faca9623e7841c5634c17b56fa17d50a3c86eb9d2302b418563e3d26601343d3

Submit
Reports

Overview

overview

Static

static

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...-0.dll

windows10-2004-x64

_five-nuke...64.dll

windows7-x64

_five-nuke...64.dll

windows10-2004-x64

_five-nuke...64.dll

windows7-x64

_five-nuke...64.dll

windows10-2004-x64

_five-nuke...64.dll

windows7-x64

_five-nuke...64.dll

windows10-2004-x64

_five-nuke...-3.dll

windows7-x64

_five-nuke...-3.dll

windows10-2004-x64

_five-nuke...-8.dll

windows7-x64

_five-nuke...-8.dll

windows10-2004-x64

_five-nuke...-3.dll

windows7-x64

_five-nuke...-3.dll

windows10-2004-x64

_five-nuke...64.dll

windows7-x64

Analysis

max time kernel
1366s
max time network
1162s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
07-08-2024 23:00

Sharing

Copy URL

Twitter E-mail

Static task

static1

pyinstaller

2 signatures

Behavioral task

behavioral1

Sample

_five-nuker-contents-dir/api-ms-win-core-string-l1-1-0.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

17 signatures

1800 seconds

Behavioral task

behavioral2

Sample

_five-nuker-contents-dir/api-ms-win-core-synch-l1-1-0.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

16 signatures

1800 seconds

Behavioral task

behavioral3

Sample

_five-nuker-contents-dir/api-ms-win-core-synch-l1-2-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral4

Sample

_five-nuker-contents-dir/api-ms-win-core-sysinfo-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral5

Sample

_five-nuker-contents-dir/api-ms-win-core-timezone-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral6

Sample

_five-nuker-contents-dir/api-ms-win-core-util-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral7

Sample

_five-nuker-contents-dir/api-ms-win-crt-conio-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral8

Sample

_five-nuker-contents-dir/api-ms-win-crt-convert-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

_five-nuker-contents-dir/api-ms-win-crt-environment-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

_five-nuker-contents-dir/api-ms-win-crt-filesystem-l1-1-0.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

21 signatures

1800 seconds

Behavioral task

behavioral11

Sample

_five-nuker-contents-dir/api-ms-win-crt-heap-l1-1-0.dll

Resource

win10v2004-20240802-en

wannacry defense_evasion discovery execution impact persistence ransomware spyware stealer worm

windows10-2004-x64

31 signatures

1800 seconds

Behavioral task

behavioral12

Sample

_five-nuker-contents-dir/api-ms-win-crt-locale-l1-1-0.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

7 signatures

1800 seconds

Behavioral task

behavioral13

Sample

_five-nuker-contents-dir/api-ms-win-crt-math-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

_five-nuker-contents-dir/api-ms-win-crt-process-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

_five-nuker-contents-dir/api-ms-win-crt-runtime-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral16

Sample

_five-nuker-contents-dir/api-ms-win-crt-stdio-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral17

Sample

_five-nuker-contents-dir/api-ms-win-crt-string-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral18

Sample

_five-nuker-contents-dir/api-ms-win-crt-time-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral19

Sample

_five-nuker-contents-dir/api-ms-win-crt-utility-l1-1-0.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral20

Sample

_five-nuker-contents-dir/charset_normalizer/md.cp312-win_amd64.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral21

Sample

_five-nuker-contents-dir/charset_normalizer/md.cp312-win_amd64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral22

Sample

_five-nuker-contents-dir/charset_normalizer/md__mypyc.cp312-win_amd64.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral23

Sample

_five-nuker-contents-dir/charset_normalizer/md__mypyc.cp312-win_amd64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

_five-nuker-contents-dir/frozenlist/_frozenlist.cp312-win_amd64.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral25

Sample

_five-nuker-contents-dir/frozenlist/_frozenlist.cp312-win_amd64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral26

Sample

_five-nuker-contents-dir/libcrypto-3.dll

Resource

win7-20240708-en

windows7-x64

1 signatures

1800 seconds

Behavioral task

behavioral27

Sample

_five-nuker-contents-dir/libcrypto-3.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral28

Sample

_five-nuker-contents-dir/libffi-8.dll

Resource

win7-20240704-en

windows7-x64

1 signatures

1800 seconds

Behavioral task

behavioral29

Sample

_five-nuker-contents-dir/libffi-8.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral30

Sample

_five-nuker-contents-dir/libssl-3.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

1800 seconds

Behavioral task

behavioral31

Sample

_five-nuker-contents-dir/libssl-3.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

1800 seconds

Behavioral task

behavioral32

Sample

_five-nuker-contents-dir/multidict/_multidict.cp312-win_amd64.dll

Resource

win7-20240704-en

windows7-x64

0 signatures

1800 seconds

Report Analysis Logs

General

Target

_five-nuker-contents-dir/api-ms-win-core-util-l1-1-0.dll
Size

14KB
MD5

ce7dd30935c79f2bbde1e8c605c281d0
SHA1

089b003848f210f0ed7ff558bc725fee6bf8150b
SHA256

977313dbcaa38a2901fb9c0ac718713f6dc66c6218a8d4bf458b71e7df4af642
SHA512

06a8e9491476b82a0cb6142fa3ff503ff0fbcb452d515519a4216046d618ab92322c43c5a90b67d26db084e5be343be5fee31bc4ab1cd2a94a565e0f43d363b3
SSDEEP

384:3W2hWzZSf+VIYi+vuAM+o/8E9VF0NyIvz:Jb/Yi+2AMxkE6r

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\_five-nuker-contents-dir\api-ms-win-core-util-l1-1-0.dll,#1
1⤵
PID:2376

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads