a24c03e63449db0f994c715115c7648e88182888305be3554ef8f9a9215a0501 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

PolyMC-Win....1.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows10-2004-x64

1

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

$PLUGINSDI...gs.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows10-2004-x64

1

iconengine...on.dll

windows10-2004-x64

1

imageformats/qgif.dll

windows10-2004-x64

1

imageforma...ns.dll

windows10-2004-x64

1

imageformats/qico.dll

windows10-2004-x64

1

imageformats/qjp2.dll

windows10-2004-x64

1

imageforma...eg.dll

windows10-2004-x64

1

imageformats/qsvg.dll

windows10-2004-x64

1

imageforma...mp.dll

windows10-2004-x64

1

imageforma...bp.dll

windows10-2004-x64

1

jars/JavaCheck.jar

windows10-2004-x64

1

jars/NewLaunch.jar

windows10-2004-x64

1

libb2-1.dll

windows10-2004-x64

1

libbrotlicommon.dll

windows10-2004-x64

1

libbrotlidec.dll

windows10-2004-x64

1

libbz2-1.dll

windows10-2004-x64

1

libdouble-...on.dll

windows10-2004-x64

1

libgraphite2.dll

windows10-2004-x64

1

libharfbuzz-0.dll

windows10-2004-x64

1

libjasper.dll

windows10-2004-x64

1

libstdc++-6.dll

windows10-2004-x64

1

libwebp-7.dll

windows10-2004-x64

1

platforms/...ws.dll

windows10-2004-x64

1

polymc.exe

windows10-2004-x64

7

qt.conf

windows10-2004-x64

3

tls/qcerto...nd.dll

windows10-2004-x64

1

tls/qopens...nd.dll

windows10-2004-x64

1

tls/qschan...nd.dll

windows10-2004-x64

1

Analysis

max time kernel
142s
max time network
162s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
28-07-2024 23:16

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

PolyMC-Windows-Setup-6.1.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/modern-wizard.bmp

Resource

win10v2004-20240709-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

iconengines/qsvgicon.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

imageformats/qgif.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

imageformats/qicns.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

imageformats/qico.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

imageformats/qjp2.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

imageformats/qjpeg.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

imageformats/qsvg.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

imageformats/qwbmp.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

imageformats/qwebp.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

jars/JavaCheck.jar

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

jars/NewLaunch.jar

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

libb2-1.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

libbrotlicommon.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

libbrotlidec.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

libbz2-1.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

libdouble-conversion.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

libgraphite2.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

libharfbuzz-0.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

libjasper.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

libstdc++-6.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

libwebp-7.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

platforms/qwindows.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

polymc.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral29

Sample

qt.conf

Resource

win10v2004-20240709-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

tls/qcertonlybackend.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

tls/qopensslbackend.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

tls/qschannelbackend.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

libdouble-conversion.dll
Size

70KB
MD5

39fba801753d680cefa21b7f1dff4582
SHA1

831c0ef18e969a03a478975eda217c52d779a49a
SHA256

e7f82f105503d961d2f83b92c05fff29e6e788c185f8acf7cdbdda20fc14247b
SHA512

f5fa92aa58c8776891f4a62666a4af68546d881a5610d6df745fea4286ca1a5eeb35e835aefc4e6e8b9d1a52d00fdec4c632e435e1f865f06d6f14228400eb93
SSDEEP

1536:UvOBkYKcJGxx4KYaGEkBY5eF3kAjE2m/EZ7vAGF33:JBkTxmKYxBYMPjE2m/67vJF33

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\libdouble-conversion.dll,#1
1⤵
PID:3808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3808-2-0x00007FFE457E0000-0x00007FFE457F6000-memory.dmp

Filesize
88KB

Download
memory/3808-3-0x00007FFE31C30000-0x00007FFE31E5E000-memory.dmp

Filesize
2.2MB

Download
memory/3808-1-0x00007FFE415D0000-0x00007FFE415F4000-memory.dmp

Filesize
144KB

Download
memory/3808-0-0x00007FFE47050000-0x00007FFE4706A000-memory.dmp

Filesize
104KB

Download

© 2018-2024

Terms | Privacy