4ab756f03eb0b4b9a9440403bafe4bc4f37d418555dc2e40ef451aa87dd5176b | Triage

Submit
Reports

Overview

overview

Static

static

3

Solyum-def...ens.py

windows7-x64

3

Solyum-def...ens.py

windows10-2004-x64

3

Solyum-def...ot.exe

windows7-x64

Solyum-def...ot.exe

windows10-2004-x64

Solyum-def...fig.py

windows7-x64

3

Solyum-def...fig.py

windows10-2004-x64

3

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...32.dll

windows10-2004-x64

1

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...api.py

windows7-x64

3

Solyum-def...api.py

windows10-2004-x64

3

Solyum-defibot/sol.py

windows7-x64

3

Solyum-defibot/sol.py

windows10-2004-x64

3

Solyum-def...ies.py

windows7-x64

3

Solyum-def...ies.py

windows10-2004-x64

3

Solyum-def...bot.py

windows7-x64

3

Solyum-def...bot.py

windows10-2004-x64

3

Analysis

max time kernel
91s
max time network
125s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
08/07/2024, 15:00

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Solyum-defibot/BuyTokens.py

Resource

win7-20240704-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Solyum-defibot/BuyTokens.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

Solyum-defibot/Solyum-Defibot.exe

Resource

win7-20240704-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral4

Sample

Solyum-defibot/Solyum-Defibot.exe

Resource

win10v2004-20240704-en

discovery spyware stealer

windows10-2004-x64

15 signatures

150 seconds

Behavioral task

behavioral5

Sample

Solyum-defibot/config.py

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral6

Sample

Solyum-defibot/config.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

Solyum-defibot/en-GB/helppane.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Solyum-defibot/en-GB/hh.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Solyum-defibot/en-GB/twain_32.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Solyum-defibot/en-GB/winhlp32.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Solyum-defibot/en-US/bfsvc.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Solyum-defibot/en-US/regedit.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Solyum-defibot/exchange_api.py

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

Solyum-defibot/exchange_api.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

Solyum-defibot/sol.py

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral16

Sample

Solyum-defibot/sol.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral17

Sample

Solyum-defibot/strategies.py

Resource

win7-20240708-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral18

Sample

Solyum-defibot/strategies.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

Solyum-defibot/trading_bot.py

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral20

Sample

Solyum-defibot/trading_bot.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

Solyum-defibot/en-GB/helppane.exe.dll
Size

9KB
MD5

929f36ee929bbb04b86112291ea975c5
SHA1

ab2d970cc4ad52abeeda0b70dcd3792a96c68406
SHA256

fe2939c16e9bc9f91faf5d61085f9b91301f9eb1392239f032e0bddf4d1bad24
SHA512

db9c86c29bc30242e5f7810cb883ba43bd6070c81503f81dc3803e8e730530910784faa4ac12b430d3898c39db0c91593c9bc0b923f99a178fc495e3aa022482
SSDEEP

96:Ukh3Wm2GvqdJxWkQKMWFNXLl8XOfVjzERB2KAJzXkWzEEwF3Bl3gkxGtylPn3PnF:BhmPz9XLbV0ezUW4EG3BMWhUJW/

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Solyum-defibot\en-GB\helppane.exe.dll,#1
1⤵
PID:1116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy