b3df198d64ba6f401611f56743bd344c1b02915f9e5d571d271ef8557feaf56c | Triage

Submit
Reports

Overview

overview

Static

static

rcsetup153.exe

windows7-x64

rcsetup153.exe

windows10-2004-x64

$PLUGINSDI...nt.dll

windows7-x64

3

$PLUGINSDI...nt.dll

windows10-2004-x64

3

$PLUGINSDIR/INetC.dll

windows7-x64

3

$PLUGINSDIR/INetC.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

1

$PLUGINSDI...ll.dll

windows10-2004-x64

1

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$_107_/$_1...UI.dll

windows7-x64

1

$_107_/$_1...UI.dll

windows10-2004-x64

3

$_108_/lang-1025.dll

windows7-x64

1

$_108_/lang-1025.dll

windows10-2004-x64

1

$_108_/lang-1026.dll

windows7-x64

1

$_108_/lang-1026.dll

windows10-2004-x64

1

$_108_/lang-1027.dll

windows7-x64

1

$_108_/lang-1027.dll

windows10-2004-x64

1

$_108_/lang-1028.dll

windows7-x64

1

$_108_/lang-1028.dll

windows10-2004-x64

1

$_108_/lang-1029.dll

windows7-x64

1

$_108_/lang-1029.dll

windows10-2004-x64

1

$_108_/lang-1030.dll

windows7-x64

1

$_108_/lang-1030.dll

windows10-2004-x64

1

$_108_/lang-1031.dll

windows7-x64

1

$_108_/lang-1031.dll

windows10-2004-x64

1

$_108_/lang-1032.dll

windows7-x64

1

$_108_/lang-1032.dll

windows10-2004-x64

1

Analysis

max time kernel
138s
max time network
101s
platform
windows10-2004_x64
resource
win10v2004-20240419-en
resource tags

arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
submitted
01/05/2024, 06:45

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

rcsetup153.exe

Resource

win7-20240419-en

privateloader bootkit discovery loader persistence spyware stealer

windows7-x64

19 signatures

150 seconds

Behavioral task

behavioral2

Sample

rcsetup153.exe

Resource

win10v2004-20240419-en

privateloader loader

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/ButtonEvent.dll

Resource

win7-20240419-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/ButtonEvent.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/INetC.dll

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/INetC.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/System.dll

Resource

win7-20231129-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

$PLUGINSDIR/UserInfo.dll

Resource

win7-20240419-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

$PLUGINSDIR/UserInfo.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral11

Sample

$PLUGINSDIR/g/gcapi_dll.dll

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

$PLUGINSDIR/g/gcapi_dll.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win7-20240220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

$_107_/$_107_/pfUI.dll

Resource

win7-20240221-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

$_107_/$_107_/pfUI.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

$_108_/lang-1025.dll

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

$_108_/lang-1025.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

$_108_/lang-1026.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

$_108_/lang-1026.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

$_108_/lang-1027.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

$_108_/lang-1027.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

$_108_/lang-1028.dll

Resource

win7-20240215-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

$_108_/lang-1028.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

$_108_/lang-1029.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

$_108_/lang-1029.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

$_108_/lang-1030.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$_108_/lang-1030.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

$_108_/lang-1031.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

$_108_/lang-1031.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

$_108_/lang-1032.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

$_108_/lang-1032.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

$_108_/lang-1027.dll
Size

51KB
MD5

2facb5e65c8480fc8a0c3ddca8469020
SHA1

0eff87f3c92a039fd1807fb06633be83c7e1f640
SHA256

8d989a3a83df8150bead76dd49cc8c32b4242d006347061cedd06759e9e20f79
SHA512

7739c700d7c9bf011b7ac2d59786e20a54644603b1d42ea9c28fe43c0aae86968d38ef131abbf7030b289e389bbc96bb664215f729b17020975412a237d49d16
SSDEEP

768:5Ps6VX8o9aTNSWMd7eJMSCFG1uhq75C5f5viRPAz9yMJYFuaSRaIw1go0kSIoUl1:5P9jYnyUeNvcnirI6o+Xq7poPxfO

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\$_108_\lang-1027.dll,#1
1⤵
PID:2648

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy