e1a876852a42d221b5bb7a2d934e50c31d2006f9df258dab589b0078cc6c63f3 | Triage

Submit
Reports

Overview

overview

Static

static

3

GamePingBooster.zip

windows10-2004-x64

1

GamePingBo...se.dll

windows10-2004-x64

1

GamePingBo...uf.dll

windows10-2004-x64

1

GamePingBo...op.dll

windows10-2004-x64

1

GamePingBo...up.exe

windows10-2004-x64

GamePingBo...en.dll

windows10-2004-x64

1

GamePingBo...te.dll

windows10-2004-x64

1

GamePingBo...ry.dll

windows10-2004-x64

1

GamePingBo...fe.dll

windows10-2004-x64

1

GamePingBo...on.dll

windows10-2004-x64

1

GamePingBo...ty.dll

windows10-2004-x64

1

GamePingBo...lt.zip

windows10-2004-x64

1

settings.json

windows10-2004-x64

3

GamePingBo...rs.zip

windows10-2004-x64

1

win10/arm6...rv.sys

windows10-2004-x64

1

win10/x64/...rv.sys

windows10-2004-x64

1

win10/x64/...rv.sys

windows10-2004-x64

1

win10/x86/...rv.sys

windows10-2004-x64

1

win10/x86/...rv.sys

windows10-2004-x64

1

x64/AdguardNetLib.dll

windows10-2004-x64

1

x64/AdguardNetReg.exe

windows10-2004-x64

1

x64/adgvpn...rv.sys

windows10-2004-x64

1

x64/adgvpn...rv.sys

windows10-2004-x64

1

x86/AdguardNetLib.dll

windows10-2004-x64

1

x86/AdguardNetReg.exe

windows10-2004-x64

1

x86/adgvpn...rv.sys

windows10-2004-x64

1

x86/adgvpn...rv.sys

windows10-2004-x64

1

GamePingBo...un.dll

windows10-2004-x64

3

Analysis

max time kernel
149s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
18-04-2024 19:55

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

GamePingBooster.zip

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

GamePingBooster/AGIpHelperClose.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

GamePingBooster/Google.Protobuf.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

GamePingBooster/SQLite.Interop.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

GamePingBooster/Setup.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral6

Sample

GamePingBooster/SharpRaven.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

GamePingBooster/System.Data.SQLite.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

GamePingBooster/System.Memory.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

GamePingBooster/System.Runtime.CompilerServices.Unsafe.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

GamePingBooster/System.Runtime.InteropServices.RuntimeInformation.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

GamePingBooster/System.Windows.Interactivity.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

GamePingBooster/default.zip

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

settings.json

Resource

win10v2004-20240412-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral14

Sample

GamePingBooster/drivers.zip

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

win10/arm64/adgvpnnetworkwfpdrv.sys

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

win10/x64/adgvpnnetworktdidrv.sys

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

win10/x64/adgvpnnetworkwfpdrv.sys

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

win10/x86/adgvpnnetworktdidrv.sys

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

win10/x86/adgvpnnetworkwfpdrv.sys

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

x64/AdguardNetLib.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

x64/AdguardNetReg.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

x64/adgvpnnetworktdidrv.sys

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

x64/adgvpnnetworkwfpdrv.sys

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

x86/AdguardNetLib.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

x86/AdguardNetReg.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

x86/adgvpnnetworktdidrv.sys

Resource

win10v2004-20240412-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

x86/adgvpnnetworkwfpdrv.sys

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

GamePingBooster/wintun.dll

Resource

win10v2004-20240412-en

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

win10/x86/adgvpnnetworkwfpdrv.sys
Size

75KB
MD5

62293e3fbb48d550f2462535318085c0
SHA1

1305c805b798ad53dda9e87946e31d90e13f0179
SHA256

31c0e5dd2772440b8a90975ef46627a930a544a6c1a4d37607b5228cb839fac6
SHA512

3f679d51782b2369afc97e2a50f773ad03784758a58978e6e993a02d059a5d9a2262c8479e3693ce8697f772196953c306667f889dd7396cb0d564d2553c6a7e
SSDEEP

1536:behsCjc0UWH+dzHo1m4d+chKMiHSRZDdDkIDR7b6yt2M/fEia5uXxs0zzl:ksL0Uq0z2vzLdIY/Ba5uXxln

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\win10\x86\adgvpnnetworkwfpdrv.sys
1⤵
PID:4252
- C:\Users\Admin\AppData\Local\Temp\win10\x86\adgvpnnetworkwfpdrv.sys
  C:\Users\Admin\AppData\Local\Temp\win10\x86\adgvpnnetworkwfpdrv.sys
  2⤵
  PID:1804

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy