4ab756f03eb0b4b9a9440403bafe4bc4f37d418555dc2e40ef451aa87dd5176b | Triage

Submit
Reports

Overview

overview

Static

static

3

Solyum-def...ens.py

windows7-x64

3

Solyum-def...ens.py

windows10-2004-x64

3

Solyum-def...ot.exe

windows7-x64

Solyum-def...ot.exe

windows10-2004-x64

Solyum-def...fig.py

windows7-x64

3

Solyum-def...fig.py

windows10-2004-x64

3

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...32.dll

windows10-2004-x64

1

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...xe.dll

windows10-2004-x64

1

Solyum-def...api.py

windows7-x64

3

Solyum-def...api.py

windows10-2004-x64

3

Solyum-defibot/sol.py

windows7-x64

3

Solyum-defibot/sol.py

windows10-2004-x64

3

Solyum-def...ies.py

windows7-x64

3

Solyum-def...ies.py

windows10-2004-x64

3

Solyum-def...bot.py

windows7-x64

3

Solyum-def...bot.py

windows10-2004-x64

3

Analysis

max time kernel
93s
max time network
100s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
08/07/2024, 15:00

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Solyum-defibot/BuyTokens.py

Resource

win7-20240704-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Solyum-defibot/BuyTokens.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

Solyum-defibot/Solyum-Defibot.exe

Resource

win7-20240704-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral4

Sample

Solyum-defibot/Solyum-Defibot.exe

Resource

win10v2004-20240704-en

discovery spyware stealer

windows10-2004-x64

15 signatures

150 seconds

Behavioral task

behavioral5

Sample

Solyum-defibot/config.py

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral6

Sample

Solyum-defibot/config.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

Solyum-defibot/en-GB/helppane.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Solyum-defibot/en-GB/hh.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Solyum-defibot/en-GB/twain_32.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Solyum-defibot/en-GB/winhlp32.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Solyum-defibot/en-US/bfsvc.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Solyum-defibot/en-US/regedit.exe.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Solyum-defibot/exchange_api.py

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

Solyum-defibot/exchange_api.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

Solyum-defibot/sol.py

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral16

Sample

Solyum-defibot/sol.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral17

Sample

Solyum-defibot/strategies.py

Resource

win7-20240708-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral18

Sample

Solyum-defibot/strategies.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

Solyum-defibot/trading_bot.py

Resource

win7-20240705-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral20

Sample

Solyum-defibot/trading_bot.py

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

Solyum-defibot/en-GB/twain_32.dll
Size

6KB
MD5

5652dfb9a4cbf00e225f7b488d5b2671
SHA1

6a3bd24b388fdd747d0eccc4e099081b494545d2
SHA256

c73d4968b14bebda6582b40cd009b9e2410587308b174b5de6a0b7831257cb78
SHA512

560e79f12be4ea406a8a5e4726e8da4cf852cb9199faed3b91cfdbf6ae04b0ab951012fffae234d8e5b391e91c944f8dc98dd04779bf3ce6b2895f6b91d84a6a
SSDEEP

96:DOqPatY0y78mXatY0yAwHCtyxilA+XwU1gaDnFT:DOqPmmX79Xh05

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Solyum-defibot\en-GB\twain_32.dll,#1
1⤵
PID:3536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy