a77210dc3ae1df36cab033e2b52ca8c656bd5cbc5257a79220526f32f4bf5949 | Triage

Submit
Reports

Overview

overview

8

Static

static

3

Onn Setup2...08.exe

windows10-2004-x64

8

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...in.dll

windows10-2004-x64

1

$PLUGINSDI...zU.dll

windows10-2004-x64

3

CommFunc.dll

windows10-2004-x64

1

DLL3S_UsbA...32.dll

windows10-2004-x64

3

DLL3S_UsbA...64.dll

windows10-2004-x64

1

DLL3S_UsbA...32.dll

windows10-2004-x64

3

DLL3S_UsbA...64.dll

windows10-2004-x64

1

Driver/CommFunc.dll

windows10-2004-x64

1

Driver/DIFxAPI.dll

windows10-2004-x64

1

Driver/DIFxCmd.exe

windows10-2004-x64

1

Driver/HHT...tr.sys

windows10-2004-x64

1

Driver/Mou...vi.sys

windows10-2004-x64

1

Driver/devcon.exe

windows10-2004-x64

1

Driver/x64...PI.dll

windows10-2004-x64

1

Driver/x64...md.exe

windows10-2004-x64

1

Driver/x64...ve.bat

windows10-2004-x64

1

Driver/x64...up.bat

windows10-2004-x64

5

Driver/x64/HHTHid.sys

windows10-2004-x64

1

Driver/x64...tr.sys

windows10-2004-x64

1

Driver/x64...vi.sys

windows10-2004-x64

1

Driver/x64...id.exe

windows10-2004-x64

8

Driver/x64...vi.sys

windows10-2004-x64

1

Driver/x64...vi.sys

windows10-2004-x64

1

Driver/x64/devcon.exe

windows10-2004-x64

1

DrvInDll.dll

windows10-2004-x64

1

DuiLib.dll

windows10-2004-x64

3

HidServ.dll

windows10-2004-x64

1

HookDLL.dll

windows10-2004-x64

1

KbDaemon.exe

windows10-2004-x64

1

Analysis

max time kernel
95s
max time network
110s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
25/05/2024, 22:17

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Onn Setup20240320V1.0.0.8.08.exe

Resource

win10v2004-20240426-en

discovery persistence

windows10-2004-x64

16 signatures

120 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/BgWorker.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/nsNiuniuSkin.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/nsis7zU.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral6

Sample

CommFunc.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral7

Sample

DLL3S_UsbAudio16xx_Debug_x32.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral8

Sample

DLL3S_UsbAudio16xx_Debug_x64.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral9

Sample

DLL3S_UsbAudio16xx_x32.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral10

Sample

DLL3S_UsbAudio16xx_x64.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral11

Sample

Driver/CommFunc.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral12

Sample

Driver/DIFxAPI.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral13

Sample

Driver/DIFxCmd.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral14

Sample

Driver/HHTHidMouFiltr.sys

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral15

Sample

Driver/MouFiltr_Evi.sys

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral16

Sample

Driver/devcon.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral17

Sample

Driver/x64/DIFxAPI.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral18

Sample

Driver/x64/DIFxCmd.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral19

Sample

Driver/x64/Driver_Remove.bat

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral20

Sample

Driver/x64/Driver_Setup.bat

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

120 seconds

Behavioral task

behavioral21

Sample

Driver/x64/HHTHid.sys

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral22

Sample

Driver/x64/HHTHidMouFiltr.sys

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral23

Sample

Driver/x64/HidFiltr_Evi.sys

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral24

Sample

Driver/x64/InstallDriver_HHTHid.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

9 signatures

120 seconds

Behavioral task

behavioral25

Sample

Driver/x64/KbFiltr_Evi.sys

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral26

Sample

Driver/x64/MouFiltr_Evi.sys

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral27

Sample

Driver/x64/devcon.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Behavioral task

behavioral28

Sample

DrvInDll.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral29

Sample

DuiLib.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral30

Sample

HidServ.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

120 seconds

Behavioral task

behavioral31

Sample

HookDLL.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

120 seconds

Behavioral task

behavioral32

Sample

KbDaemon.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

120 seconds

Report Analysis Logs

General

Target

KbDaemon.exe
Size

3.1MB
MD5

b4423053e64aed215a2f77e39d972f4e
SHA1

6af6bc5ab896044334801b177746e2f0c2f2556f
SHA256

4dc0740495ae7e8e24059083682f75ee7ab02aa3a50cbff016928cd3648f7e30
SHA512

250dff2b45b03714a9aad9fe025bafdf0012819d041d3dfe9fe886fe5f47cf1d8a9673f26812671386c3205ac1868745b17faae76988980d0c9ffde85c4d80b4
SSDEEP

98304:SxhRDlx2BhHuYPSBpW6mjyp/R31jawxyx1OxXx0cY:iDT2nO9BpWrks1OxXx0X

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\KbDaemon.exe
"C:\Users\Admin\AppData\Local\Temp\KbDaemon.exe"
1⤵
PID:2384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy