb6d91934b01a966cf6b818d0454
SSDEEP

384:4zalP6MlDyfdLjm6zd68GzX+Om/yq9If8A/2TxjFkfxQZF7NEYZ6C9t69hGnPKX6:4GlC9XRqm//b8WS2na0I7B+U8

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Microsoft.AspNetCore.Authentication.JwtBearer.dll,#1
1⤵
PID:5040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy