a77210dc3ae1df36cab033e2b52ca8c656bd5cbc5257a79220526f32f4bf5949 | Triage

Submit
Reports

Overview

overview

8

Static

static

3

Onn Setup2...08.exe

windows10-2004-x64

8

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...in.dll

windows10-2004-x64

1

$PLUGINSDI...zU.dll

windows10-2004-x64

3

CommFunc.dll

windows10-2004-x64

1

DLL3S_UsbA...32.dll

windows10-2004-x64

3

DLL3S_UsbA...64.dll

windows10-2004-x64

1

DLL3S_UsbA...32.dll

windows10-2004-x64

3

DLL3S_UsbA...64.dll

windows10-2004-x64

1

Driver/CommFunc.dll

windows10-2004-x64

1

Driver/DIFxAPI.dll

windows10-2004-x64

1

Driver/DIFxCmd.exe

windows10-2004-x64

1

Driver/HHT...tr.sys

windows10-2004-x64

1

Driver/Mou...vi.sys

windows10-2004-x64

1

Driver/devcon.exe

windows10-2004-x64

1

Driver/x64...PI.dll

windows10-2004-x64

1

Driver/x64...md.exe

windows10-2004-x64

1

Driver/x64...ve.bat

windows10-2004-x64

1

Driver/x64...up.bat

windows10-2004-x64

5

Driver/x64/HHTHid.sys

windows10-2004-x64

1

Driver/x64...tr.sys

windows10-2004-x64

1

Driver/x64...vi.sys

windows10-2004-x64

1

Driver/x64...id.exe

windows10-2004-x64

8

Driver/x64...vi.sys

windows10-2004-x64

1

Driver/x64...vi.sys

windows10-2004-x64

1

Driver/x64/devcon.exe

windows10-2004-x64

1

DrvInDll.dll

windows10-2004-x64

1

DuiLib.dll

windows10-2004-x64

3

HidServ.dll

windows10-2004-x64

1

HookDLL.dll

windows10-2004-x64

1

KbDaemon.exe

windows10-2004-x64

1

Analysis

max time kernel
96s
max time network
117s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
25/05/2024, 22:17

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Onn Setup20240320V1.0.0.8.08.exe

Resource

win10v2004-20240426-en

discovery persistence

windows10-2004-x64

16 signatures

120 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/BgWorker.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/nsNiuniuSkin.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/nsis7zU.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral6

Sample

CommFunc.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral7

Sample

DLL3S_UsbAudio16xx_Debug_x32.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral8

Sample

DLL3S_UsbAudio16xx_Debug_x64.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral9

Sample

DLL3S_UsbAudio16xx_x32.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral10

Sample

DLL3S_UsbAudio16xx_x64.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral11

Sample

Driver/CommFunc.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral12

Sample

Driver/DIFxAPI.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral13

Sample

Driver/DIFxCmd.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral14

Sample

Driver/HHTHidMouFiltr.sys

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral15

Sample

Driver/MouFiltr_Evi.sys

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral16

Sample

Driver/devcon.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral17

Sample

Driver/x64/DIFxAPI.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral18

Sample

Driver/x64/DIFxCmd.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral19

Sample

Driver/x64/Driver_Remove.bat

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral20

Sample

Driver/x64/Driver_Setup.bat

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

120 seconds

Behavioral task

behavioral21

Sample

Driver/x64/HHTHid.sys

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral22

Sample

Driver/x64/HHTHidMouFiltr.sys

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral23

Sample

Driver/x64/HidFiltr_Evi.sys

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral24

Sample

Driver/x64/InstallDriver_HHTHid.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

9 signatures

120 seconds

Behavioral task

behavioral25

Sample

Driver/x64/KbFiltr_Evi.sys

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral26

Sample

Driver/x64/MouFiltr_Evi.sys

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral27

Sample

Driver/x64/devcon.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral28

Sample

DrvInDll.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral29

Sample

DuiLib.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral30

Sample

HidServ.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral31

Sample

HookDLL.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral32

Sample

KbDaemon.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Report Analysis Logs

General

Target

Driver/x64/HHTHid.sys
Size

24KB
MD5

175f4a95e9472aa9853e3f4f15ebecd0
SHA1

69ae4a618d12c69a61fc815e2a916be88382ab6b
SHA256

8d6691a44c33ab197794a179e9692be11b77927e6fad4b4fcd50379ee819d337
SHA512

288213e726be769a6422443061052ea06fdfa75a5965e781f3d40f4002dd5edd8e99eeb82a4901a75074be5a8bf255b0e90d1fdd53b7294fbcf3c57cd569c2a6
SSDEEP

384:kzGf58EXyJ9a80rl3oYcm+pTQdunYPL6iUHeM8PiWPFRN1uQlxst:AGfCEXyJ9ZGlc2duhyHru1

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Driver\x64\HHTHid.sys
1⤵
PID:1244
- C:\Users\Admin\AppData\Local\Temp\Driver\x64\HHTHid.sys
  C:\Users\Admin\AppData\Local\Temp\Driver\x64\HHTHid.sys
  2⤵
  PID:2044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy