2ec26b0fdb3ae96007801291256877aecece612270397e662cd76f3357180fbf | Triage

Submit
Reports

Overview

overview

7

Static

static

3

4a8b011d11...18.exe

windows7-x64

7

4a8b011d11...18.exe

windows10-2004-x64

7

$0/uninstall.exe

windows7-x64

7

$0/uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$0/zwangie.dll

windows7-x64

1

$0/zwangie.dll

windows10-2004-x64

1

$0/zwangie.exe

windows7-x64

1

$0/zwangie.exe

windows10-2004-x64

1

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Analysis

max time kernel
149s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
15/07/2024, 16:47

Sharing

Copy URL Twitter E-mail

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

4a8b011d11e48dd612b6f9c46ee15aa0_JaffaCakes118.exe

Resource

win7-20240708-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

4a8b011d11e48dd612b6f9c46ee15aa0_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$0/uninstall.exe

Resource

win7-20240708-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral4

Sample

$0/uninstall.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240708-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

$0/zwangie.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

$0/zwangie.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

$0/zwangie.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

$0/zwangie.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win7-20240708-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

$0/zwangie.dll
Size

564KB
MD5

9bfcea946f646d7ccb09302211ed50fa
SHA1

c82129bf7c46308bc9847dd9ac5646e8a236a7b9
SHA256

68d2c631289df59dec93416aaff9c704968d42885bbe0827ec290c009e0f8291
SHA512

dd0c25e83bc922c3820b01a2c35603256ffd08c8e14ea2bbed4a8fd113a470311af0f6e980fb33eb73497cc4c091e36d90e2996d3884b5cc1fd936702d9337c5
SSDEEP

12288:NGI5eA8N+jNpybrCdA9LGzrrUVn/lZ6W5rGnk:QJAC+ebedA9cfoz6pk

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\$0\zwangie.dll,#1
1⤵
PID:2092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy