374e9db03970819ede98056b34b84154992dabf5c401c9cd4d5280f5eafe9d02 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

374e9db039...02.exe

windows7-x64

7

374e9db039...02.exe

windows10-2004-x64

7

$0/Archive...64.dll

windows7-x64

1

$0/Archive...64.dll

windows10-2004-x64

1

$0/Microso...er.dll

windows7-x64

1

$0/Microso...er.dll

windows10-2004-x64

1

$0/RAVEndP...er.exe

windows7-x64

1

$0/RAVEndP...er.exe

windows10-2004-x64

1

$0/System....te.dll

windows7-x64

1

$0/System....te.dll

windows10-2004-x64

1

$0/System....le.dll

windows7-x64

1

$0/System....le.dll

windows10-2004-x64

1

$0/cs-CZ/R...es.dll

windows7-x64

1

$0/cs-CZ/R...es.dll

windows10-2004-x64

1

$0/da-DK/R...es.dll

windows7-x64

1

$0/da-DK/R...es.dll

windows10-2004-x64

1

$0/de-DE/R...es.dll

windows7-x64

1

$0/de-DE/R...es.dll

windows10-2004-x64

1

$0/de/Micr...es.dll

windows7-x64

1

$0/de/Micr...es.dll

windows10-2004-x64

1

$0/el-GR/R...es.dll

windows7-x64

1

$0/el-GR/R...es.dll

windows10-2004-x64

1

$0/es-ES/R...es.dll

windows7-x64

1

$0/es-ES/R...es.dll

windows10-2004-x64

1

$0/es/Micr...es.dll

windows7-x64

1

$0/es/Micr...es.dll

windows10-2004-x64

1

$0/fi-FI/R...es.dll

windows7-x64

1

$0/fi-FI/R...es.dll

windows10-2004-x64

1

$0/fil-PH/...es.dll

windows7-x64

1

$0/fil-PH/...es.dll

windows10-2004-x64

1

$0/fr-FR/R...es.dll

windows7-x64

1

$0/fr-FR/R...es.dll

windows10-2004-x64

1

Analysis

max time kernel
92s
max time network
148s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
07-06-2024 07:33

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

374e9db03970819ede98056b34b84154992dabf5c401c9cd4d5280f5eafe9d02.exe

Resource

win7-20240508-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

374e9db03970819ede98056b34b84154992dabf5c401c9cd4d5280f5eafe9d02.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

$0/ArchiveUtilityx64.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

$0/ArchiveUtilityx64.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$0/Microsoft.Win32.TaskScheduler.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

$0/Microsoft.Win32.TaskScheduler.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

$0/RAVEndPointProtection-installer.exe

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$0/RAVEndPointProtection-installer.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

$0/System.Data.SQLite.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

$0/System.Data.SQLite.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

$0/System.ValueTuple.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

$0/System.ValueTuple.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

$0/cs-CZ/RavStub.resources.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

$0/cs-CZ/RavStub.resources.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

$0/da-DK/RavStub.resources.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

$0/da-DK/RavStub.resources.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

$0/de-DE/RavStub.resources.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

$0/de-DE/RavStub.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

$0/de/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

$0/de/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

$0/el-GR/RavStub.resources.dll

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

$0/el-GR/RavStub.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

$0/es-ES/RavStub.resources.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

$0/es-ES/RavStub.resources.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

$0/es/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

$0/es/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

$0/fi-FI/RavStub.resources.dll

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$0/fi-FI/RavStub.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

$0/fil-PH/RavStub.resources.dll

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

$0/fil-PH/RavStub.resources.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

$0/fr-FR/RavStub.resources.dll

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

$0/fr-FR/RavStub.resources.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

$0/fi-FI/RavStub.resources.dll
Size

12KB
MD5

e9072b811e18aa6d14997a344a88de0d
SHA1

94b59dbce0e242415b543e8e16857968eccb7dda
SHA256

6e92a2027ba180074cd183652e3ba6074fc9d1103a7af0abb05d21230b0785b5
SHA512

dc905cc7a48926eaf5886db0a17c03914b113661e1247e72beaae224a1a2c668529c542a367b21b51bee6f486c590dab7b6d6b132635aea1a00de682ccabf425
SSDEEP

192:KAWZ5VctwGeJszihxP5jrDd0WONMy9RPVEF3F4x3LSjVwzrJzfPWCiqxskBbHUic:KAWnVctwnOihxP5jrDd0WONMy9pVEpFH

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\$0\fi-FI\RavStub.resources.dll,#1
1⤵
PID:1976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy