d99ac2a9df6c9e6d560270ca6561190cf4fd098096a5b61ac599d930811bd2c6 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

RSI-Setup-2.0.0.exe

windows10-2004-x64

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/UAC.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows10-2004-x64

1

RSI Launcher.exe

windows10-2004-x64

5

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/...64.exe

windows10-2004-x64

7

resources/elevate.exe

windows10-2004-x64

1

resources/...rt.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

$R0/Uninst...er.exe

windows10-2004-x64

4

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/UAC.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$TEMP/VC_r...64.exe

windows10-2004-x64

7

$TEMP/dotN...up.exe

windows10-2004-x64

7

$TEMP/dxwebsetup.exe

windows10-2004-x64

7

Analysis

max time kernel
59s
max time network
73s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
24/05/2024, 03:20

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

RSI-Setup-2.0.0.exe

Resource

win10v2004-20240226-en

discovery persistence

windows10-2004-x64

19 signatures

60 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/UAC.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral6

Sample

LICENSES.chromium.html

Resource

win10v2004-20240508-en

windows10-2004-x64

8 signatures

60 seconds

Behavioral task

behavioral7

Sample

RSI Launcher.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

7 signatures

60 seconds

Behavioral task

behavioral8

Sample

d3dcompiler_47.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral9

Sample

ffmpeg.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral10

Sample

libEGL.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral11

Sample

libGLESv2.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral12

Sample

resources/VC_redist.x64.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

60 seconds

Behavioral task

behavioral13

Sample

resources/elevate.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral14

Sample

resources/installer-support.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral15

Sample

vk_swiftshader.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral16

Sample

vulkan-1.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral17

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral18

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral19

Sample

$PLUGINSDIR/nsProcess.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral20

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral21

Sample

$R0/Uninstall RSI Launcher.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

4 signatures

60 seconds

Behavioral task

behavioral22

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral23

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral24

Sample

$PLUGINSDIR/UAC.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral25

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral26

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral27

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral28

Sample

$PLUGINSDIR/nsProcess.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

60 seconds

Behavioral task

behavioral29

Sample

$TEMP/VC_redist.x64.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

4 signatures

60 seconds

Behavioral task

behavioral30

Sample

$TEMP/dotNetFx45_Full_setup.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

5 signatures

60 seconds

Behavioral task

behavioral31

Sample

$TEMP/dxwebsetup.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

60 seconds

Report Analysis Logs

General

Target

resources/elevate.exe
Size

125KB
MD5

8e8b377e679df17e681d41a6a4c47387
SHA1

5ed64822bef831ff019d7e98e53bc75b98e232c3
SHA256

cb31e0fe75fa750aa5d094154ee3ee9a0a7b64adfee814520d618c29854795c3
SHA512

0a88456d7d9e2744be9328f37733861c184f84d7f2296c539c5b2d1995923bc296d79a67b1b321dfa341269e165830c378e2fb138ac01fadd657215eea73c404
SSDEEP

3072:9FbLnrwQoRDtdMMgSXiFJWcIgUVCfRjV/GrWlnVHhZm:/PrwRhte1XsE1lVzm

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\resources\elevate.exe
"C:\Users\Admin\AppData\Local\Temp\resources\elevate.exe"
1⤵
PID:5108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy