95dbd294f511335bb0b368c487abe48e8d72aa4b165cba94d32cef71a5e46916 | Triage

Submit
Reports

Overview

overview

Static

static

3

sandboxie-5-69-6.exe

windows11-21h2-x64

$PLUGINSDI...ns.dll

windows11-21h2-x64

$PLUGINSDI...il.exe

windows11-21h2-x64

$PLUGINSDI...LL.dll

windows11-21h2-x64

8

$PLUGINSDI...ll.dll

windows11-21h2-x64

1

$PLUGINSDI...sg.dll

windows11-21h2-x64

1

$PLUGINSDI...em.dll

windows11-21h2-x64

3

32/SbieDll.dll

windows11-21h2-x64

3

32/SbieSvc.exe

windows11-21h2-x64

3

KmdUtil.exe

windows11-21h2-x64

1

SandboxieBITS.exe

windows11-21h2-x64

1

SandboxieCrypto.exe

windows11-21h2-x64

1

SandboxieD...ch.exe

windows11-21h2-x64

8

SandboxieRpcSs.exe

windows11-21h2-x64

1

SandboxieWUAU.exe

windows11-21h2-x64

1

SbieCtrl.exe

windows11-21h2-x64

1

SbieDll.dll

windows11-21h2-x64

1

SbieDrv.sys

windows11-21h2-x64

1

SbieIni.exe

windows11-21h2-x64

1

SbieMsg.dll

windows11-21h2-x64

1

SbieSvc.exe

windows11-21h2-x64

1

SboxHostDll.dll

windows11-21h2-x64

1

Start.exe

windows11-21h2-x64

1

UpdUtil.exe

windows11-21h2-x64

1

whatsnew.html

windows11-21h2-x64

3

Analysis

max time kernel
1464s
max time network
1477s
platform
windows11-21h2_x64
resource
win11-20240802-en
resource tags

arch:x64arch:x86image:win11-20240802-enlocale:en-usos:windows11-21h2-x64system
submitted
21-08-2024 19:34

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

sandboxie-5-69-6.exe

Resource

win11-20240802-en

defense_evasion discovery

windows11-21h2-x64

23 signatures

1800 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win11-20240802-en

defense_evasion discovery evasion persistence privilege_escalation upx

windows11-21h2-x64

28 signatures

1800 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/KmdUtil.exe

Resource

win11-20240802-en

dharma fantom mimikatz bootkit credential_access defense_evasion discovery evasion execution impact persistence ransomware spyware stealer

windows11-21h2-x64

40 signatures

1800 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/LangDLL.dll

Resource

win11-20240802-en

defense_evasion discovery evasion persistence ransomware

windows11-21h2-x64

23 signatures

1800 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/SbieDll.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/SbieMsg.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral8

Sample

32/SbieDll.dll

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral9

Sample

32/SbieSvc.exe

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

1800 seconds

Behavioral task

behavioral10

Sample

KmdUtil.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

SandboxieBITS.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

SandboxieCrypto.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral13

Sample

SandboxieDcomLaunch.exe

Resource

win11-20240802-en

defense_evasion discovery

windows11-21h2-x64

15 signatures

1800 seconds

Behavioral task

behavioral14

Sample

SandboxieRpcSs.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

SandboxieWUAU.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral16

Sample

SbieCtrl.exe

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

1800 seconds

Behavioral task

behavioral17

Sample

SbieDll.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral18

Sample

SbieDrv.sys

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral19

Sample

SbieIni.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral20

Sample

SbieMsg.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral21

Sample

SbieSvc.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral22

Sample

SboxHostDll.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral23

Sample

Start.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral24

Sample

UpdUtil.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

1800 seconds

Behavioral task

behavioral25

Sample

whatsnew.html

Resource

win11-20240802-en

windows11-21h2-x64

7 signatures

1800 seconds

Report Analysis Logs

General

Target

UpdUtil.exe
Size

176KB
MD5

86e73288b35b3e7d0eecc24da40688cb
SHA1

ba9351e0609512e8f5c241ba825cafe0b097a34d
SHA256

4bd8f6a3be85eaa48f834ac0709b42b6d42cce6f782dfba21003250c252b4e60
SHA512

5ed510d81d3f91d4cda6e372a67690a4aedc5cfc359e5078ef7095ac15577d97e1845b2d8fbe7084272e1e60974887bd45168c5a55bf5e83ee09f67844ac529d
SSDEEP

3072:ovOfAOS07g7exWKAn6BD9WUjYAC4ZMHmE9Fb1HTWKOtmVhd3c:kOG7qD9WU8AC4Zwd1zYMrc

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\UpdUtil.exe
"C:\Users\Admin\AppData\Local\Temp\UpdUtil.exe"
1⤵
PID:3576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy