Overview

overview

7

Static

static

1

6fae566b41...18.exe

windows7-x64

7

6fae566b41...18.exe

windows10-2004-x64

7

mcffplg.dll

windows7-x64

3

mcffplg.dll

windows10-2004-x64

3

saffplg.js

windows7-x64

3

saffplg.js

windows10-2004-x64

3

mcieplg.dll

windows7-x64

6

mcieplg.dll

windows10-2004-x64

3

x64/mcieplg.dll

windows7-x64

7

x64/mcieplg.dll

windows10-2004-x64

1

$TEMP/$_0_...st.exe

windows7-x64

$TEMP/$_0_...st.exe

windows10-2004-x64

$TEMP/$_0_...ui.dll

windows7-x64

1

$TEMP/$_0_...ui.dll

windows10-2004-x64

1

$TEMP/$_0_...ns.dll

windows7-x64

1

$TEMP/$_0_...ns.dll

windows10-2004-x64

1

mcsacins.dll

windows7-x64

3

mcsacins.dll

windows10-2004-x64

3

saInst.exe

windows7-x64

7

saInst.exe

windows10-2004-x64

7

$TEMP/$_0_...st.exe

windows7-x64

$TEMP/$_0_...st.exe

windows10-2004-x64

mcbrwctl.dll

windows7-x64

3

mcbrwctl.dll

windows10-2004-x64

3

mcsacore.exe

windows7-x64

3

mcsacore.exe

windows10-2004-x64

3

mcsacoreps.dll

windows7-x64

3

mcsacoreps.dll

windows10-2004-x64

3

saupkeep.dll

windows7-x64

3

saupkeep.dll

windows10-2004-x64

3

uninstall.exe

windows7-x64

3

uninstall.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    150s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/07/2024, 13:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    x64/mcieplg.dll

  • Size

    195KB

  • MD5

    86da25bfc5d1094755f31d54aa41e85e

  • SHA1

    542900d98fe53e739af61e0680198ca0d28521e3

  • SHA256

    06a6d77b686fad1925f29f06f36bd1ead7389b3dbd3bb7707db2d30d47c3af5d

  • SHA512

    cd347204470e13720315991b8af400119bb3524e459b055176e2f073af42b8b1eb1bd899e67ea3f528f33abb1fccfbc0d82c15da44a45a405d8a94ca93f4b80a

  • SSDEEP

    3072:71wfYylR1s/isFssMD6f0lanFxXFgIVyh/IdBTldzId4XegmaCF5ucG0rK:71+H1s/I2f0laiMy5IBZ6Fmclu

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\regsvr32.exe
    regsvr32 /s C:\Users\Admin\AppData\Local\Temp\x64\mcieplg.dll
    1⤵
      PID:3088

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads