11548779c5e136ea833df4d51c4073d952bbae4f39ab5f9b4f059f93f2353419 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

Install.Sf...64.exe

windows11-21h2-x64

7

$PLUGINSDI...em.dll

windows11-21h2-x64

3

$PLUGINSDI...gs.dll

windows11-21h2-x64

3

$PLUGINSDI...ec.dll

windows11-21h2-x64

3

sfvip_all....20.dll

windows11-21h2-x64

1

sfvip_all....es.dll

windows11-21h2-x64

1

sfvip_all....ni.dll

windows11-21h2-x64

1

sfvip_all....bc.dll

windows11-21h2-x64

1

sfvip_all....fb.dll

windows11-21h2-x64

1

sfvip_all....tr.dll

windows11-21h2-x64

1

sfvip_all....cb.dll

windows11-21h2-x64

1

sfvip_all....sh.dll

windows11-21h2-x64

1

sfvip_all....cb.dll

windows11-21h2-x64

1

sfvip_all....fb.dll

windows11-21h2-x64

1

sfvip_all....2s.dll

windows11-21h2-x64

1

sfvip_all....D5.dll

windows11-21h2-x64

1

sfvip_all....A1.dll

windows11-21h2-x64

1

sfvip_all....24.dll

windows11-21h2-x64

1

sfvip_all....56.dll

windows11-21h2-x64

1

sfvip_all....84.dll

windows11-21h2-x64

1

sfvip_all....12.dll

windows11-21h2-x64

1

sfvip_all....ul.dll

windows11-21h2-x64

1

sfvip_all....le.dll

windows11-21h2-x64

sfvip_all....ak.dll

windows11-21h2-x64

1

sfvip_all....pt.dll

windows11-21h2-x64

1

sfvip_all...._c.dll

windows11-21h2-x64

1

sfvip_all....or.dll

windows11-21h2-x64

1

sfvip_all....ll.exe

windows11-21h2-x64

1

sfvip_all....io.dll

windows11-21h2-x64

1

sfvip_all....li.dll

windows11-21h2-x64

1

sfvip_all....z2.dll

windows11-21h2-x64

1

sfvip_all....it.vbs

windows11-21h2-x64

1

Resubmissions

06-03-2024 18:08

240306-wrcydsef75 7

06-03-2024 18:04

240306-wnjxjafd4y 7

Analysis

max time kernel
1488s
max time network
1512s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
06-03-2024 18:08

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Install.Sfvip.All.1.4.12.36.x64.exe

Resource

win11-20240221-en

windows11-21h2-x64

9 signatures

1800 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/nsExec.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral5

Sample

sfvip_all.dist/Cryptodome/Cipher/_Salsa20.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral6

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_aes.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral7

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_aesni.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral8

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_cbc.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_cfb.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_ctr.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_ecb.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_eksblowfish.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral13

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_ocb.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_ofb.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

sfvip_all.dist/Cryptodome/Hash/_BLAKE2s.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral16

Sample

sfvip_all.dist/Cryptodome/Hash/_MD5.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral17

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA1.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral18

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA224.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral19

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA256.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral20

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA384.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral21

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA512.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral22

Sample

sfvip_all.dist/Cryptodome/Hash/_ghash_clmul.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral23

Sample

sfvip_all.dist/Cryptodome/Hash/_ghash_portable.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

sfvip_all.dist/Cryptodome/Hash/_keccak.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral25

Sample

sfvip_all.dist/Cryptodome/Protocol/_scrypt.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral26

Sample

sfvip_all.dist/Cryptodome/Util/_cpuid_c.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral27

Sample

sfvip_all.dist/Cryptodome/Util/_strxor.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral28

Sample

sfvip_all.dist/Sfvip All.exe

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral29

Sample

sfvip_all.dist/_asyncio.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral30

Sample

sfvip_all.dist/_brotli.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral31

Sample

sfvip_all.dist/_bz2.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral32

Sample

sfvip_all.dist/tcl/init.vbs

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Report Analysis Logs

General

Target

sfvip_all.dist/Cryptodome/Cipher/_raw_eksblowfish.dll
Size

21KB
MD5

e7826c066423284539bd1f1e99ba0cc6
SHA1

da7372eeb180c2e9a6662514a8fa6261e04ac6dc
SHA256

0e18b7c2686bb954a8ee310dd5fdb76d00ac078a12d883028bffc336e8606da2
SHA512

55f8b00b54f3c3e80803d5a3611d5301e29a2c6af6e2caa36249aeba1d4fcc5a068875b34d65106c137f0455f11b20226b48eef687f5ea73dfea3c852bf07050
SSDEEP

384:7Uv5cRUtPQtjLJiKMjNrDF6pJgLa0Mp8Qy0gYP2lXCM:UKR8I+K0lDFQgLa1WzU

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\sfvip_all.dist\Cryptodome\Cipher\_raw_eksblowfish.dll,#1
1⤵
PID:4324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy