95dbd294f511335bb0b368c487abe48e8d72aa4b165cba94d32cef71a5e46916 | Triage

Submit
Reports

Overview

overview

Static

static

3

sandboxie-5-69-6.exe

windows11-21h2-x64

$PLUGINSDI...ns.dll

windows11-21h2-x64

$PLUGINSDI...il.exe

windows11-21h2-x64

$PLUGINSDI...LL.dll

windows11-21h2-x64

8

$PLUGINSDI...ll.dll

windows11-21h2-x64

1

$PLUGINSDI...sg.dll

windows11-21h2-x64

1

$PLUGINSDI...em.dll

windows11-21h2-x64

3

32/SbieDll.dll

windows11-21h2-x64

3

32/SbieSvc.exe

windows11-21h2-x64

3

KmdUtil.exe

windows11-21h2-x64

1

SandboxieBITS.exe

windows11-21h2-x64

1

SandboxieCrypto.exe

windows11-21h2-x64

1

SandboxieD...ch.exe

windows11-21h2-x64

8

SandboxieRpcSs.exe

windows11-21h2-x64

1

SandboxieWUAU.exe

windows11-21h2-x64

1

SbieCtrl.exe

windows11-21h2-x64

1

SbieDll.dll

windows11-21h2-x64

1

SbieDrv.sys

windows11-21h2-x64

1

SbieIni.exe

windows11-21h2-x64

1

SbieMsg.dll

windows11-21h2-x64

1

SbieSvc.exe

windows11-21h2-x64

1

SboxHostDll.dll

windows11-21h2-x64

1

Start.exe

windows11-21h2-x64

1

UpdUtil.exe

windows11-21h2-x64

1

whatsnew.html

windows11-21h2-x64

3

Analysis

max time kernel
1470s
max time network
1475s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
21-08-2024 19:34

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

sandboxie-5-69-6.exe

Resource

win11-20240802-en

defense_evasion discovery

windows11-21h2-x64

23 signatures

1800 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win11-20240802-en

defense_evasion discovery evasion persistence privilege_escalation upx

windows11-21h2-x64

28 signatures

1800 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/KmdUtil.exe

Resource

win11-20240802-en

dharma fantom mimikatz bootkit credential_access defense_evasion discovery evasion execution impact persistence ransomware spyware stealer

windows11-21h2-x64

40 signatures

1800 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/LangDLL.dll

Resource

win11-20240802-en

defense_evasion discovery evasion persistence ransomware

windows11-21h2-x64

23 signatures

1800 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/SbieDll.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/SbieMsg.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral8

Sample

32/SbieDll.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral9

Sample

32/SbieSvc.exe

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral10

Sample

KmdUtil.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

SandboxieBITS.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

SandboxieCrypto.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral13

Sample

SandboxieDcomLaunch.exe

Resource

win11-20240802-en

defense_evasion discovery

windows11-21h2-x64

15 signatures

1800 seconds

Behavioral task

behavioral14

Sample

SandboxieRpcSs.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

SandboxieWUAU.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral16

Sample

SbieCtrl.exe

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral17

Sample

SbieDll.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral18

Sample

SbieDrv.sys

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral19

Sample

SbieIni.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral20

Sample

SbieMsg.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral21

Sample

SbieSvc.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral22

Sample

SboxHostDll.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral23

Sample

Start.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

UpdUtil.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral25

Sample

whatsnew.html

Resource

win11-20240802-en

windows11-21h2-x64

7 signatures

1800 seconds

Report Analysis Logs

General

Target

SbieMsg.dll
Size

3.1MB
MD5

63bde85df787585f487821ad8b9d1de2
SHA1

99fcd7ccd5da5d8a48acf4cb1cc52181478796f2
SHA256

4085a022d44870f2ddd420268eb557129f93ab876fe283e1a0cef1cb96340d7a
SHA512

03d810131f35deb5651a2c5eaeb2b110a2abca50b2095b48cec6829b20430b315560be28466c473c9f2905ea70a1f2dd1bfbf495b692075708d110a71d240e4d
SSDEEP

12288:fV5RMirS8WYUv5wOeniSsI2fT61y5RXvPtuVDOxApT2k0PCps:NBxOengIc61y5RXvPkVDM1

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\SbieMsg.dll,#1
1⤵
PID:984

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy