25942ce0ade8cb4999ff60e5404b5cf46fd116e8253702af15e3266af7e5be72 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

25942ce0ad...72.exe

windows7-x64

3

25942ce0ad...72.exe

windows10-2004-x64

7

$0/Archive...64.dll

windows7-x64

1

$0/Archive...64.dll

windows10-2004-x64

1

$0/Microso...er.dll

windows7-x64

1

$0/Microso...er.dll

windows10-2004-x64

1

$0/SaferWe...er.exe

windows7-x64

1

$0/SaferWe...er.exe

windows10-2004-x64

1

$0/System....te.dll

windows7-x64

1

$0/System....te.dll

windows10-2004-x64

1

$0/System....le.dll

windows7-x64

1

$0/System....le.dll

windows10-2004-x64

1

$0/rsAtom.dll

windows7-x64

1

$0/rsAtom.dll

windows10-2004-x64

1

$0/rsDatabase.dll

windows7-x64

1

$0/rsDatabase.dll

windows10-2004-x64

1

$0/rsJSON.dll

windows7-x64

1

$0/rsJSON.dll

windows10-2004-x64

1

$0/rsLogger.dll

windows7-x64

1

$0/rsLogger.dll

windows10-2004-x64

1

$0/rsStubLib.dll

windows7-x64

1

$0/rsStubLib.dll

windows10-2004-x64

1

$0/rsTime.dll

windows7-x64

1

$0/rsTime.dll

windows10-2004-x64

1

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Analysis

max time kernel
147s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
15-04-2024 11:08

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

25942ce0ade8cb4999ff60e5404b5cf46fd116e8253702af15e3266af7e5be72.exe

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

25942ce0ade8cb4999ff60e5404b5cf46fd116e8253702af15e3266af7e5be72.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral3

Sample

$0/ArchiveUtilityx64.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

$0/ArchiveUtilityx64.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$0/Microsoft.Win32.TaskScheduler.dll

Resource

win7-20240319-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

$0/Microsoft.Win32.TaskScheduler.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

$0/SaferWeb-installer.exe

Resource

win7-20231129-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$0/SaferWeb-installer.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

$0/System.Data.SQLite.dll

Resource

win7-20240215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

$0/System.Data.SQLite.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

$0/System.ValueTuple.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

$0/System.ValueTuple.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

$0/rsAtom.dll

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

$0/rsAtom.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

$0/rsDatabase.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

$0/rsDatabase.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

$0/rsJSON.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

$0/rsJSON.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

$0/rsLogger.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

$0/rsLogger.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

$0/rsStubLib.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

$0/rsStubLib.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

$0/rsTime.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

$0/rsTime.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

$0/Microsoft.Win32.TaskScheduler.dll
Size

341KB
MD5

a09decc59b2c2f715563bb035ee4241e
SHA1

c84f5e2e0f71feef437cf173afeb13fe525a0fea
SHA256

6b8f51508240af3b07a8d0b2dc873cedc3d5d9cb25e57ea1d55626742d1f9149
SHA512

1992c8e1f7e37a58bbf486f76d1320da8e1757d6296c8a7631f35ba2e376de215c65000612364c91508aa3ddf72841f6b823fa60a2b29415a07c74c2e830212b
SSDEEP

3072:81sSJApTSnQU/x0ImhuDzHfs4zbYOjujDRfygDgKQINXLLHIaKlay8weCycJ5Dfk:81sSmRIt/xhtsOju1DH5NXnIKAc4NU

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\$0\Microsoft.Win32.TaskScheduler.dll,#1
1⤵
PID:4348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy