a24c03e63449db0f994c715115c7648e88182888305be3554ef8f9a9215a0501 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

PolyMC-Win....1.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows10-2004-x64

1

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

$PLUGINSDI...gs.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows10-2004-x64

1

iconengine...on.dll

windows10-2004-x64

1

imageformats/qgif.dll

windows10-2004-x64

1

imageforma...ns.dll

windows10-2004-x64

1

imageformats/qico.dll

windows10-2004-x64

1

imageformats/qjp2.dll

windows10-2004-x64

1

imageforma...eg.dll

windows10-2004-x64

1

imageformats/qsvg.dll

windows10-2004-x64

1

imageforma...mp.dll

windows10-2004-x64

1

imageforma...bp.dll

windows10-2004-x64

1

jars/JavaCheck.jar

windows10-2004-x64

1

jars/NewLaunch.jar

windows10-2004-x64

1

libb2-1.dll

windows10-2004-x64

1

libbrotlicommon.dll

windows10-2004-x64

1

libbrotlidec.dll

windows10-2004-x64

1

libbz2-1.dll

windows10-2004-x64

1

libdouble-...on.dll

windows10-2004-x64

1

libgraphite2.dll

windows10-2004-x64

1

libharfbuzz-0.dll

windows10-2004-x64

1

libjasper.dll

windows10-2004-x64

1

libstdc++-6.dll

windows10-2004-x64

1

libwebp-7.dll

windows10-2004-x64

1

platforms/...ws.dll

windows10-2004-x64

1

polymc.exe

windows10-2004-x64

7

qt.conf

windows10-2004-x64

3

tls/qcerto...nd.dll

windows10-2004-x64

1

tls/qopens...nd.dll

windows10-2004-x64

1

tls/qschan...nd.dll

windows10-2004-x64

1

Analysis

max time kernel
145s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
28-07-2024 23:16

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

PolyMC-Windows-Setup-6.1.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/modern-wizard.bmp

Resource

win10v2004-20240709-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

iconengines/qsvgicon.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

imageformats/qgif.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

imageformats/qicns.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

imageformats/qico.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

imageformats/qjp2.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

imageformats/qjpeg.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

imageformats/qsvg.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

imageformats/qwbmp.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

imageformats/qwebp.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

jars/JavaCheck.jar

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

jars/NewLaunch.jar

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

libb2-1.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

libbrotlicommon.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

libbrotlidec.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

libbz2-1.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

libdouble-conversion.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

libgraphite2.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

libharfbuzz-0.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

libjasper.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

libstdc++-6.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

libwebp-7.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

platforms/qwindows.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

polymc.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral29

Sample

qt.conf

Resource

win10v2004-20240709-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

tls/qcertonlybackend.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

tls/qopensslbackend.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

tls/qschannelbackend.dll

Resource

win10v2004-20240704-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

tls/qschannelbackend.dll
Size

229KB
MD5

1de4437a527b30d27328c2044e9718d1
SHA1

366cba4dfa3afc8f01c5486b6b80d545389a7b66
SHA256

863f8e6bb77c6c36553af6cd62da5442254a889da81bcdc3033e2f12ff1578e3
SHA512

27dada25c2a8ad8c52e7c5f40bb9a3f32a595e14994087eac276ec16fcdfa1eb406f797d954d5f50e66ff99b25be2facf61c2d5b4b7faa359940bfb1c1a9dd71
SSDEEP

3072:nH98mbJYzEaMnKhEjhs/4bMCjSzCzXowJsAf9P2/ntRgtDFhHYEzjvW38Al70LWE:nH9xaQKXbmDFrW38FWEC5OlvA8qgvo2

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\tls\qschannelbackend.dll,#1
1⤵
PID:3096

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy