Overview
overview
3Static
static
3God_of_War...ok.zip
windows7-x64
1God_of_War...ok.zip
windows10-2004-x64
1Analytics.dll
windows7-x64
1Analytics.dll
windows10-2004-x64
1DeviceDiscovery.dll
windows7-x64
1DeviceDiscovery.dll
windows10-2004-x64
1DevicePlugin.dll
windows7-x64
1DevicePlugin.dll
windows10-2004-x64
1DeviceViewModel.dll
windows7-x64
1DeviceViewModel.dll
windows10-2004-x64
1Devices/De...ew.dll
windows7-x64
1Devices/De...ew.dll
windows10-2004-x64
1Devices/MVVM.dll
windows7-x64
1Devices/MVVM.dll
windows10-2004-x64
1Devices/PI...10.dll
windows7-x64
1Devices/PI...10.dll
windows10-2004-x64
1Devices/PI...11.dll
windows7-x64
1Devices/PI...11.dll
windows10-2004-x64
1Devices/PI...0A.dll
windows7-x64
1Devices/PI...0A.dll
windows10-2004-x64
1Devices/PI...0B.dll
windows7-x64
1Devices/PI...0B.dll
windows10-2004-x64
1Devices/PI...0C.dll
windows7-x64
1Devices/PI...0C.dll
windows10-2004-x64
1Devices/PI...1A.dll
windows7-x64
1Devices/PI...1A.dll
windows10-2004-x64
1Devices/PI...1C.dll
windows7-x64
1Devices/PI...1C.dll
windows10-2004-x64
1Devices/PI...1D.dll
windows7-x64
1Devices/PI...1D.dll
windows10-2004-x64
1Devices/PI...30.dll
windows7-x64
1Devices/PI...30.dll
windows10-2004-x64
1Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240215-en -
resource tags
arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system -
submitted
10/05/2024, 05:13
Static task
static1
Behavioral task
behavioral1
Sample
God_of_War_Ragnarok.zip
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral2
Sample
God_of_War_Ragnarok.zip
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
Analytics.dll
Resource
win7-20240419-en
windows7-x64
Behavioral task
behavioral4
Sample
Analytics.dll
Resource
win10v2004-20240226-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
DeviceDiscovery.dll
Resource
win7-20240419-en
windows7-x64
Behavioral task
behavioral6
Sample
DeviceDiscovery.dll
Resource
win10v2004-20240426-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
DevicePlugin.dll
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral8
Sample
DevicePlugin.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
DeviceViewModel.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral10
Sample
DeviceViewModel.dll
Resource
win10v2004-20240426-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
Devices/DeviceView.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral12
Sample
Devices/DeviceView.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
Devices/MVVM.dll
Resource
win7-20240215-en
windows7-x64
Behavioral task
behavioral14
Sample
Devices/MVVM.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
Devices/PID_0x0110.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral16
Sample
Devices/PID_0x0110.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral17
Sample
Devices/PID_0x0111.dll
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral18
Sample
Devices/PID_0x0111.dll
Resource
win10v2004-20240426-en
windows10-2004-x64
Behavioral task
behavioral19
Sample
Devices/PID_0x070A.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral20
Sample
Devices/PID_0x070A.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral21
Sample
Devices/PID_0x070B.dll
Resource
win7-20240419-en
windows7-x64
Behavioral task
behavioral22
Sample
Devices/PID_0x070B.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral23
Sample
Devices/PID_0x070C.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral24
Sample
Devices/PID_0x070C.dll
Resource
win10v2004-20240226-en
windows10-2004-x64
Behavioral task
behavioral25
Sample
Devices/PID_0x071A.dll
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral26
Sample
Devices/PID_0x071A.dll
Resource
win10v2004-20240508-en
windows10-2004-x64
Behavioral task
behavioral27
Sample
Devices/PID_0x071C.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral28
Sample
Devices/PID_0x071C.dll
Resource
win10v2004-20240426-en
windows10-2004-x64
Behavioral task
behavioral29
Sample
Devices/PID_0x071D.dll
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral30
Sample
Devices/PID_0x071D.dll
Resource
win10v2004-20240426-en
windows10-2004-x64
Behavioral task
behavioral31
Sample
Devices/PID_0x0730.dll
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral32
Sample
Devices/PID_0x0730.dll
Resource
win10v2004-20240426-en
windows10-2004-x64
General
-
Target
Devices/MVVM.dll
-
Size
18KB
-
MD5
808df08b72dd24509c6575b77c4b67d2
-
SHA1
a9c47488d7b5dedbf833cd7118a1e43d9b4107e0
-
SHA256
11cb9ebec7b7e1ecf52aae175943223625deb57e9aedc84a0092e80bd473682c
-
SHA512
c879ca8e55a3a910e3c83e9d2c24840e303e81314c41926310fbde271dd742222e026cae2df43adb504d2c8ec4f303b6d74f3273e1b5d31969767866d8d1b23c
-
SSDEEP
384:Z44Yq1hX0q8Ifc1beosTSI7WZali5AAly9mbgz7za:m4YqbX014fhBAly9Wh
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 7 IoCs
description pid Process procid_target PID 2220 wrote to memory of 2720 2220 rundll32.exe 28 PID 2220 wrote to memory of 2720 2220 rundll32.exe 28 PID 2220 wrote to memory of 2720 2220 rundll32.exe 28 PID 2220 wrote to memory of 2720 2220 rundll32.exe 28 PID 2220 wrote to memory of 2720 2220 rundll32.exe 28 PID 2220 wrote to memory of 2720 2220 rundll32.exe 28 PID 2220 wrote to memory of 2720 2220 rundll32.exe 28