14f7b0c1994ddcb34f291f61db1c3a713c2785b489a160aeb273fe88a0d4ad81 | Triage

Submit
Reports

Overview

overview

6

Static

static

3

x64__insta...__.zip

windows7-x64

1

x64__insta...__.zip

windows10-2004-x64

1

__x64___se...__.zip

windows7-x64

1

__x64___se...__.zip

windows10-2004-x64

1

SettingMon...nv.dll

windows10-2004-x64

1

SettingMon...or.dll

windows10-2004-x64

1

SettingMon...vc.dll

windows10-2004-x64

1

SettingMon...df.dll

windows10-2004-x64

1

SettingSyn...nc.dll

windows10-2004-x64

1

SettingSyn...tr.dll

windows10-2004-x64

1

SettingSyn...el.dll

windows10-2004-x64

1

SettingSyn...lg.dll

windows10-2004-x64

1

dab/dab.dll

windows10-2004-x64

1

dab/diagperf.dll

windows10-2004-x64

1

dab/fcon.dll

windows10-2004-x64

1

dab/hal.dll

windows10-2004-x64

1

provcore/ReAgent.dll

windows10-2004-x64

1

provcore/msasn1.dll

windows10-2004-x64

1

provcore/n...er.dll

windows10-2004-x64

1

provcore/provcore.dll

windows10-2004-x64

1

setup.msi

windows7-x64

6

setup.msi

windows10-2004-x64

6

vmrdvcore/mssph.dll

windows10-2004-x64

1

vmrdvcore/...rs.dll

windows10-2004-x64

1

vmrdvcore/tapisrv.dll

windows10-2004-x64

1

vmrdvcore/...re.dll

windows10-2004-x64

1

password.jpg

windows7-x64

3

password.jpg

windows10-2004-x64

3

Resubmissions

08/07/2024, 05:31

240708-f72cxswhmc 7

08/07/2024, 05:21

240708-f192gsthql 6

08/07/2024, 05:17

240708-fy43fswemd 3

Analysis

max time kernel
416s
max time network
1144s
platform
windows10-2004_x64
resource
win10v2004-20240704-es
resource tags

arch:x64arch:x86image:win10v2004-20240704-eslocale:es-esos:windows10-2004-x64systemwindows
submitted
08/07/2024, 05:21

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

x64__installer___x32__.zip

Resource

win7-20240705-es

windows7-x64

0 signatures

1200 seconds

Behavioral task

behavioral2

Sample

x64__installer___x32__.zip

Resource

win10v2004-20240508-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral3

Sample

__x64___setup___x32__.zip

Resource

win7-20240705-es

windows7-x64

0 signatures

1200 seconds

Behavioral task

behavioral4

Sample

__x64___setup___x32__.zip

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral5

Sample

SettingMonitor/SessEnv.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral6

Sample

SettingMonitor/SettingMonitor.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral7

Sample

SettingMonitor/pnrpsvc.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral8

Sample

SettingMonitor/uudf.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral9

Sample

SettingSync/SettingSync.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral10

Sample

SettingSync/rasmontr.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral11

Sample

SettingSync/schannel.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral12

Sample

SettingSync/sppcommdlg.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral13

Sample

dab/dab.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral14

Sample

dab/diagperf.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral15

Sample

dab/fcon.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral16

Sample

dab/hal.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral17

Sample

provcore/ReAgent.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral18

Sample

provcore/msasn1.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral19

Sample

provcore/networkhelper.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral20

Sample

provcore/provcore.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral21

Sample

setup.msi

Resource

win7-20240704-es

persistence privilege_escalation

windows7-x64

9 signatures

1200 seconds

Behavioral task

behavioral22

Sample

setup.msi

Resource

win10v2004-20240704-es

persistence privilege_escalation

windows10-2004-x64

9 signatures

1200 seconds

Behavioral task

behavioral23

Sample

vmrdvcore/mssph.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral24

Sample

vmrdvcore/perfctrs.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral25

Sample

vmrdvcore/tapisrv.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral26

Sample

vmrdvcore/vmrdvcore.dll

Resource

win10v2004-20240704-es

windows10-2004-x64

0 signatures

1200 seconds

Behavioral task

behavioral27

Sample

password.jpg

Resource

win7-20240705-es

windows7-x64

2 signatures

1200 seconds

Behavioral task

behavioral28

Sample

password.jpg

Resource

win10v2004-20240704-es

windows10-2004-x64

1 signatures

1200 seconds

Report Analysis Logs

General

Target

SettingSync/SettingSync.dll
Size

696KB
MD5

dba5942d06d3f0c8e8157549810f98e3
SHA1

cbf39ba1e24776bd1d8cebfa75a6222da803cb40
SHA256

2d1883c92c08e406ff2fd77387201a6d9a5b11a0b9c40d17c2164f490ba78bf7
SHA512

7e626168328514659e0011c4819fa450526dd4811adf423810f7d2080ade86b7dfecde3699327c4dfdb4afc421237cfe028dafa2161a7bfb9c0c69d352c3fe44
SSDEEP

12288:UMZExH2M0Cl2d/4zvWtRSVzpyt0CrX9LXbzmrdQ2N5QS5b:ZWx0ClPuAEfXe5N5Q0

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\SettingSync\SettingSync.dll,#1
1⤵
PID:4664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy