6b8785d7d3dc581d1cfa19fbcd2b9fd11a914be94a85692f5c78b3984a1ce027 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

ScreenStyl...2).exe

windows10-2004-x64

7

$PLUGINSDI....1.exe

windows10-2004-x64

4

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/UAC.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

$PROGRAMFI...ck.dll

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...x.html

windows10-2004-x64

1

$PROGRAMFI...s.html

windows10-2004-x64

1

$PROGRAMFI...s.html

windows10-2004-x64

1

$PROGRAMFI...Ds.url

windows10-2004-x64

1

$PROGRAMFI...se.rtf

windows10-2004-x64

1

$PROGRAMFI...om.url

windows10-2004-x64

3

$PROGRAMFI...ck.dll

windows10-2004-x64

1

$PROGRAMFI...ck.exe

windows10-2004-x64

1

$PROGRAMFI...ug.exe

windows10-2004-x64

1

$PROGRAMFI...er.exe

windows10-2004-x64

1

$PROGRAMFI...us.dll

windows10-2004-x64

3

Uninstall ...er.exe

windows10-2004-x64

7

Analysis

max time kernel
443s
max time network
449s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
05/07/2024, 20:11

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ScreenStyler-Setup-0.2.3-preview+win (2).exe

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/Rainmeter-4.3.1.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

1 signatures

600 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/UAC.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral9

Sample

$PLUGINSDIR/nsProcess.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral10

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral11

Sample

$PROGRAMFILES/RocketDock/Docklets/RocketClock/RocketClock.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

1 signatures

600 seconds

Behavioral task

behavioral12

Sample

$PROGRAMFILES/RocketDock/Help/Chinese/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral13

Sample

$PROGRAMFILES/RocketDock/Help/Czech/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral14

Sample

$PROGRAMFILES/RocketDock/Help/English/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral15

Sample

$PROGRAMFILES/RocketDock/Help/French/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral16

Sample

$PROGRAMFILES/RocketDock/Help/German/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral17

Sample

$PROGRAMFILES/RocketDock/Help/Korean/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral18

Sample

$PROGRAMFILES/RocketDock/Help/Polish/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral19

Sample

$PROGRAMFILES/RocketDock/Help/Spanish/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral20

Sample

$PROGRAMFILES/RocketDock/Help/TraditionalChinese/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral21

Sample

$PROGRAMFILES/RocketDock/Help/Turkish/index.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral22

Sample

$PROGRAMFILES/RocketDock/Help/shared/languages.html

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral23

Sample

$PROGRAMFILES/RocketDock/Languages/Instructions.html

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

600 seconds

Behavioral task

behavioral24

Sample

$PROGRAMFILES/RocketDock/Languages/Language IDs.url

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

600 seconds

Behavioral task

behavioral25

Sample

$PROGRAMFILES/RocketDock/License.rtf

Resource

win10v2004-20240704-en

windows10-2004-x64

4 signatures

600 seconds

Behavioral task

behavioral26

Sample

$PROGRAMFILES/RocketDock/PunkSoftware.com.url

Resource

win10v2004-20240704-en

windows10-2004-x64

7 signatures

600 seconds

Behavioral task

behavioral27

Sample

$PROGRAMFILES/RocketDock/RocketDock.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

1 signatures

600 seconds

Behavioral task

behavioral28

Sample

$PROGRAMFILES/RocketDock/RocketDock.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral29

Sample

$PROGRAMFILES/RocketDock/Tools/Debug.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

600 seconds

Behavioral task

behavioral30

Sample

$PROGRAMFILES/RocketDock/Tools/LanguageID Finder.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

600 seconds

Behavioral task

behavioral31

Sample

$PROGRAMFILES/RocketDock/gdiplus.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

600 seconds

Behavioral task

behavioral32

Sample

Uninstall ScreenStyler.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

9 signatures

600 seconds

Report Analysis Logs

General

Target

$PROGRAMFILES/RocketDock/Tools/LanguageID Finder.exe
Size

6KB
MD5

b82aaa726515572389b145bcf725d214
SHA1

fe6511c976216a1550d6176668171932d6c76469
SHA256

2ddecba030b54596e7a8def55b19d2462e3f172f1877d2d821bf2e845013555f
SHA512

ced4e98f595b0f479b76846c2875224dff3c012dfa3c146de3c2232c68d90010745543fe2cb5264a69d639df2cff0d7eb55fd6ec53597fc273de935040850e8b
SSDEEP

96:r1psSb+yq4Jtzw/3FkFIqrZuvLLjHI14BqBmn3CZtZ:9++tzw/3FkKqrZuvLXHHV3CZtZ

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\$PROGRAMFILES\RocketDock\Tools\LanguageID Finder.exe
"C:\Users\Admin\AppData\Local\Temp\$PROGRAMFILES\RocketDock\Tools\LanguageID Finder.exe"
1⤵
PID:3380

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy