Overview

overview

7

Static

static

3

68ea74d810...18.exe

windows7-x64

7

68ea74d810...18.exe

windows10-2004-x64

7

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

DHSurveillanceDll.dll

windows7-x64

1

DHSurveillanceDll.dll

windows10-2004-x64

1

FileOperator.dll

windows7-x64

3

FileOperator.dll

windows10-2004-x64

3

FisheyeCtrl.dll

windows7-x64

3

FisheyeCtrl.dll

windows10-2004-x64

3

IVSJsonSdk.dll

windows7-x64

1

IVSJsonSdk.dll

windows10-2004-x64

3

IvsDrawer.dll

windows7-x64

1

IvsDrawer.dll

windows10-2004-x64

1

IvsLogic.dll

windows7-x64

1

IvsLogic.dll

windows10-2004-x64

1

MCL_FPTZ.dll

windows7-x64

1

MCL_FPTZ.dll

windows10-2004-x64

3

TimeGridEXE.exe

windows7-x64

1

TimeGridEXE.exe

windows10-2004-x64

1

VideoWindow.dll

windows7-x64

1

VideoWindow.dll

windows10-2004-x64

1

WebActiveEXE.exe

windows7-x64

1

WebActiveEXE.exe

windows10-2004-x64

1

aacdec.dll

windows7-x64

3

aacdec.dll

windows10-2004-x64

3

dhnetsdk.dll

windows7-x64

5

dhnetsdk.dll

windows10-2004-x64

5

dhplay.dll

windows7-x64

1

dhplay.dll

windows10-2004-x64

1

fisheye.dll

windows7-x64

1

fisheye.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    104s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-05-2024 22:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WebActiveEXE.exe

  • Size

    144KB

  • MD5

    19734330434bd0ff9a79299abaeee6e1

  • SHA1

    1dc0cf02842fdbae933bed05f9e12441ba66ab87

  • SHA256

    782d58dc5c604d3f63b1c07dd3a436f9d5390849dc42a852c22ab6b623c69758

  • SHA512

    ff631ada408a7a89642380262cb3337226acce50386e226e723e01b47d7bffbf16a234fec94d7329a26be50ffd1677924009b8192d236bdeb103f1c6bb23f93b

  • SSDEEP

    3072:IH94SRbl1qjqAB2Pja28VX5P8z3Vs744cy4s5GqjGI:QJKgjKVXl44cKlGI

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\WebActiveEXE.exe
    "C:\Users\Admin\AppData\Local\Temp\WebActiveEXE.exe"
    1⤵
      PID:4548

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4548-0-0x0000000002310000-0x00000000023ED000-memory.dmp

      Filesize

      884KB

      Download

    • memory/4548-3-0x00000000025B0000-0x00000000026CC000-memory.dmp

      Filesize

      1.1MB

      Download

    • memory/4548-5-0x0000000004110000-0x000000000418E000-memory.dmp

      Filesize

      504KB

      Download

    • memory/4548-7-0x0000000004190000-0x00000000041A6000-memory.dmp

      Filesize

      88KB

      Download

    • memory/4548-6-0x0000000008790000-0x0000000008A83000-memory.dmp

      Filesize

      2.9MB

      Download

    • memory/4548-8-0x0000000008A90000-0x0000000008C73000-memory.dmp

      Filesize

      1.9MB

      Download

    • memory/4548-9-0x00000000083D0000-0x00000000083EE000-memory.dmp

      Filesize

      120KB

      Download