8272912ee1bf16a05192042253c37356e5944c0e26795772a14c606565ca58b6 | Triage

Submit
Reports

Overview

overview

Static

static

YY5331过�...ok.dll

windows7-x64

1

YY5331过�...ok.dll

windows10-2004-x64

1

YY5331过�...er.exe

windows7-x64

1

YY5331过�...er.exe

windows10-2004-x64

1

YY5331过�...al.exe

windows7-x64

1

YY5331过�...al.exe

windows10-2004-x64

1

YY5331过�...ne.exe

windows7-x64

7

YY5331过�...ne.exe

windows10-2004-x64

7

YY5331过�...31.dll

windows7-x64

7

YY5331过�...31.dll

windows10-2004-x64

7

YY5331过�...32.dll

windows7-x64

1

YY5331过�...32.dll

windows10-2004-x64

1

YY5331过�...32.sys

windows7-x64

1

YY5331过�...32.sys

windows10-2004-x64

1

YY5331过�...ll.dll

windows7-x64

1

YY5331过�...ll.dll

windows10-2004-x64

1

YY5331过�...ss.exe

windows7-x64

1

YY5331过�...ss.exe

windows10-2004-x64

1

YY5331过�...��.exe

windows7-x64

1

YY5331过�...��.exe

windows10-2004-x64

1

Analysis

max time kernel
141s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
25/12/2023, 09:05

Sharing

Copy URL Twitter E-mail

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

YY5331过非法VE/DAHook.dll

Resource

win7-20231215-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

YY5331过非法VE/DAHook.dll

Resource

win10v2004-20231215-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

YY5331过非法VE/SysCallRetriever.exe

Resource

win7-20231215-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

YY5331过非法VE/SysCallRetriever.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

YY5331过非法VE/SysCallSignal.exe

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

YY5331过非法VE/SysCallSignal.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

YY5331过非法VE/Vzla Engine.exe

Resource

win7-20231215-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral8

Sample

YY5331过非法VE/Vzla Engine.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

YY5331过非法VE/dak31.dll

Resource

win7-20231215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

YY5331过非法VE/dak31.dll

Resource

win10v2004-20231215-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral11

Sample

YY5331过非法VE/dak32.dll

Resource

win7-20231215-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

YY5331过非法VE/dak32.dll

Resource

win10v2004-20231215-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

YY5331过非法VE/dak32.sys

Resource

win7-20231215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

YY5331过非法VE/dak32.sys

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

YY5331过非法VE/emptydll.dll

Resource

win7-20231215-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

YY5331过非法VE/emptydll.dll

Resource

win10v2004-20231215-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

YY5331过非法VE/emptyprocess.exe

Resource

win7-20231215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

YY5331过非法VE/emptyprocess.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

YY5331过非法VE/腾讯游戏过非法.exe

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

YY5331过非法VE/腾讯游戏过非法.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

YY5331过非法VE/SysCallSignal.exe
Size

19KB
MD5

6b245c322151dc4031afd186f6878019
SHA1

464257e563c16ee813644bc77828c20d9a4f20df
SHA256

86fd220ef8e935bf0d58a21b3e6088e27f3ae13b9a72420ed73d2d9e8ee7a914
SHA512

6f00b8754f59a13dae76a493fd11a0ae53e6d7e60985740ed05e75f213df4d413301b7053adc5d2d64e22a40bb97a86d8167660e8c709a49516b0abf2ed08249
SSDEEP

384:k0ILrmjPOpA8Z/ij7m+1Is9QCJI2o/I7SsuM2qxJpucCj+zgFJS:HIPppFZ/ija+1IGZ4A7SObxJpunjugFJ

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\YY5331过非法VE\SysCallSignal.exe
"C:\Users\Admin\AppData\Local\Temp\YY5331过非法VE\SysCallSignal.exe"
1⤵
PID:228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/228-0-0x0000000000400000-0x000000000040E000-memory.dmp

Filesize
56KB

Download

© 2018-2025

Terms | Privacy