374e9db03970819ede98056b34b84154992dabf5c401c9cd4d5280f5eafe9d02 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

374e9db039...02.exe

windows7-x64

7

374e9db039...02.exe

windows10-2004-x64

7

$0/Archive...64.dll

windows7-x64

1

$0/Archive...64.dll

windows10-2004-x64

1

$0/Microso...er.dll

windows7-x64

1

$0/Microso...er.dll

windows10-2004-x64

1

$0/RAVEndP...er.exe

windows7-x64

1

$0/RAVEndP...er.exe

windows10-2004-x64

1

$0/System....te.dll

windows7-x64

1

$0/System....te.dll

windows10-2004-x64

1

$0/System....le.dll

windows7-x64

1

$0/System....le.dll

windows10-2004-x64

1

$0/cs-CZ/R...es.dll

windows7-x64

1

$0/cs-CZ/R...es.dll

windows10-2004-x64

1

$0/da-DK/R...es.dll

windows7-x64

1

$0/da-DK/R...es.dll

windows10-2004-x64

1

$0/de-DE/R...es.dll

windows7-x64

1

$0/de-DE/R...es.dll

windows10-2004-x64

1

$0/de/Micr...es.dll

windows7-x64

1

$0/de/Micr...es.dll

windows10-2004-x64

1

$0/el-GR/R...es.dll

windows7-x64

1

$0/el-GR/R...es.dll

windows10-2004-x64

1

$0/es-ES/R...es.dll

windows7-x64

1

$0/es-ES/R...es.dll

windows10-2004-x64

1

$0/es/Micr...es.dll

windows7-x64

1

$0/es/Micr...es.dll

windows10-2004-x64

1

$0/fi-FI/R...es.dll

windows7-x64

1

$0/fi-FI/R...es.dll

windows10-2004-x64

1

$0/fil-PH/...es.dll

windows7-x64

1

$0/fil-PH/...es.dll

windows10-2004-x64

1

$0/fr-FR/R...es.dll

windows7-x64

1

$0/fr-FR/R...es.dll

windows10-2004-x64

1

Analysis

max time kernel
91s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
07-06-2024 07:33

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

374e9db03970819ede98056b34b84154992dabf5c401c9cd4d5280f5eafe9d02.exe

Resource

win7-20240508-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

374e9db03970819ede98056b34b84154992dabf5c401c9cd4d5280f5eafe9d02.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

$0/ArchiveUtilityx64.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

$0/ArchiveUtilityx64.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$0/Microsoft.Win32.TaskScheduler.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

$0/Microsoft.Win32.TaskScheduler.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

$0/RAVEndPointProtection-installer.exe

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$0/RAVEndPointProtection-installer.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

$0/System.Data.SQLite.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

$0/System.Data.SQLite.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

$0/System.ValueTuple.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

$0/System.ValueTuple.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

$0/cs-CZ/RavStub.resources.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

$0/cs-CZ/RavStub.resources.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

$0/da-DK/RavStub.resources.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

$0/da-DK/RavStub.resources.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

$0/de-DE/RavStub.resources.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

$0/de-DE/RavStub.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

$0/de/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

$0/de/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

$0/el-GR/RavStub.resources.dll

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

$0/el-GR/RavStub.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

$0/es-ES/RavStub.resources.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

$0/es-ES/RavStub.resources.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

$0/es/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

$0/es/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

$0/fi-FI/RavStub.resources.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$0/fi-FI/RavStub.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

$0/fil-PH/RavStub.resources.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

$0/fil-PH/RavStub.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

$0/fr-FR/RavStub.resources.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

$0/fr-FR/RavStub.resources.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

$0/el-GR/RavStub.resources.dll
Size

15KB
MD5

7a7ddf2e84d9f4d4d6a969104fe9a7d1
SHA1

c4b716ede6400c6022d8efc9606a7c8b40c661f3
SHA256

1a13e9b8c542763a050d4ed262586d756066f9f0e255cd58e50858fd4f970429
SHA512

38e9849ba31759c6549092655a2ccf152c3927dde9b8354eebf2a9561a1e473d33c3252e281a4bac0687f2b6d79f92313c1d7aeb59be4d25595d5e1798d15548
SSDEEP

384:kAWhBf+X6RExXZ4S5VKGieJVhzGJQvp3Er+PMvozT33s8M:rWRREBZ1w6p5PMvMb3s8M

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\$0\el-GR\RavStub.resources.dll,#1
1⤵
PID:720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy