Resubmissions
16-06-2024 21:02
240616-zveg6s1hll 9Analysis
-
max time kernel
262s -
max time network
271s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system -
submitted
16-06-2024 21:02
Behavioral task
behavioral1
Sample
Poderes mágicos V4/Vape v4/Kangaroo Patcher.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
Poderes mágicos V4/Vape v4/Kangaroo Patcher.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
Poderes mágicos V4/Vape v4/Kangaroo.dll
Resource
win7-20240611-en
Behavioral task
behavioral4
Sample
Poderes mágicos V4/Vape v4/Kangaroo.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
Poderes mágicos V4/Vape v4/Vape_V4.exe
Resource
win7-20240508-en
General
-
Target
Poderes mágicos V4/Vape v4/Kangaroo.dll
-
Size
37KB
-
MD5
0d20c7671e3ac37e06c45463a662f5ce
-
SHA1
6340fd8c7e4b8a7d1971cf696729a17f1a55e055
-
SHA256
c954784ce0758429d67356d5402dea1873e4ca4b02c1bdb549e628eab380b081
-
SHA512
e3df39848674403809ad17d7e4009090cdf1973db757a3bf2610845c5bef403fdf86b46ba50415bb585f047f497940b3993fb508406c4e9de049a00203b4f3d8
-
SSDEEP
768:uvIDGix5UKUQ5Pscf6utGsBp3Zua/HOx:uADuKUWsNCBpbu
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
rundll32.exepid process 672 rundll32.exe 672 rundll32.exe