Overview
overview
7Static
static
4General_SM...27.exe
windows11-21h2-x64
7$PLUGINSDI...em.dll
windows11-21h2-x64
3$PLUGINSDI...LL.dll
windows11-21h2-x64
1$PLUGINSDI...ss.dll
windows11-21h2-x64
1LorexCloud....1.pdf
windows11-21h2-x64
1LorexCloud/7z.dll
windows11-21h2-x64
1LorexCloud/7z.exe
windows11-21h2-x64
1LorexCloud...ss.exe
windows11-21h2-x64
1LorexCloud...ll.dll
windows11-21h2-x64
1LorexCloud...UI.dll
windows11-21h2-x64
1LorexCloud...UI.dll
windows11-21h2-x64
1LorexCloud...er.dll
windows11-21h2-x64
1LorexCloud...it.dll
windows11-21h2-x64
1LorexCloud/Common.dll
windows11-21h2-x64
1LorexCloud...le.dll
windows11-21h2-x64
1LorexCloud/DSGui.dll
windows11-21h2-x64
1LorexCloud...fy.exe
windows11-21h2-x64
1LorexCloud...nt.dll
windows11-21h2-x64
1LorexCloud...or.dll
windows11-21h2-x64
1LorexCloud...rl.dll
windows11-21h2-x64
1LorexCloud...al.dll
windows11-21h2-x64
1LorexCloud...UI.dll
windows11-21h2-x64
1LorexCloud...er.dll
windows11-21h2-x64
1LorexCloud/HWDec.dll
windows11-21h2-x64
1LorexCloud...er.dll
windows11-21h2-x64
1LorexCloud...or.dll
windows11-21h2-x64
1LorexCloud...re.dll
windows11-21h2-x64
1LorexCloud...er.dll
windows11-21h2-x64
3LorexCloud...or.dll
windows11-21h2-x64
1LorexCloud...ic.dll
windows11-21h2-x64
1LorexCloud...el.dll
windows11-21h2-x64
1LorexCloud...ty.dll
windows11-21h2-x64
1Analysis
-
max time kernel
132s -
max time network
157s -
platform
windows11-21h2_x64 -
resource
win11-20240221-en -
resource tags
arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system -
submitted
24/02/2024, 08:38
Behavioral task
behavioral1
Sample
General_SMARTPSS-Win64_International_LorexCloud_IS_V1.0.0.T.191127.exe
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral2
Sample
$PLUGINSDIR/System.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral3
Sample
$PLUGINSDIR/TestDLL.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral4
Sample
$PLUGINSDIR/progress.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral5
Sample
LorexCloud User's Manual V2.03.1.pdf
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral6
Sample
LorexCloud/7z.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral7
Sample
LorexCloud/7z.exe
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral8
Sample
LorexCloud/ACSFaceDataProcess.exe
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral9
Sample
LorexCloud/ADMachineDll.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral10
Sample
LorexCloud/AlarmHostUI.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral11
Sample
LorexCloud/AttendanceUI.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral12
Sample
LorexCloud/CardReader.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral13
Sample
LorexCloud/ClientInit.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral14
Sample
LorexCloud/Common.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral15
Sample
LorexCloud/DLL_File.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral16
Sample
LorexCloud/DSGui.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral17
Sample
LorexCloud/DSMessageNotify.exe
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral18
Sample
LorexCloud/DVRIPClient.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral19
Sample
LorexCloud/DahuaAdaptor.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral20
Sample
LorexCloud/DevCfgCtrl.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral21
Sample
LorexCloud/DeviceFunctionLogical.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral22
Sample
LorexCloud/FaceDetectUI.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral23
Sample
LorexCloud/H264Parser.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral24
Sample
LorexCloud/HWDec.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral25
Sample
LorexCloud/HevcParser.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral26
Sample
LorexCloud/IVS/bin/Adaptor.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral27
Sample
LorexCloud/IVS/bin/DPSDK_Core.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral28
Sample
LorexCloud/IVS/bin/VAXPlayer.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral29
Sample
LorexCloud/IVS/bin/VideoAdaptor.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral30
Sample
LorexCloud/SPSSLogic.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral31
Sample
LorexCloud/SPSSModel.dll
Resource
win11-20240221-en
windows11-21h2-x64
Behavioral task
behavioral32
Sample
LorexCloud/SPSSSecurity.dll
Resource
win11-20240221-en
windows11-21h2-x64
General
-
Target
LorexCloud/CardReader.dll
-
Size
194KB
-
MD5
809902e243bac664f139e08e51622e62
-
SHA1
5bc52f9de54b8e024ee9c6a9bacbb796a1b354db
-
SHA256
d67e74f03837057483989f84c1a4c76804e3dd0cdf9b866e62f12789ed4b11b9
-
SHA512
c879fee811c86bf342d198beb8f79ec171dbc25fa99471465d867d20bafda70ecad4aa07f4ae295c849ff428fd2b2da6312379daf0166e617fb18566db0fed53
-
SSDEEP
1536:BlKwxo1lLLiLHf1zhquBKui8i7g2H1vnu9P7aDsscO6QBJZUNtNp70:LpunLiLHdAoBia2H1vn8DaDZ7ZA7
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 5 IoCs
pid Process 2760 rundll32.exe 2760 rundll32.exe 2760 rundll32.exe 2760 rundll32.exe 2760 rundll32.exe