faca9623e7841c5634c17b56fa17d50a3c86eb9d2302b418563e3d26601343d3

Submit
Reports

Overview

overview

Static

static

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...64.dll

windows7-x64

_five-nuke...64.dll

windows10-2004-x64

_five-nuke...64.dll

windows7-x64

_five-nuke...64.dll

windows10-2004-x64

_five-nuke...64.dll

windows7-x64

_five-nuke...64.dll

windows10-2004-x64

_five-nuke...-3.dll

windows7-x64

_five-nuke...-3.dll

windows10-2004-x64

_five-nuke...-8.dll

windows7-x64

_five-nuke...-8.dll

windows10-2004-x64

_five-nuke...-3.dll

windows7-x64

_five-nuke...-3.dll

windows10-2004-x64

_five-nuke...64.dll

windows7-x64

Analysis

max time kernel
1693s
max time network
1143s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
07-08-2024 23:00

Sharing

Copy URL

Twitter E-mail

Static task

static1

pyinstaller

2 signatures

Behavioral task

behavioral1

Sample

_five-nuker-contents-dir/api-ms-win-core-string-l1-1-0.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

17 signatures

1800 seconds

Behavioral task

behavioral2

Sample

_five-nuker-contents-dir/api-ms-win-core-synch-l1-1-0.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

16 signatures

1800 seconds

Behavioral task

behavioral3

Sample

_five-nuker-contents-dir/api-ms-win-core-synch-l1-2-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral4

Sample

_five-nuker-contents-dir/api-ms-win-core-sysinfo-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral5

Sample

_five-nuker-contents-dir/api-ms-win-core-timezone-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral6

Sample

_five-nuker-contents-dir/api-ms-win-core-util-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral7

Sample

_five-nuker-contents-dir/api-ms-win-crt-conio-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral8

Sample

_five-nuker-contents-dir/api-ms-win-crt-convert-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

_five-nuker-contents-dir/api-ms-win-crt-environment-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

_five-nuker-contents-dir/api-ms-win-crt-filesystem-l1-1-0.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

21 signatures

1800 seconds

Behavioral task

behavioral11

Sample

_five-nuker-contents-dir/api-ms-win-crt-heap-l1-1-0.dll

Resource

win10v2004-20240802-en

wannacry defense_evasion discovery execution impact persistence ransomware spyware stealer worm

windows10-2004-x64

31 signatures

1800 seconds

Behavioral task

behavioral12

Sample

_five-nuker-contents-dir/api-ms-win-crt-locale-l1-1-0.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

7 signatures

1800 seconds

Behavioral task

behavioral13

Sample

_five-nuker-contents-dir/api-ms-win-crt-math-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

_five-nuker-contents-dir/api-ms-win-crt-process-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

_five-nuker-contents-dir/api-ms-win-crt-runtime-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral16

Sample

_five-nuker-contents-dir/api-ms-win-crt-stdio-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral17

Sample

_five-nuker-contents-dir/api-ms-win-crt-string-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral18

Sample

_five-nuker-contents-dir/api-ms-win-crt-time-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral19

Sample

_five-nuker-contents-dir/api-ms-win-crt-utility-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral20

Sample

_five-nuker-contents-dir/charset_normalizer/md.cp312-win_amd64.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral21

Sample

_five-nuker-contents-dir/charset_normalizer/md.cp312-win_amd64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral22

Sample

_five-nuker-contents-dir/charset_normalizer/md__mypyc.cp312-win_amd64.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral23

Sample

_five-nuker-contents-dir/charset_normalizer/md__mypyc.cp312-win_amd64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

_five-nuker-contents-dir/frozenlist/_frozenlist.cp312-win_amd64.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral25

Sample

_five-nuker-contents-dir/frozenlist/_frozenlist.cp312-win_amd64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral26

Sample

_five-nuker-contents-dir/libcrypto-3.dll

Resource

win7-20240708-en

windows7-x64

1 signatures

1800 seconds

Behavioral task

behavioral27

Sample

_five-nuker-contents-dir/libcrypto-3.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral28

Sample

_five-nuker-contents-dir/libffi-8.dll

Resource

win7-20240704-en

windows7-x64

1 signatures

1800 seconds

Behavioral task

behavioral29

Sample

_five-nuker-contents-dir/libffi-8.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral30

Sample

_five-nuker-contents-dir/libssl-3.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral31

Sample

_five-nuker-contents-dir/libssl-3.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral32

Sample

_five-nuker-contents-dir/multidict/_multidict.cp312-win_amd64.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

1800 seconds

Report Analysis Logs

General

Target

_five-nuker-contents-dir/api-ms-win-core-timezone-l1-1-0.dll
Size

14KB
MD5

683d6579333e3973206b54af6be2c5ea
SHA1

e9aebf6246633ead1750acbfaae4fdd6f767bec9
SHA256

c446925083f68506717f84e9303d1ac9394bd32c1d98087784499f103617f1d2
SHA512

858f87f00a28cf66215298673bbb8b4ef24ef7a160b932dfed421d4c5d78f469aea0c712d97cf154a264425137a25651d230a4137e1c6bdd4992096acf8370c7
SSDEEP

384:+W2hWdpZSf+VIYi+vlnU+3CAM+o/8E9VF0NyqWh:W7/Yi+tz3CAMxkEr

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\_five-nuker-contents-dir\api-ms-win-core-timezone-l1-1-0.dll,#1
1⤵
PID:4868

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads