Overview
overview
10Static
static
10Synapse-X-...re.dll
windows11-21h2-x64
1Synapse-X-...re.dll
windows11-21h2-x64
1Synapse-X-...pf.dll
windows11-21h2-x64
1Synapse-X-...rp.dll
windows11-21h2-x64
1Synapse-X-...er.exe
windows11-21h2-x64
10Synapse-X-...or.dll
windows11-21h2-x64
9Synapse-X-...lf.dll
windows11-21h2-x64
1Synapse-X-...47.dll
windows11-21h2-x64
3Synapse-X-...GL.dll
windows11-21h2-x64
1Synapse-X-...v2.dll
windows11-21h2-x64
3Analysis
-
max time kernel
1406s -
max time network
1158s -
platform
windows11-21h2_x64 -
resource
win11-20240508-en -
resource tags
arch:x64arch:x86image:win11-20240508-enlocale:en-usos:windows11-21h2-x64system -
submitted
13-05-2024 17:31
Behavioral task
behavioral1
Sample
Synapse-X-Revamped-main/CefSharp.BrowserSubprocess.Core.dll
Resource
win11-20240508-en
Behavioral task
behavioral2
Sample
Synapse-X-Revamped-main/CefSharp.Core.dll
Resource
win11-20240508-en
Behavioral task
behavioral3
Sample
Synapse-X-Revamped-main/CefSharp.Wpf.dll
Resource
win11-20240426-en
Behavioral task
behavioral4
Sample
Synapse-X-Revamped-main/CefSharp.dll
Resource
win11-20240426-en
Behavioral task
behavioral5
Sample
Synapse-X-Revamped-main/Synapse X Launcher.exe
Resource
win11-20240508-en
Behavioral task
behavioral6
Sample
Synapse-X-Revamped-main/SynapseInjector.dll
Resource
win11-20240426-en
Behavioral task
behavioral7
Sample
Synapse-X-Revamped-main/chrome_elf.dll
Resource
win11-20240508-en
Behavioral task
behavioral8
Sample
Synapse-X-Revamped-main/d3dcompiler_47.dll
Resource
win11-20240508-en
Behavioral task
behavioral9
Sample
Synapse-X-Revamped-main/libEGL.dll
Resource
win11-20240508-en
Behavioral task
behavioral10
Sample
Synapse-X-Revamped-main/libGLESv2.dll
Resource
win11-20240419-en
General
-
Target
Synapse-X-Revamped-main/d3dcompiler_47.dll
-
Size
3.5MB
-
MD5
f76b1d2cd95385b21e61874761ddb53a
-
SHA1
e5219dc55dcd6b8643e3920ad21d0640fd714383
-
SHA256
8bf0eeb5081d8397e2f84f69449c8a80d9c0cdcf82bcef7a484309046adcb081
-
SHA512
8e5c6541bbea6730c4f6392439454f516d56ac9ad6d6b55336e52361cc80a35fbed8a90d58020d92fa4ac9fcfeee6c280754a9e99cc32bae901b00306626e69f
-
SSDEEP
49152:fjmJAksRXmBNgC9ITPPE8WHmy0HRZ+kyOzDJn5c5v5H3pqC23u6q+25omPEyXzjl:fy2Ckrj+kyOv2MJ+6q8kbqS/Ai
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 1252 1656 WerFault.exe rundll32.exe -
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
rundll32.exedescription pid process target process PID 3060 wrote to memory of 1656 3060 rundll32.exe rundll32.exe PID 3060 wrote to memory of 1656 3060 rundll32.exe rundll32.exe PID 3060 wrote to memory of 1656 3060 rundll32.exe rundll32.exe
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\Synapse-X-Revamped-main\d3dcompiler_47.dll,#11⤵
- Suspicious use of WriteProcessMemory
PID:3060 -
C:\Windows\SysWOW64\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\Synapse-X-Revamped-main\d3dcompiler_47.dll,#12⤵PID:1656
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1656 -s 4683⤵
- Program crash
PID:1252
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1656 -ip 16561⤵PID:3976