Overview

overview

3

Static

static

3

GameJamProjesi.exe

windows10-2004-x64

1

GameJamPro...rp.dll

windows10-2004-x64

1

GameJamPro...ts.dll

windows10-2004-x64

1

GameJamPro...ne.dll

windows10-2004-x64

1

GameJamPro...en.dll

windows10-2004-x64

1

GameJamPro...ty.dll

windows10-2004-x64

1

GameJamPro...on.dll

windows10-2004-x64

1

GameJamPro...on.dll

windows10-2004-x64

1

GameJamPro...re.dll

windows10-2004-x64

1

GameJamPro...ns.dll

windows10-2004-x64

1

GameJamPro...ta.dll

windows10-2004-x64

1

GameJamPro...ng.dll

windows10-2004-x64

1

GameJamPro...es.dll

windows10-2004-x64

1

GameJamPro...em.dll

windows10-2004-x64

1

GameJamPro...on.dll

windows10-2004-x64

1

GameJamPro...tp.dll

windows10-2004-x64

1

GameJamPro...cs.dll

windows10-2004-x64

1

GameJamPro...on.dll

windows10-2004-x64

1

GameJamPro...me.dll

windows10-2004-x64

1

GameJamPro...ty.dll

windows10-2004-x64

1

GameJamPro...ls.dll

windows10-2004-x64

1

GameJamPro...ns.dll

windows10-2004-x64

1

GameJamPro...nq.dll

windows10-2004-x64

1

GameJamPro...ml.dll

windows10-2004-x64

1

GameJamPro...em.dll

windows10-2004-x64

1

GameJamPro...on.dll

windows10-2004-x64

1

GameJamPro...es.dll

windows10-2004-x64

1

GameJamPro...ng.dll

windows10-2004-x64

1

GameJamPro...fe.dll

windows10-2004-x64

1

GameJamPro...st.dll

windows10-2004-x64

1

GameJamPro...em.dll

windows10-2004-x64

1

GameJamPro...cs.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    1782s
  • max time network
    1154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231023-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231023-enlocale:en-usos:windows10-2004-x64system
  • submitted
    20-11-2023 17:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    GameJamProjesi_Data/Managed/Unity.Animation.Rigging.DocCodeExamples.dll

  • Size

    5KB

  • MD5

    6aa730d09e51576ca784dc196186f2ab

  • SHA1

    75de7d43e6c4599e767059ed326950eac29116ed

  • SHA256

    105caeb6bb1a5b0f8bf2bd67452e561e61c3d5cd375152711425a84a192728f6

  • SHA512

    46048636573d1324a659a4d4eff04e976a80f64749d5d405b1d0afdff79f9e98679eba63cb0477ceab836268dc0fb08b7fefa3c829969d8bc1e40eeda9c550da

  • SSDEEP

    48:6P2Ivly/hux7inQ6fzI2b/3x2muu7YZ+z1R+4QEYJFqllEO2FXiKIkb6dZLrQaD+:UvlUhux+nVPx2huZzieRxkEX7SGtG/R

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\GameJamProjesi_Data\Managed\Unity.Animation.Rigging.DocCodeExamples.dll,#1
    1⤵
      PID:3552
    • C:\Windows\system32\rundll32.exe
      "C:\Windows\system32\rundll32.exe" "C:\Windows\SYSTEM32\EDGEHTML.dll",#141 Microsoft.VCLibs.140.00_8wekyb3d8bbwe
      1⤵
        PID:1472
      • C:\Windows\System32\svchost.exe
        C:\Windows\System32\svchost.exe -k UnistackSvcGroup
        1⤵
        • Suspicious use of AdjustPrivilegeToken
        PID:1784

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/1784-0-0x000001C2AF550000-0x000001C2AF560000-memory.dmp

        Filesize

        64KB

        Download

      • memory/1784-16-0x000001C2AF650000-0x000001C2AF660000-memory.dmp

        Filesize

        64KB

        Download

      • memory/1784-32-0x000001C2B79C0000-0x000001C2B79C1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/1784-34-0x000001C2B79F0000-0x000001C2B79F1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/1784-35-0x000001C2B79F0000-0x000001C2B79F1000-memory.dmp

        Filesize

        4KB

        Download

      • memory/1784-36-0x000001C2B7B00000-0x000001C2B7B01000-memory.dmp

        Filesize

        4KB

        Download