d4008eb38d10ae27765fa344785fdcb2e34d372d85578e406fc43f74d4f257a7 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

LinearWhitelist.exe

windows10-1703-x64

7

Linear_Loader.exe

windows10-1703-x64

7

$PLUGINSDI...ls.dll

windows10-1703-x64

3

$PLUGINSDI...em.dll

windows10-1703-x64

3

LICENSES.c...m.html

windows10-1703-x64

1

d3dcompiler_47.dll

windows10-1703-x64

1

ffmpeg.dll

windows10-1703-x64

1

libEGL.dll

windows10-1703-x64

1

libGLESv2.dll

windows10-1703-x64

1

resources/elevate.exe

windows10-1703-x64

1

runtimebroker.exe

windows10-1703-x64

7

vk_swiftshader.dll

windows10-1703-x64

1

vulkan-1.dll

windows10-1703-x64

1

$PLUGINSDI...7z.dll

windows10-1703-x64

3

Analysis

max time kernel
311s
max time network
1589s
platform
windows10-1703_x64
resource
win10-20240404-en
resource tags

arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
submitted
30-06-2024 15:08

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

LinearWhitelist.exe

Resource

win10-20240404-en

spyware stealer

windows10-1703-x64

11 signatures

1800 seconds

Behavioral task

behavioral2

Sample

Linear_Loader.exe

Resource

win10-20240404-en

spyware stealer

windows10-1703-x64

11 signatures

1800 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10-20240404-en

windows10-1703-x64

2 signatures

1800 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/System.dll

Resource

win10-20240404-en

windows10-1703-x64

2 signatures

1800 seconds

Behavioral task

behavioral5

Sample

LICENSES.chromium.html

Resource

win10-20240404-en

windows10-1703-x64

8 signatures

1800 seconds

Behavioral task

behavioral6

Sample

d3dcompiler_47.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral7

Sample

ffmpeg.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral8

Sample

libEGL.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

libGLESv2.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

resources/elevate.exe

Resource

win10-20240611-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

runtimebroker.exe

Resource

win10-20240404-en

spyware stealer

windows10-1703-x64

9 signatures

1800 seconds

Behavioral task

behavioral12

Sample

vk_swiftshader.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral13

Sample

vulkan-1.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win10-20240404-en

windows10-1703-x64

2 signatures

1800 seconds

Report Analysis Logs

General

Target

vulkan-1.dll
Size

899KB
MD5

7fdd1bec727e2b389c8ca84c407446c6
SHA1

a91343d9f52883325f52f28c5dd142f4ae07b3ef
SHA256

d04035c59f49444bd3cafd71296afd70bad5daa6e28bf5d7de3ffd0e36a85938
SHA512

2fdd95185507be9bcbf6cfe1f05ba47e71203b1dc3ce4cc1553e5fcfb576ab89bf018a8927fc5e6e451b00f56f7abb5f2efd504e1a674b42dbe80deeb13d669a
SSDEEP

24576:/R9nl1crwjLAQw6Z5WUDYsH56g3P0zAk7:/R1l1culw6Z5WUDYsH56g3P0zAk7

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\vulkan-1.dll,#1
1⤵
PID:316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy