fc73a8d480e2df68af2397d5912ef89731c12534eba4d1050bba72d7e6696093 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

NekozRealistic.exe

windows10-1703-x64

9

$PLUGINSDI...er.dll

windows10-1703-x64

3

$PLUGINSDI...ls.dll

windows10-1703-x64

3

$PLUGINSDI...em.dll

windows10-1703-x64

3

$PLUGINSDI...ll.dll

windows10-1703-x64

3

LICENSES.c...m.html

windows10-1703-x64

4

NekozRealistic.exe

windows10-1703-x64

9

d3dcompiler_47.dll

windows10-1703-x64

1

ffmpeg.dll

windows10-1703-x64

1

libEGL.dll

windows10-1703-x64

1

libGLESv2.dll

windows10-1703-x64

1

resources/elevate.exe

windows10-1703-x64

3

vk_swiftshader.dll

windows10-1703-x64

1

vulkan-1.dll

windows10-1703-x64

1

$PLUGINSDI...ec.dll

windows10-1703-x64

3

$PLUGINSDI...7z.dll

windows10-1703-x64

3

$R0/Uninst...ic.exe

windows10-1703-x64

7

$PLUGINSDI...ls.dll

windows10-1703-x64

3

$PLUGINSDI...em.dll

windows10-1703-x64

3

$PLUGINSDI...ll.dll

windows10-1703-x64

3

$PLUGINSDI...ec.dll

windows10-1703-x64

3

Analysis

max time kernel
495s
max time network
1597s
platform
windows10-1703_x64
resource
win10-20240404-en
resource tags

arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
submitted
25/08/2024, 21:53

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

NekozRealistic.exe

Resource

win10-20240404-en

collection credential_access defense_evasion discovery execution persistence privilege_escalation spyware stealer

windows10-1703-x64

27 signatures

1800 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win10-20240404-en

windows10-1703-x64

2 signatures

1800 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/System.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral6

Sample

LICENSES.chromium.html

Resource

win10-20240404-en

windows10-1703-x64

7 signatures

1800 seconds

Behavioral task

behavioral7

Sample

NekozRealistic.exe

Resource

win10-20240404-en

collection credential_access defense_evasion discovery execution persistence privilege_escalation spyware stealer

windows10-1703-x64

23 signatures

1800 seconds

Behavioral task

behavioral8

Sample

d3dcompiler_47.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral9

Sample

ffmpeg.dll

Resource

win10-20240611-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral10

Sample

libEGL.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral11

Sample

libGLESv2.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral12

Sample

resources/elevate.exe

Resource

win10-20240404-en

windows10-1703-x64

1 signatures

1800 seconds

Behavioral task

behavioral13

Sample

vk_swiftshader.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral14

Sample

vulkan-1.dll

Resource

win10-20240404-en

windows10-1703-x64

0 signatures

1800 seconds

Behavioral task

behavioral15

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral16

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral17

Sample

$R0/Uninstall NekozRealistic.exe

Resource

win10-20240404-en

windows10-1703-x64

7 signatures

1800 seconds

Behavioral task

behavioral18

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral19

Sample

$PLUGINSDIR/System.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral20

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Behavioral task

behavioral21

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10-20240404-en

windows10-1703-x64

3 signatures

1800 seconds

Report Analysis Logs

General

Target

vulkan-1.dll
Size

931KB
MD5

bffe91743ec8bbd1b1c64e43f1363726
SHA1

fe863f1bd00b7cc952f359e98967989cf2f66566
SHA256

1d1f2f47c7369c9416705c4bdf5fd9235174bdcc065c9a85c8495101d8b60490
SHA512

881e79791408d60e994bb694ff7d81e1e12fbdbb4d47358067ac980380e07d67701fef72b65b6e0d4dd0ecc32cab2fd17fc5d2f0e9798bc3073c415efc0cd9ae
SSDEEP

24576:bYWOq/4Kt/Ku8n387ecbFb6Z5WoDYsHY6g3P0zAk7sx:bY65/M387R56Z5WoDYsHY6g3P0zAk7s

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\vulkan-1.dll,#1
1⤵
PID:1948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy