9f83690b4ba738a40f8993645d5d02d3fda46041bf93a97cbde487fe09e3bb86 | Triage

Submit
Reports

Overview

overview

Static

static

EasyHook.dll

windows11-21h2-x64

1

EasyHook32.dll

windows11-21h2-x64

3

EasyHook32Svc.exe

windows11-21h2-x64

3

EasyHook64.dll

windows11-21h2-x64

1

EasyHook64Svc.exe

windows11-21h2-x64

1

EasyHookSvc.exe

windows11-21h2-x64

3

Ionic.Zip.Reduced.dll

windows11-21h2-x64

1

Jint.dll

windows11-21h2-x64

1

NAudio.dll

windows11-21h2-x64

1

Newtonsoft.Json.dll

windows11-21h2-x64

1

Nucleus.Gaming.dll

windows11-21h2-x64

1

Nucleus.Hook32.dll

windows11-21h2-x64

3

Nucleus.Hook64.dll

windows11-21h2-x64

1

Nucleus.IJx64.exe

windows11-21h2-x64

1

Nucleus.IJx86.exe

windows11-21h2-x64

3

Nucleus.SHook32.dll

windows11-21h2-x64

3

Nucleus.SHook64.dll

windows11-21h2-x64

1

NucleusCoop.exe

windows11-21h2-x64

3

ProtoInputHooks32.dll

windows11-21h2-x64

3

ProtoInputHooks64.dll

windows11-21h2-x64

1

ProtoInputHost.exe

windows11-21h2-x64

3

ProtoInputIJ32.exe

windows11-21h2-x64

3

ProtoInputIJ64.exe

windows11-21h2-x64

1

ProtoInputIJP32.dll

windows11-21h2-x64

3

ProtoInputIJP64.dll

windows11-21h2-x64

1

ProtoInput...32.dll

windows11-21h2-x64

3

ProtoInput...64.dll

windows11-21h2-x64

1

ProtoInput...32.dll

windows11-21h2-x64

3

ProtoInput...64.dll

windows11-21h2-x64

1

SharpDX.Di...ut.dll

windows11-21h2-x64

1

SharpDX.XInput.dll

windows11-21h2-x64

1

utils/x360..._3.dll

windows11-21h2-x64

3

Resubmissions

09-08-2024 06:22

240809-g5c3zs1ejc 10

Analysis

max time kernel
1393s
max time network
1155s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
09-08-2024 06:22

Sharing

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

EasyHook.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral2

Sample

EasyHook32.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral3

Sample

EasyHook32Svc.exe

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral4

Sample

EasyHook64.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral5

Sample

EasyHook64Svc.exe

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral6

Sample

EasyHookSvc.exe

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral7

Sample

Ionic.Zip.Reduced.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral8

Sample

Jint.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

NAudio.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

Newtonsoft.Json.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

Nucleus.Gaming.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

Nucleus.Hook32.dll

Resource

win11-20240802-en

windows11-21h2-x64

4 signatures

1800 seconds

Behavioral task

behavioral13

Sample

Nucleus.Hook64.dll

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral14

Sample

Nucleus.IJx64.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

Nucleus.IJx86.exe

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral16

Sample

Nucleus.SHook32.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral17

Sample

Nucleus.SHook64.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral18

Sample

NucleusCoop.exe

Resource

win11-20240802-en

windows11-21h2-x64

10 signatures

1800 seconds

Behavioral task

behavioral19

Sample

ProtoInputHooks32.dll

Resource

win11-20240802-en

windows11-21h2-x64

4 signatures

1800 seconds

Behavioral task

behavioral20

Sample

ProtoInputHooks64.dll

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral21

Sample

ProtoInputHost.exe

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral22

Sample

ProtoInputIJ32.exe

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral23

Sample

ProtoInputIJ64.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

ProtoInputIJP32.dll

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral25

Sample

ProtoInputIJP64.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral26

Sample

ProtoInputLoader32.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral27

Sample

ProtoInputLoader64.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral28

Sample

ProtoInputUtilDynamic32.dll

Resource

win11-20240802-en

windows11-21h2-x64

5 signatures

1800 seconds

Behavioral task

behavioral29

Sample

ProtoInputUtilDynamic64.dll

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral30

Sample

SharpDX.DirectInput.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral31

Sample

SharpDX.XInput.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral32

Sample

utils/x360ce/xinput1_3.dll

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Report Analysis Logs

General

Target

ProtoInputIJP64.dll
Size

273KB
MD5

19e05591e3c1ca307c983ac0bf3263c7
SHA1

7a6f4d917349b72ff6491b8d23017cb1c90b9498
SHA256

3fea85f4c2755f73f9ff6858bc1db64664accd8178f6261a88cf0a5fd9ed64aa
SHA512

1c133a641132921ca4fc4a43cd8cbe147d19ad325c1aec696361c024e2289b57f9d3fd7293df8771bdb0a05a2f9e7581912b56f94bc55100ae6ebabb37fccb7c
SSDEEP

3072:zRdp5+kzMgVRt9aRC8KgTOd2LSW20Jtv3zvQq5WO1e+iEY:7+ksRcgmuS63oFE

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\ProtoInputIJP64.dll,#1
1⤵
PID:4920

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy