Overview
overview
8Static
static
3apnetwork_...14.exe
windows7-x64
7apnetwork_...14.exe
windows10-2004-x64
7$PLUGINSDI...ls.dll
windows7-x64
3$PLUGINSDI...ls.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDIR/UAC.dll
windows7-x64
3$PLUGINSDIR/UAC.dll
windows10-2004-x64
3$PLUGINSDI...ll.dll
windows7-x64
3$PLUGINSDI...ll.dll
windows10-2004-x64
3????.exe
windows7-x64
8????.exe
windows10-2004-x64
8LICENSES.c...m.html
windows7-x64
1LICENSES.c...m.html
windows10-2004-x64
1d3dcompiler_47.dll
windows10-2004-x64
3ffmpeg.dll
windows7-x64
1ffmpeg.dll
windows10-2004-x64
1libEGL.dll
windows7-x64
1libEGL.dll
windows10-2004-x64
1libGLESv2.dll
windows7-x64
3libGLESv2.dll
windows10-2004-x64
3resources/elevate.exe
windows7-x64
1resources/elevate.exe
windows10-2004-x64
1resources/...rt.dll
windows7-x64
1resources/...rt.dll
windows10-2004-x64
1resources/...32.sys
windows10-2004-x64
1resources/...64.sys
windows10-2004-x64
1resources/...ce.exe
windows7-x64
1resources/...ce.exe
windows10-2004-x64
1resources/...un.dll
windows7-x64
3resources/...un.dll
windows10-2004-x64
3swiftshade...GL.dll
windows7-x64
1Analysis
-
max time kernel
142s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20240611-en -
resource tags
arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system -
submitted
03-07-2024 04:52
Static task
static1
Behavioral task
behavioral1
Sample
apnetwork_Setup_0.0.14.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
apnetwork_Setup_0.0.14.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/StdUtils.dll
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/StdUtils.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240419-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
$PLUGINSDIR/UAC.dll
Resource
win7-20240508-en
Behavioral task
behavioral8
Sample
$PLUGINSDIR/UAC.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral9
Sample
$PLUGINSDIR/WinShell.dll
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
$PLUGINSDIR/WinShell.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
????.exe
Resource
win7-20240220-en
Behavioral task
behavioral12
Sample
????.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral13
Sample
LICENSES.chromium.html
Resource
win7-20240508-en
Behavioral task
behavioral14
Sample
LICENSES.chromium.html
Resource
win10v2004-20240508-en
Behavioral task
behavioral15
Sample
d3dcompiler_47.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral16
Sample
ffmpeg.dll
Resource
win7-20240221-en
Behavioral task
behavioral17
Sample
ffmpeg.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral18
Sample
libEGL.dll
Resource
win7-20240611-en
Behavioral task
behavioral19
Sample
libEGL.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral20
Sample
libGLESv2.dll
Resource
win7-20240419-en
Behavioral task
behavioral21
Sample
libGLESv2.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral22
Sample
resources/elevate.exe
Resource
win7-20240508-en
Behavioral task
behavioral23
Sample
resources/elevate.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral24
Sample
resources/extraResources/WinDivert.dll
Resource
win7-20231129-en
Behavioral task
behavioral25
Sample
resources/extraResources/WinDivert.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral26
Sample
resources/extraResources/WinDivert32.sys
Resource
win10v2004-20240611-en
Behavioral task
behavioral27
Sample
resources/extraResources/WinDivert64.sys
Resource
win10v2004-20240508-en
Behavioral task
behavioral28
Sample
resources/extraResources/apn_service.exe
Resource
win7-20240508-en
Behavioral task
behavioral29
Sample
resources/extraResources/apn_service.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral30
Sample
resources/extraResources/wintun.dll
Resource
win7-20240611-en
Behavioral task
behavioral31
Sample
resources/extraResources/wintun.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral32
Sample
swiftshader/libEGL.dll
Resource
win7-20231129-en
General
-
Target
ffmpeg.dll
-
Size
2.5MB
-
MD5
df465dee9ea3d7de433b9d1bcdb63572
-
SHA1
8ab9e68b4f472715177c45992cb2d7c40dec7a6a
-
SHA256
1a49d1d4b536101a94844e95479803d4f792f2fb41af98a0d0532006546fc9bf
-
SHA512
82d1e4ce427a8e987c3e84991126510883110d6f73b082b78180077a2d149eb1e0b6511f9659a8a5843f74d554daac9445373e98ede2b4b717126022e8493823
-
SSDEEP
49152:GtGX4mOrucp9DHNj8CvJhAbEfvWyZOjpP:sGobp9DHNVvJhAAfCdP
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
rundll32.exedescription pid process target process PID 1600 wrote to memory of 1536 1600 rundll32.exe rundll32.exe PID 1600 wrote to memory of 1536 1600 rundll32.exe rundll32.exe PID 1600 wrote to memory of 1536 1600 rundll32.exe rundll32.exe