8e69a5ef3d94f6836b92915fec004e0320e0fde9fc863f9cdb475d04e52a5cce | Triage

Submit
Reports

Overview

overview

3

Static

static

3

gameoverla...er.dll

windows7-x64

1

gameoverla...er.dll

windows10-2004-x64

1

gameoverla...64.dll

windows7-x64

1

gameoverla...64.dll

windows10-2004-x64

1

sdkencrypt...et.dll

windows7-x64

1

sdkencrypt...et.dll

windows10-2004-x64

1

sdkencrypt...64.dll

windows7-x64

1

sdkencrypt...64.dll

windows10-2004-x64

1

steam000.dll

windows7-x64

1

steam000.dll

windows10-2004-x64

1

steam001.dll

windows7-x64

1

steam001.dll

windows10-2004-x64

1

steam_api.dll

windows7-x64

1

steam_api.dll

windows10-2004-x64

1

steam_api64.dll

windows7-x64

1

steam_api64.dll

windows10-2004-x64

1

steam_api64r.dll

windows7-x64

1

steam_api64r.dll

windows10-2004-x64

1

steam_apir.dll

windows7-x64

1

steam_apir.dll

windows10-2004-x64

1

steamclient.dll

windows7-x64

1

steamclient.dll

windows10-2004-x64

1

steamclient64.dll

windows7-x64

1

steamclient64.dll

windows10-2004-x64

1

开始游戏.exe

windows7-x64

3

开始游戏.exe

windows10-2004-x64

3

Analysis

max time kernel
173s
max time network
185s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
28/02/2024, 18:45

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

gameoverlayrenderer.dll

Resource

win7-20240215-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

gameoverlayrenderer.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

gameoverlayrenderer64.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

gameoverlayrenderer64.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

sdkencryptedappticket.dll

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

sdkencryptedappticket.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

sdkencryptedappticket64.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

sdkencryptedappticket64.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

steam000.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

steam000.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

steam001.dll

Resource

win7-20240215-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

steam001.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

steam_api.dll

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

steam_api.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

steam_api64.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

steam_api64.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

steam_api64r.dll

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

steam_api64r.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

steam_apir.dll

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

steam_apir.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

steamclient.dll

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

steamclient.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

steamclient64.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

steamclient64.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

开始游戏.exe

Resource

win7-20240221-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral26

Sample

开始游戏.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

gameoverlayrenderer64.dll
Size

98KB
MD5

7ece1a01c8afc4b6f604e8cc21cd15ad
SHA1

89180b093197fef32d0299382feaa0fb3755790f
SHA256

ef2ec78dd383cf548227718b8109ab7ae8d78677aca0ff10fb83071e18dcb5e6
SHA512

6c4f89df832c4fe20032575398c9ad2111635c4d42db7a3eee73549ae35e760f1d6f702587084b01fadf0ae4b6687731762889f9063bd6e4b1e9f7024261e390
SSDEEP

3072:g0U4S5tvLixqQwMu223OJAlNdt91t91dFtV9lN1dFtVEKrEUPCDdc6Yv9:DUZtvcVu5ekdC3YV

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\gameoverlayrenderer64.dll,#1
1⤵
PID:3996

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=1344 --field-trial-handle=3044,i,17059189006398306756,4247826696353232857,262144 --variations-seed-version /prefetch:8
1⤵
PID:5056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy