Overview

overview

6

Static

static

3

x64__insta...__.zip

windows7-x64

1

x64__insta...__.zip

windows10-2004-x64

1

__x64___se...__.zip

windows7-x64

1

__x64___se...__.zip

windows10-2004-x64

1

SettingMon...nv.dll

windows10-2004-x64

1

SettingMon...or.dll

windows10-2004-x64

1

SettingMon...vc.dll

windows10-2004-x64

1

SettingMon...df.dll

windows10-2004-x64

1

SettingSyn...nc.dll

windows10-2004-x64

1

SettingSyn...tr.dll

windows10-2004-x64

1

SettingSyn...el.dll

windows10-2004-x64

1

SettingSyn...lg.dll

windows10-2004-x64

1

dab/dab.dll

windows10-2004-x64

1

dab/diagperf.dll

windows10-2004-x64

1

dab/fcon.dll

windows10-2004-x64

1

dab/hal.dll

windows10-2004-x64

1

provcore/ReAgent.dll

windows10-2004-x64

1

provcore/msasn1.dll

windows10-2004-x64

1

provcore/n...er.dll

windows10-2004-x64

1

provcore/provcore.dll

windows10-2004-x64

1

setup.msi

windows7-x64

6

setup.msi

windows10-2004-x64

6

vmrdvcore/mssph.dll

windows10-2004-x64

1

vmrdvcore/...rs.dll

windows10-2004-x64

1

vmrdvcore/tapisrv.dll

windows10-2004-x64

1

vmrdvcore/...re.dll

windows10-2004-x64

1

password.jpg

windows7-x64

3

password.jpg

windows10-2004-x64

3

Resubmissions

08/07/2024, 05:31

240708-f72cxswhmc 7

08/07/2024, 05:21

240708-f192gsthql 6

08/07/2024, 05:17

240708-fy43fswemd 3

Analysis

  • max time kernel
    85s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-es
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-eslocale:es-esos:windows10-2004-x64systemwindows
  • submitted
    08/07/2024, 05:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    vmrdvcore/tapisrv.dll

  • Size

    309KB

  • MD5

    20ceaece4ecdebc89c82f1998696d596

  • SHA1

    c5d390d27b4859bd9cf267b539ad80b04bc78328

  • SHA256

    439559de34be096824cb70a97524e843ce2802092a9c882167f4cb08fe9664a7

  • SHA512

    a057dfffa9a7752b4747cbcf3db62c1eb7d54826f56932b21f8c097037a93c8d745151c4a7fbd114826b6a708f17b556d8125d513b407933e736434e6a868222

  • SSDEEP

    6144:6X4cpoiSX8F/u6/1YbCtgRUSXEF1LLWdYiL6aosUJ4P3yzbsYo:bcpoidFfYbCW7UF1LLWqmZY

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\vmrdvcore\tapisrv.dll,#1
    1⤵
      PID:2084

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads