Overview
overview
3Static
static
35224829/AI...engine
ubuntu-18.04-amd64
5224829/AI...ne.exe
windows7-x64
15224829/AI...ne.exe
windows10-2004-x64
15224829/AI...32.dll
windows7-x64
35224829/AI...32.dll
windows10-2004-x64
35224829/AI...iew.js
windows7-x64
15224829/AI...iew.js
windows10-2004-x64
15224829/AI...ss.vbs
windows7-x64
15224829/AI...ss.vbs
windows10-2004-x64
15224829/AI...ate.js
windows7-x64
15224829/AI...ate.js
windows10-2004-x64
15224829/AI...ms.exe
windows7-x64
15224829/AI...ms.exe
windows10-2004-x64
15224829/AI...MO.exe
windows7-x64
15224829/AI...MO.exe
windows10-2004-x64
15224829/AI...ut.dll
windows7-x64
15224829/AI...ut.dll
windows10-2004-x64
15224829/AI...32.dll
windows7-x64
35224829/AI...32.dll
windows10-2004-x64
35224829/AI...th.exe
windows7-x64
15224829/AI...th.exe
windows10-2004-x64
15224829/AI...ocking
ubuntu-18.04-amd64
5224829/AI...ng.exe
windows7-x64
15224829/AI...ng.exe
windows10-2004-x64
15224829/AI...32.dll
windows7-x64
35224829/AI...32.dll
windows10-2004-x64
35224829/AI.../FUZZY
ubuntu-18.04-amd64
5224829/AI...ZY.exe
windows7-x64
15224829/AI...ZY.exe
windows10-2004-x64
5224829/AI...NLIST1
ubuntu-18.04-amd64
5224829/AI...NLIST2
ubuntu-18.04-amd64
5224829/AI...NLIST3
ubuntu-18.04-amd64
Analysis
-
max time kernel
121s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
13-01-2024 02:18
Static task
static1
Behavioral task
behavioral1
Sample
5224829/AI/00Rabin/ai_engine
Resource
ubuntu1804-amd64-20231222-en
ubuntu-18.04-amd64
Behavioral task
behavioral2
Sample
5224829/AI/00Rabin/ai_engine.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral3
Sample
5224829/AI/00Rabin/ai_engine.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral4
Sample
5224829/AI/00Rabin/glut32.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral5
Sample
5224829/AI/00Rabin/glut32.dll
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral6
Sample
5224829/AI/01Dybsand/ChildView.js
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral7
Sample
5224829/AI/01Dybsand/ChildView.js
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral8
Sample
5224829/AI/01Dybsand/FSMclass.vbs
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral9
Sample
5224829/AI/01Dybsand/FSMclass.vbs
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral10
Sample
5224829/AI/01Dybsand/FSMstate.js
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral11
Sample
5224829/AI/01Dybsand/FSMstate.js
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral12
Sample
5224829/AI/01Dybsand/GameGems.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral13
Sample
5224829/AI/01Dybsand/GameGems.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral14
Sample
5224829/AI/03Stout/PATHDEMO.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral15
Sample
5224829/AI/03Stout/PATHDEMO.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral16
Sample
5224829/AI/06Snook/glut.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral17
Sample
5224829/AI/06Snook/glut.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral18
Sample
5224829/AI/06Snook/glut32.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral19
Sample
5224829/AI/06Snook/glut32.dll
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral20
Sample
5224829/AI/06Snook/navipath.exe
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral21
Sample
5224829/AI/06Snook/navipath.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral22
Sample
5224829/AI/07Woodcock/SimpleFlocking
Resource
ubuntu1804-amd64-20231215-en
ubuntu-18.04-amd64
Behavioral task
behavioral23
Sample
5224829/AI/07Woodcock/SimpleFlocking.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral24
Sample
5224829/AI/07Woodcock/SimpleFlocking.exe
Resource
win10v2004-20231222-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
5224829/AI/07Woodcock/glut32.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral26
Sample
5224829/AI/07Woodcock/glut32.dll
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
5224829/AI/08McCuskey/FUZZY
Resource
ubuntu1804-amd64-20231215-en
ubuntu-18.04-amd64
Behavioral task
behavioral28
Sample
5224829/AI/08McCuskey/FUZZY.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral29
Sample
5224829/AI/08McCuskey/FUZZY.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral30
Sample
5224829/AI/09LaMothe/NNLIST1
Resource
ubuntu1804-amd64-20231221-en
ubuntu-18.04-amd64
Behavioral task
behavioral31
Sample
5224829/AI/09LaMothe/NNLIST2
Resource
ubuntu1804-amd64-20231222-en
ubuntu-18.04-amd64
Behavioral task
behavioral32
Sample
5224829/AI/09LaMothe/NNLIST3
Resource
ubuntu1804-amd64-20231215-en
ubuntu-18.04-amd64
General
-
Target
5224829/AI/01Dybsand/GameGems.exe
-
Size
1.5MB
-
MD5
fc1bcb475681a735276b668cf075d79e
-
SHA1
0baa99aebf75c41401ef3b21a8b4e9b81db075b3
-
SHA256
e3be26a9cfff8d3da5f0eac9eb60e54027c5c0ffa83c5753cc3e654219f2aff6
-
SHA512
a28d0f6d7a54d3a3683a73e8559f32b6227621c5be175c12b75f34cc711754ebe5267d5935ed5136fe10bea5fe37610c5e5307daab5a30667d649318379d4ab6
-
SSDEEP
24576:QdTQis02fwYsNf02gsVVw+cBJDGkm7qfSLGQu:QQg2p4V9cBJDGXL0
Malware Config
Signatures
-
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 1752 GameGems.exe 1752 GameGems.exe