Overview

overview

3

Static

static

3

8b1d9cd042...3c.exe

windows7-x64

3

8b1d9cd042...3c.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$R0.dll

windows7-x64

1

$R0.dll

windows10-2004-x64

1

$TEMP/CloudAssist.exe

windows7-x64

1

$TEMP/CloudAssist.exe

windows10-2004-x64

1

$TEMP/CloudServer.exe

windows7-x64

1

$TEMP/CloudServer.exe

windows10-2004-x64

1

$TEMP/Clou...ee.exe

windows7-x64

1

$TEMP/Clou...ee.exe

windows10-2004-x64

1

7zxr.dll

windows7-x64

1

7zxr.dll

windows10-2004-x64

1

CloudAssist.exe

windows7-x64

1

CloudAssist.exe

windows10-2004-x64

1

CloudEBookReader.exe

windows7-x64

3

CloudEBookReader.exe

windows10-2004-x64

3

CloudFun.dll

windows7-x64

1

CloudFun.dll

windows10-2004-x64

1

CloudFun2.dll

windows7-x64

1

CloudFun2.dll

windows10-2004-x64

1

CloudServer.exe

windows7-x64

CloudServer.exe

windows10-2004-x64

GdiPlus.dll

windows7-x64

1

GdiPlus.dll

windows10-2004-x64

1

LongRADrv.sys

windows7-x64

1

LongRADrv.sys

windows10-2004-x64

1

LongRADrv2K.sys

windows7-x64

1

LongRADrv2K.sys

windows10-2004-x64

1

LongRAShell.exe

windows7-x64

1

LongRAShell.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    03/02/2024, 02:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LongRADrv2K.sys

  • Size

    88KB

  • MD5

    a725beb8730339eab668aaf4b9eb6f3d

  • SHA1

    f8350fba49c9d39fd0f30104b3f27b8ecc177c12

  • SHA256

    7151669323558de79a34a6427d4470b1d47fd38d614114b1007a3d101183a32b

  • SHA512

    aca165474d4c2b77ab84abe761911bf94cb44fcbf5f098eb3761e949bffcdb765b6db86f2e561615b6c28bb4aa0f9459d1e8e45d0efb42ff014e912d705c9867

  • SSDEEP

    1536:vcfZs0xy9tcuOg5pC9JMyEUgTjjIKm9pAdvz7ZOGnKn/hnnbuukyoiyWMC+SiX+r:0y9CuHXC9JMCgTgVfKgtGyoitW8

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\LongRADrv2K.sys
    1⤵
      PID:2900
      • C:\Users\Admin\AppData\Local\Temp\LongRADrv2K.sys
        C:\Users\Admin\AppData\Local\Temp\LongRADrv2K.sys
        2⤵
          PID:2968

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/2968-0-0x0000000000010000-0x0000000000024180-memory.dmp

        Filesize

        80KB

        Download