Overview
overview
8Static
static
3Test.zip
windows7-x64
1Test.zip
windows10-2004-x64
1Loader.zip
windows7-x64
1Loader.zip
windows10-2004-x64
1D3DCompiler_43.dll
windows7-x64
1D3DCompiler_43.dll
windows10-2004-x64
1Loader.exe
windows7-x64
1Loader.exe
windows10-2004-x64
8d3dx10_43.dll
windows7-x64
1d3dx10_43.dll
windows10-2004-x64
1d3dx11_43.dll
windows7-x64
1d3dx11_43.dll
windows10-2004-x64
1d3dx9_43.dll
windows7-x64
1d3dx9_43.dll
windows10-2004-x64
1Visual-C-R...24.zip
windows7-x64
1Visual-C-R...24.zip
windows10-2004-x64
1install_all.bat
windows7-x64
7install_all.bat
windows10-2004-x64
7vcredist2005_x64.exe
windows7-x64
7vcredist2005_x64.exe
windows10-2004-x64
7vcredist2005_x86.exe
windows7-x64
7vcredist2005_x86.exe
windows10-2004-x64
7vcredist2008_x64.exe
windows7-x64
7vcredist2008_x64.exe
windows10-2004-x64
7vcredist2008_x86.exe
windows7-x64
7vcredist2008_x86.exe
windows10-2004-x64
7vcredist2010_x64.exe
windows7-x64
7vcredist2010_x64.exe
windows10-2004-x64
7vcredist2010_x86.exe
windows7-x64
7vcredist2010_x86.exe
windows10-2004-x64
7vcredist2012_x64.exe
windows7-x64
7vcredist2012_x64.exe
windows10-2004-x64
7Analysis
-
max time kernel
117s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
15-07-2024 17:26
Static task
static1
Behavioral task
behavioral1
Sample
Test.zip
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
Test.zip
Resource
win10v2004-20240709-en
Behavioral task
behavioral3
Sample
Loader.zip
Resource
win7-20240708-en
Behavioral task
behavioral4
Sample
Loader.zip
Resource
win10v2004-20240709-en
Behavioral task
behavioral5
Sample
D3DCompiler_43.dll
Resource
win7-20240708-en
Behavioral task
behavioral6
Sample
D3DCompiler_43.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral7
Sample
Loader.exe
Resource
win7-20240704-en
Behavioral task
behavioral8
Sample
Loader.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral9
Sample
d3dx10_43.dll
Resource
win7-20240708-en
Behavioral task
behavioral10
Sample
d3dx10_43.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral11
Sample
d3dx11_43.dll
Resource
win7-20240705-en
Behavioral task
behavioral12
Sample
d3dx11_43.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral13
Sample
d3dx9_43.dll
Resource
win7-20240704-en
Behavioral task
behavioral14
Sample
d3dx9_43.dll
Resource
win10v2004-20240709-en
Behavioral task
behavioral15
Sample
Visual-C-Runtimes-All-in-One-May-2024.zip
Resource
win7-20240704-en
Behavioral task
behavioral16
Sample
Visual-C-Runtimes-All-in-One-May-2024.zip
Resource
win10v2004-20240709-en
Behavioral task
behavioral17
Sample
install_all.bat
Resource
win7-20240708-en
Behavioral task
behavioral18
Sample
install_all.bat
Resource
win10v2004-20240709-en
Behavioral task
behavioral19
Sample
vcredist2005_x64.exe
Resource
win7-20240708-en
Behavioral task
behavioral20
Sample
vcredist2005_x64.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral21
Sample
vcredist2005_x86.exe
Resource
win7-20240705-en
Behavioral task
behavioral22
Sample
vcredist2005_x86.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral23
Sample
vcredist2008_x64.exe
Resource
win7-20240705-en
Behavioral task
behavioral24
Sample
vcredist2008_x64.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral25
Sample
vcredist2008_x86.exe
Resource
win7-20240704-en
Behavioral task
behavioral26
Sample
vcredist2008_x86.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral27
Sample
vcredist2010_x64.exe
Resource
win7-20240704-en
Behavioral task
behavioral28
Sample
vcredist2010_x64.exe
Resource
win10v2004-20240704-en
Behavioral task
behavioral29
Sample
vcredist2010_x86.exe
Resource
win7-20240704-en
Behavioral task
behavioral30
Sample
vcredist2010_x86.exe
Resource
win10v2004-20240709-en
Behavioral task
behavioral31
Sample
vcredist2012_x64.exe
Resource
win7-20240708-en
Behavioral task
behavioral32
Sample
vcredist2012_x64.exe
Resource
win10v2004-20240709-en
General
-
Target
D3DCompiler_43.dll
-
Size
2.4MB
-
MD5
d010ab113ed06bf6b42c7746ef395e21
-
SHA1
5d6b1763f38ffe6d70146e74e9abeae15e3fc35b
-
SHA256
ffedb064adc25328b24dcf145b04045a867a5574c931516d7845babf2a08937f
-
SHA512
0ca4656d0ea2af368b0f667dcfbbc819f8f1209cebba3e5a2bceb9b235e5443eb0452f0f0c3970b419fe6199d4d7cb7390a1f9cd46b689954f8e58ba9d0c2b9e
-
SSDEEP
49152:wf59zPxKcvHzDB6t3+C0/aJfyLg7Ie4Xy+5j4m2CTv:92642o7lftT
Malware Config
Signatures
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes:
rundll32.exedescription pid process target process PID 2356 wrote to memory of 2688 2356 rundll32.exe WerFault.exe PID 2356 wrote to memory of 2688 2356 rundll32.exe WerFault.exe PID 2356 wrote to memory of 2688 2356 rundll32.exe WerFault.exe