Overview

overview

7

Static

static

3

eulen-chea...er.exe

windows11-21h2-x64

7

eulen-chea...se.dll

windows11-21h2-x64

1

Analysis

  • max time kernel
    146s
  • max time network
    151s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240508-en
  • resource tags

    arch:x64arch:x86image:win11-20240508-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    28-06-2024 15:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eulen-cheate-fivem-main/Loader.exe

  • Size

    576KB

  • MD5

    f1a4c690564f491ad4f7fc8ce79e2fc3

  • SHA1

    cc16274baae2af0c614566d56b693774fe892168

  • SHA256

    0a3555b2ab1f76066c496eb43ebc520c82824a22cfcb714a75c5edc1ad99d88a

  • SHA512

    f7a1116b889493c079000847f5517e9149d5dce703b85b1520ad1d4810c575500aab47460a6e0d7e266fa5ef70ba10d4b625587725251734404913844897e180

  • SSDEEP

    12288:bwl4OwitTdBZpKfSTUNe/RhCEIX7RIiZmWJyGpfxd8KR0F7Br1dfPDWUw+b5/xgo:bwDdtTdBZISTACRhCE+Gi1yG

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetThreadContext 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 36 IoCs
  • Suspicious use of WriteProcessMemory 8 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\eulen-cheate-fivem-main\Loader.exe
    "C:\Users\Admin\AppData\Local\Temp\eulen-cheate-fivem-main\Loader.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetThreadContext
    • Suspicious use of WriteProcessMemory
    PID:1700
    • C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe
      "C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe"
      2⤵
      • Suspicious use of AdjustPrivilegeToken
      PID:3404

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\d3d9.dll
    Filesize

    799KB

    MD5

    5c79d44ff8563412dce1bb36626781d6

    SHA1

    a13da89b3ec6becd64e1a5aa2780bde27b4bc467

    SHA256

    ecea21c9c2bd359747693dc3d34db8338547fdae7f06739336daa3d826a85135

    SHA512

    25e594e2526e76307f67ebec73bb3c8d96fc4a4b170d8fdffead41b798a00ede67e0fbe3e3d99b54ce424c356a10a262312149d84d76c8248464b135c7cd3d18

    Download Submit

  • memory/1700-13-0x0000000075270000-0x00000000752D6000-memory.dmp

    Filesize

    408KB

    Download

  • memory/1700-1-0x0000000000F00000-0x0000000000F9A000-memory.dmp

    Filesize

    616KB

    Download

  • memory/1700-2-0x0000000001A60000-0x0000000001A66000-memory.dmp

    Filesize

    24KB

    Download

  • memory/1700-0-0x000000007488E000-0x000000007488F000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1700-11-0x0000000074880000-0x0000000075031000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/1700-12-0x0000000074880000-0x0000000075031000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/3404-9-0x0000000000400000-0x00000000004AE000-memory.dmp

    Filesize

    696KB

    Download

  • memory/3404-14-0x0000000074880000-0x0000000075031000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/3404-15-0x0000000005DD0000-0x0000000006376000-memory.dmp

    Filesize

    5.6MB

    Download

  • memory/3404-16-0x0000000005960000-0x00000000059F2000-memory.dmp

    Filesize

    584KB

    Download

  • memory/3404-17-0x00000000058F0000-0x00000000058FA000-memory.dmp

    Filesize

    40KB

    Download

  • memory/3404-18-0x0000000074880000-0x0000000075031000-memory.dmp

    Filesize

    7.7MB

    Download

  • memory/3404-19-0x0000000008F40000-0x0000000009558000-memory.dmp

    Filesize

    6.1MB

    Download

  • memory/3404-20-0x0000000008A90000-0x0000000008B9A000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/3404-21-0x00000000089D0000-0x00000000089E2000-memory.dmp

    Filesize

    72KB

    Download

  • memory/3404-22-0x0000000008A30000-0x0000000008A6C000-memory.dmp

    Filesize

    240KB

    Download

  • memory/3404-23-0x0000000008BA0000-0x0000000008BEC000-memory.dmp

    Filesize

    304KB

    Download

  • memory/3404-24-0x0000000074880000-0x0000000075031000-memory.dmp

    Filesize

    7.7MB

    Download