11548779c5e136ea833df4d51c4073d952bbae4f39ab5f9b4f059f93f2353419 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

Install.Sf...64.exe

windows11-21h2-x64

7

$PLUGINSDI...em.dll

windows11-21h2-x64

3

$PLUGINSDI...gs.dll

windows11-21h2-x64

3

$PLUGINSDI...ec.dll

windows11-21h2-x64

3

sfvip_all....20.dll

windows11-21h2-x64

1

sfvip_all....es.dll

windows11-21h2-x64

1

sfvip_all....ni.dll

windows11-21h2-x64

1

sfvip_all....bc.dll

windows11-21h2-x64

1

sfvip_all....fb.dll

windows11-21h2-x64

1

sfvip_all....tr.dll

windows11-21h2-x64

1

sfvip_all....cb.dll

windows11-21h2-x64

1

sfvip_all....sh.dll

windows11-21h2-x64

1

sfvip_all....cb.dll

windows11-21h2-x64

1

sfvip_all....fb.dll

windows11-21h2-x64

1

sfvip_all....2s.dll

windows11-21h2-x64

1

sfvip_all....D5.dll

windows11-21h2-x64

1

sfvip_all....A1.dll

windows11-21h2-x64

1

sfvip_all....24.dll

windows11-21h2-x64

1

sfvip_all....56.dll

windows11-21h2-x64

1

sfvip_all....84.dll

windows11-21h2-x64

1

sfvip_all....12.dll

windows11-21h2-x64

1

sfvip_all....ul.dll

windows11-21h2-x64

1

sfvip_all....le.dll

windows11-21h2-x64

sfvip_all....ak.dll

windows11-21h2-x64

1

sfvip_all....pt.dll

windows11-21h2-x64

1

sfvip_all...._c.dll

windows11-21h2-x64

1

sfvip_all....or.dll

windows11-21h2-x64

1

sfvip_all....ll.exe

windows11-21h2-x64

1

sfvip_all....io.dll

windows11-21h2-x64

1

sfvip_all....li.dll

windows11-21h2-x64

1

sfvip_all....z2.dll

windows11-21h2-x64

1

sfvip_all....it.vbs

windows11-21h2-x64

1

Resubmissions

06-03-2024 18:08

240306-wrcydsef75 7

06-03-2024 18:04

240306-wnjxjafd4y 7

Analysis

max time kernel
1554s
max time network
1526s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
06-03-2024 18:08

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Install.Sfvip.All.1.4.12.36.x64.exe

Resource

win11-20240221-en

windows11-21h2-x64

9 signatures

1800 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/nsExec.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral5

Sample

sfvip_all.dist/Cryptodome/Cipher/_Salsa20.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral6

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_aes.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral7

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_aesni.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral8

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_cbc.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_cfb.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_ctr.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_ecb.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_eksblowfish.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral13

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_ocb.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

sfvip_all.dist/Cryptodome/Cipher/_raw_ofb.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

sfvip_all.dist/Cryptodome/Hash/_BLAKE2s.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral16

Sample

sfvip_all.dist/Cryptodome/Hash/_MD5.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral17

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA1.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral18

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA224.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral19

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA256.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral20

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA384.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral21

Sample

sfvip_all.dist/Cryptodome/Hash/_SHA512.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral22

Sample

sfvip_all.dist/Cryptodome/Hash/_ghash_clmul.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral23

Sample

sfvip_all.dist/Cryptodome/Hash/_ghash_portable.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

sfvip_all.dist/Cryptodome/Hash/_keccak.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral25

Sample

sfvip_all.dist/Cryptodome/Protocol/_scrypt.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral26

Sample

sfvip_all.dist/Cryptodome/Util/_cpuid_c.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral27

Sample

sfvip_all.dist/Cryptodome/Util/_strxor.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral28

Sample

sfvip_all.dist/Sfvip All.exe

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral29

Sample

sfvip_all.dist/_asyncio.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral30

Sample

sfvip_all.dist/_brotli.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral31

Sample

sfvip_all.dist/_bz2.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral32

Sample

sfvip_all.dist/tcl/init.vbs

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

1800 seconds

Report Analysis Logs

General

Target

sfvip_all.dist/Cryptodome/Cipher/_raw_ocb.dll
Size

17KB
MD5

d5db7192a65d096433f5f3608e5ad922
SHA1

22ad6b635226c8f6b94f85e4fbfb6f8c18b613c8
SHA256

fab286e26160820167d427a4aab14be4c23883c543e2b0c353f931c89cea3638
SHA512

5503e83d68d144a6d182dcc5e8401dd81c1c98b04b5ed24223c77d94b0d4f2dd1dd05aed94b9d619d30d2fe73dffa6e710664ffc71b8fa53e735f968b718b1d9
SSDEEP

384:tPHNP3Mj7Be/yB/6sB3yxcb+IMcOYqQViCBD8Ng6Vf4A:DPcnB8KSsB34cb+bcOYpMCBDB

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\sfvip_all.dist\Cryptodome\Cipher\_raw_ocb.dll,#1
1⤵
PID:4524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy