Overview

overview

3

Static

static

3

47e810d266...7f.exe

windows7-x64

3

47e810d266...7f.exe

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

Syncplay.exe

windows7-x64

1

Syncplay.exe

windows10-2004-x64

1

SyncplayConsole.exe

windows7-x64

1

SyncplayConsole.exe

windows10-2004-x64

1

lib/PySide...re.dll

windows7-x64

1

lib/PySide...re.dll

windows10-2004-x64

1

lib/PySide2.QtGui.dll

windows7-x64

1

lib/PySide2.QtGui.dll

windows10-2004-x64

1

lib/PySide...rk.dll

windows7-x64

1

lib/PySide...rk.dll

windows10-2004-x64

1

lib/PySide...ns.dll

windows7-x64

1

lib/PySide...ns.dll

windows10-2004-x64

1

lib/PySide...s2.dll

windows7-x64

1

lib/PySide...s2.dll

windows10-2004-x64

1

lib/PySide...ts.dll

windows7-x64

1

lib/PySide...ts.dll

windows10-2004-x64

1

lib/PySide...pt.dll

windows7-x64

1

lib/PySide...pt.dll

windows10-2004-x64

1

lib/PySide...ls.dll

windows7-x64

1

lib/PySide...ls.dll

windows10-2004-x64

1

lib/PySide...rt.dll

windows7-x64

1

lib/PySide...rt.dll

windows10-2004-x64

1

lib/PySide...ts.dll

windows7-x64

1

lib/PySide...ts.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 02:19

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    lib/PySide2.QtScript.dll

  • Size

    218KB

  • MD5

    f372e64f9411ba888ebcbd85f71c1c54

  • SHA1

    cadc2140d593db6ad1ae0662ffd3e8853db360bf

  • SHA256

    31a0386999b17eba0d26eab9a64423425c913c1b382a2d3b03ea74d213c5392a

  • SHA512

    b29f6aabec7c66b251064b6cc596f1adfdba75ab085564d385a77375c5ac4cecc92103a2e898fc727c116e5d876d5b070ed9befccf292333a51084acb6931f23

  • SSDEEP

    3072:+YwySx+e1VKR77Z+9lpjdxxhZtLx9juo+/Jg0nhoidUU770orEePRL901K9a:+lu7k9TPZDu/y0nh4Uv0oXPRL90w9a

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\lib\PySide2.QtScript.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2036
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\lib\PySide2.QtScript.dll,#1
      2⤵
        PID:2696

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads