b92c73fd80d0356057d3b279d18e2ef7097eae67d0bf0ee03478f0bb19bef23c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

selfbot/Cr...20.dll

windows10-2004-x64

1

selfbot/Cr...es.dll

windows10-2004-x64

1

selfbot/Cr...ni.dll

windows10-2004-x64

1

selfbot/Cr...bc.dll

windows10-2004-x64

1

selfbot/Cr...fb.dll

windows10-2004-x64

1

selfbot/Cr...tr.dll

windows10-2004-x64

1

selfbot/Cr...cb.dll

windows10-2004-x64

1

selfbot/Cr...sh.dll

windows10-2004-x64

1

selfbot/Cr...cb.dll

windows10-2004-x64

1

selfbot/Cr...fb.dll

windows10-2004-x64

1

selfbot/Cr...2s.dll

windows10-2004-x64

1

selfbot/Cr...D5.dll

windows10-2004-x64

1

selfbot/Cr...A1.dll

windows10-2004-x64

1

selfbot/Cr...56.dll

windows10-2004-x64

1

selfbot/Cr...ul.dll

windows10-2004-x64

1

selfbot/Cr...le.dll

windows10-2004-x64

1

selfbot/Cr...pt.dll

windows10-2004-x64

1

selfbot/Cr..._c.dll

windows10-2004-x64

1

selfbot/Cr...or.dll

windows10-2004-x64

1

selfbot/Nighty.exe

windows10-2004-x64

1

selfbot/PI...ng.dll

windows10-2004-x64

1

selfbot/PI...ft.dll

windows10-2004-x64

1

selfbot/PIL/_webp.dll

windows10-2004-x64

1

selfbot/_asyncio.dll

windows10-2004-x64

1

selfbot/_bz2.dll

windows10-2004-x64

1

selfbot/_c...nd.dll

windows10-2004-x64

1

selfbot/_ctypes.dll

windows10-2004-x64

1

selfbot/_decimal.dll

windows10-2004-x64

1

selfbot/_e...ee.dll

windows10-2004-x64

1

selfbot/_hashlib.dll

windows10-2004-x64

1

selfbot/tc...ge.vbs

windows10-2004-x64

1

selfbot/tcl/safe.ps1

windows10-2004-x64

1

Analysis

max time kernel
1720s
max time network
1155s
platform
windows10-2004_x64
resource
win10v2004-20231020-en
resource tags

arch:x64arch:x86image:win10v2004-20231020-enlocale:en-usos:windows10-2004-x64system
submitted
12/11/2023, 02:31

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

selfbot/Crypto/Cipher/_Salsa20.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral2

Sample

selfbot/Crypto/Cipher/_raw_aes.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral3

Sample

selfbot/Crypto/Cipher/_raw_aesni.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral4

Sample

selfbot/Crypto/Cipher/_raw_cbc.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral5

Sample

selfbot/Crypto/Cipher/_raw_cfb.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral6

Sample

selfbot/Crypto/Cipher/_raw_ctr.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral7

Sample

selfbot/Crypto/Cipher/_raw_ecb.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral8

Sample

selfbot/Crypto/Cipher/_raw_eksblowfish.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

selfbot/Crypto/Cipher/_raw_ocb.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

selfbot/Crypto/Cipher/_raw_ofb.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

selfbot/Crypto/Hash/_BLAKE2s.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

selfbot/Crypto/Hash/_MD5.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral13

Sample

selfbot/Crypto/Hash/_SHA1.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

selfbot/Crypto/Hash/_SHA256.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

selfbot/Crypto/Hash/_ghash_clmul.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral16

Sample

selfbot/Crypto/Hash/_ghash_portable.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral17

Sample

selfbot/Crypto/Protocol/_scrypt.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

1 signatures

1800 seconds

Behavioral task

behavioral18

Sample

selfbot/Crypto/Util/_cpuid_c.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral19

Sample

selfbot/Crypto/Util/_strxor.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral20

Sample

selfbot/Nighty.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

5 signatures

1800 seconds

Behavioral task

behavioral21

Sample

selfbot/PIL/_imaging.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral22

Sample

selfbot/PIL/_imagingft.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral23

Sample

selfbot/PIL/_webp.dll

Resource

win10v2004-20231025-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

selfbot/_asyncio.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral25

Sample

selfbot/_bz2.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral26

Sample

selfbot/_cffi_backend.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral27

Sample

selfbot/_ctypes.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral28

Sample

selfbot/_decimal.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral29

Sample

selfbot/_elementtree.dll

Resource

win10v2004-20231020-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral30

Sample

selfbot/_hashlib.dll

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral31

Sample

selfbot/tcl/package.vbs

Resource

win10v2004-20231023-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral32

Sample

selfbot/tcl/safe.ps1

Resource

win10v2004-20231023-en

windows10-2004-x64

2 signatures

1800 seconds

Report Analysis Logs

General

Target

selfbot/Crypto/Cipher/_raw_cfb.dll
Size

13KB
MD5

3142c93a6d9393f071ab489478e16b86
SHA1

4fe99c817ed3bcc7708a6631f100862ebda2b33d
SHA256

5ea310e0f85316c8981ed6293086a952fa91a6d12ca3f8af9581521ee2b15586
SHA512

dcafec54bd9f9f42042e6fa4ac5ed53feb6cf8d56ada6a1787cafc3736aa72f14912bbd1b27d0af87e79a6d406b0326602ecd1ad394acdc6275aed4c41cdb9ef
SSDEEP

192:YTI1RgPfqLlvIOP3bdS2hkPUDk9oCM/vPXcqgzQkvEmO:YTvYgAdDkUDDCWpgzQkvE

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\selfbot\Crypto\Cipher\_raw_cfb.dll,#1
1⤵
PID:2308

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy