Overview

overview

3

Static

static

3

China/Bypass.dll

windows11-21h2-x64

1

China/Cheat.dll

windows11-21h2-x64

1

China/Launcher.exe

windows11-21h2-x64

3

Global/Bypass.dll

windows11-21h2-x64

1

Global/Cheat.dll

windows11-21h2-x64

1

Global/Launcher.exe

windows11-21h2-x64

3

Resubmissions

02/08/2024, 15:31

240802-sx1d4azckm 3

02/08/2024, 15:28

240802-swnnxazbpm 3

02/08/2024, 15:27

240802-svrdeavajf 3

Analysis

  • max time kernel
    34s
  • max time network
    38s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240730-en
  • resource tags

    arch:x64arch:x86image:win11-20240730-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    02/08/2024, 15:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    China/Cheat.dll

  • Size

    425KB

  • MD5

    04027a3e39cd8cfa29b81aea1471dac1

  • SHA1

    5c1d50e8039e3eb87740143828a0895fc12c853d

  • SHA256

    f5b678ecee88c18e58d4ebe4ebc2f6f210a0ceb594463afbcd83707672552bc4

  • SHA512

    b8966a586d3a7fbea9c1babb3614271c884488270a89f3db75e89413d3105f2705be111cb52a5aabff6329cb37f1df07409009816b42707e35592d4aceed99d0

  • SSDEEP

    6144:OGDFXyb3iSA8Vo6EHrWT60EnrqEi9n6xoRLtLO2iVE0yVV0a0N+nWFumPIwcuP3a:OGDJAAMoBFCEouvVENVWam+nbm9pF

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\China\Cheat.dll,#1
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:5044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/5044-1-0x00007FF7FCC50000-0x00007FF7FCC60000-memory.dmp

    Filesize

    64KB

    Download

  • memory/5044-0-0x00007FF7FCC50000-0x00007FF7FCC60000-memory.dmp

    Filesize

    64KB

    Download