9f83690b4ba738a40f8993645d5d02d3fda46041bf93a97cbde487fe09e3bb86 | Triage

Submit
Reports

Overview

overview

Static

static

EasyHook.dll

windows11-21h2-x64

1

EasyHook32.dll

windows11-21h2-x64

3

EasyHook32Svc.exe

windows11-21h2-x64

3

EasyHook64.dll

windows11-21h2-x64

1

EasyHook64Svc.exe

windows11-21h2-x64

1

EasyHookSvc.exe

windows11-21h2-x64

3

Ionic.Zip.Reduced.dll

windows11-21h2-x64

1

Jint.dll

windows11-21h2-x64

1

NAudio.dll

windows11-21h2-x64

1

Newtonsoft.Json.dll

windows11-21h2-x64

1

Nucleus.Gaming.dll

windows11-21h2-x64

1

Nucleus.Hook32.dll

windows11-21h2-x64

3

Nucleus.Hook64.dll

windows11-21h2-x64

1

Nucleus.IJx64.exe

windows11-21h2-x64

1

Nucleus.IJx86.exe

windows11-21h2-x64

3

Nucleus.SHook32.dll

windows11-21h2-x64

3

Nucleus.SHook64.dll

windows11-21h2-x64

1

NucleusCoop.exe

windows11-21h2-x64

3

ProtoInputHooks32.dll

windows11-21h2-x64

3

ProtoInputHooks64.dll

windows11-21h2-x64

1

ProtoInputHost.exe

windows11-21h2-x64

3

ProtoInputIJ32.exe

windows11-21h2-x64

3

ProtoInputIJ64.exe

windows11-21h2-x64

1

ProtoInputIJP32.dll

windows11-21h2-x64

3

ProtoInputIJP64.dll

windows11-21h2-x64

1

ProtoInput...32.dll

windows11-21h2-x64

3

ProtoInput...64.dll

windows11-21h2-x64

1

ProtoInput...32.dll

windows11-21h2-x64

3

ProtoInput...64.dll

windows11-21h2-x64

1

SharpDX.Di...ut.dll

windows11-21h2-x64

1

SharpDX.XInput.dll

windows11-21h2-x64

1

utils/x360..._3.dll

windows11-21h2-x64

3

Resubmissions

09-08-2024 06:22

240809-g5c3zs1ejc 10

Analysis

max time kernel
1466s
max time network
1474s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
09-08-2024 06:22

Sharing

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

EasyHook.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral2

Sample

EasyHook32.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral3

Sample

EasyHook32Svc.exe

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral4

Sample

EasyHook64.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral5

Sample

EasyHook64Svc.exe

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral6

Sample

EasyHookSvc.exe

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral7

Sample

Ionic.Zip.Reduced.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral8

Sample

Jint.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

NAudio.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

Newtonsoft.Json.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

Nucleus.Gaming.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

Nucleus.Hook32.dll

Resource

win11-20240802-en

windows11-21h2-x64

4 signatures

1800 seconds

Behavioral task

behavioral13

Sample

Nucleus.Hook64.dll

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral14

Sample

Nucleus.IJx64.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

Nucleus.IJx86.exe

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral16

Sample

Nucleus.SHook32.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral17

Sample

Nucleus.SHook64.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral18

Sample

NucleusCoop.exe

Resource

win11-20240802-en

windows11-21h2-x64

10 signatures

1800 seconds

Behavioral task

behavioral19

Sample

ProtoInputHooks32.dll

Resource

win11-20240802-en

windows11-21h2-x64

4 signatures

1800 seconds

Behavioral task

behavioral20

Sample

ProtoInputHooks64.dll

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral21

Sample

ProtoInputHost.exe

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral22

Sample

ProtoInputIJ32.exe

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral23

Sample

ProtoInputIJ64.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

ProtoInputIJP32.dll

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral25

Sample

ProtoInputIJP64.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral26

Sample

ProtoInputLoader32.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral27

Sample

ProtoInputLoader64.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral28

Sample

ProtoInputUtilDynamic32.dll

Resource

win11-20240802-en

windows11-21h2-x64

5 signatures

1800 seconds

Behavioral task

behavioral29

Sample

ProtoInputUtilDynamic64.dll

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Behavioral task

behavioral30

Sample

SharpDX.DirectInput.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral31

Sample

SharpDX.XInput.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral32

Sample

utils/x360ce/xinput1_3.dll

Resource

win11-20240802-en

windows11-21h2-x64

2 signatures

1800 seconds

Report Analysis Logs

General

Target

ProtoInputLoader64.dll
Size

668KB
MD5

264f495bbece87c95a3c95de1469f60f
SHA1

b5f546d4fd29f6c79d3662b2f1323fe4d84d2c99
SHA256

2568264ab25fb83298ce3430d102c2934d627eec178ebcee0f83b73a6d241bdd
SHA512

f8503c44a8e06df81c69790d7bcc74f79448d77c6d9574b00df9dad9e58263bc2e3a505bf42324a66bec6d8b6abba1e1012a75a42ea0ef57efd215ec9bdb458c
SSDEEP

6144:SeVSUeqUDUShwA7OL1V6VE9uitypvVAzItSIPPorzohlpgviEDbufSQG:SlISSrD6VdiEDGItqrzoqv5

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\ProtoInputLoader64.dll,#1
1⤵
PID:1800

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy