Overview
overview
7Static
static
7dragonsetup.exe
windows11-21h2-x64
7$PLUGINSDI...in.dll
windows11-21h2-x64
1$PLUGINSDI...ns.dll
windows11-21h2-x64
3$PLUGINSDI...in.dll
windows11-21h2-x64
$PLUGINSDI...in.dll
windows11-21h2-x64
1$PLUGINSDI...ls.dll
windows11-21h2-x64
7$PLUGINSDI...em.dll
windows11-21h2-x64
3$PLUGINSDI...se.rtf
windows11-21h2-x64
1$PLUGINSDI...er.dll
windows11-21h2-x64
3$PLUGINSDI...gs.dll
windows11-21h2-x64
3$PLUGINSDI...ON.dll
windows11-21h2-x64
7$PLUGINSDI...it.dll
windows11-21h2-x64
7$PLUGINSDI...dl.dll
windows11-21h2-x64
3$PLUGINSDI...on.dll
windows11-21h2-x64
7WidevineCd...dm.dll
windows11-21h2-x64
1bundles/cc...er.exe
windows11-21h2-x64
6chrome_elf.dll
windows11-21h2-x64
1d3dcompiler_47.dll
windows11-21h2-x64
3dragon.exe
windows11-21h2-x64
7dragon_install.exe
windows11-21h2-x64
1dragon_register.exe
windows11-21h2-x64
1dragon_s.dll
windows11-21h2-x64
3dragon_updater.exe
windows11-21h2-x64
1elevation_service.exe
windows11-21h2-x64
1libEGL.dll
windows11-21h2-x64
1libGLESv2.dll
windows11-21h2-x64
3locales/dr...ll.exe
windows11-21h2-x64
1locales/dr...er.exe
windows11-21h2-x64
1modules/coresys32.dll
windows11-21h2-x64
3modules/dr...er.exe
windows11-21h2-x64
1modules/dr...il.dll
windows11-21h2-x64
3mojo_core.dll
windows11-21h2-x64
1Analysis
-
max time kernel
133s -
max time network
277s -
platform
windows11-21h2_x64 -
resource
win11-20240412-en -
resource tags
arch:x64arch:x86image:win11-20240412-enlocale:en-usos:windows11-21h2-x64system -
submitted
16/04/2024, 19:36
Behavioral task
behavioral1
Sample
dragonsetup.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral2
Sample
$PLUGINSDIR/InstallHelperPlugin.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral3
Sample
$PLUGINSDIR/InstallOptions.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral4
Sample
$PLUGINSDIR/NSIS_SkinCrafter_Plugin.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral5
Sample
$PLUGINSDIR/SecureDNSPlugin.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral6
Sample
$PLUGINSDIR/StdUtils.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral7
Sample
$PLUGINSDIR/System.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral8
Sample
$PLUGINSDIR/license.rtf
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral9
Sample
$PLUGINSDIR/linker.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral10
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral11
Sample
$PLUGINSDIR/nsJSON.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral12
Sample
$PLUGINSDIR/nsRichEdit.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral13
Sample
$PLUGINSDIR/nsisdl.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral14
Sample
$PLUGINSDIR/version.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral15
Sample
WidevineCdm/_platform_specific/win_x86/widevinecdm.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral16
Sample
bundles/ccav_installer.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral17
Sample
chrome_elf.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral18
Sample
d3dcompiler_47.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral19
Sample
dragon.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral20
Sample
dragon_install.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral21
Sample
dragon_register.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral22
Sample
dragon_s.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral23
Sample
dragon_updater.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral24
Sample
elevation_service.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral25
Sample
libEGL.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral26
Sample
libGLESv2.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral27
Sample
locales/dragon_install.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral28
Sample
locales/dragon_register.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral29
Sample
modules/coresys32.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral30
Sample
modules/dragon_helper.exe
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral31
Sample
modules/dragon_util.dll
Resource
win11-20240412-en
windows11-21h2-x64
Behavioral task
behavioral32
Sample
mojo_core.dll
Resource
win11-20240412-en
windows11-21h2-x64
General
-
Target
mojo_core.dll
-
Size
1.3MB
-
MD5
8c073f670b71394b922422cb3ea3a0a3
-
SHA1
9d57232681a0bc269a67242c9e3f8545caf726ce
-
SHA256
9b2c0fda0b9802dfba296f8e594ef48b9d030bf1a2b1d47c0020b3f64e8c9287
-
SHA512
51188e3507a4f70d048e60cfb0380b72f26538b6327d99897a5d08c15a13ad6f07d65ec07444c098695f67bdae175cde80a9557bcb47c6a680b6b83eee2e043f
-
SSDEEP
24576:Sy5k9j5NPK7Qg4q/asgCeeI1wIOPuHzDV11AVS8UHNSWv:C9j/PK14qisgIIrOPuH/V11U8SWv
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 2564 wrote to memory of 1308 2564 rundll32.exe 79 PID 2564 wrote to memory of 1308 2564 rundll32.exe 79 PID 2564 wrote to memory of 1308 2564 rundll32.exe 79