347a37180aff88da754c58afd5f956f7b353524029fa11090ccc45f926260444 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

CryptMP La...L].rar

windows10-2004-x64

3

CryptMP La...L].rar

windows11-21h2-x64

3

CryptMP La...ls.dll

windows10-2004-x64

1

CryptMP La...ls.dll

windows11-21h2-x64

1

CryptMP La...pf.dll

windows10-2004-x64

1

CryptMP La...pf.dll

windows11-21h2-x64

1

CryptMP La...ct.dll

windows10-2004-x64

1

CryptMP La...ct.dll

windows11-21h2-x64

1

CryptMP La...s.json

windows10-2004-x64

3

CryptMP La...s.json

windows11-21h2-x64

3

CryptMP La...yp.exe

windows10-2004-x64

1

CryptMP La...yp.exe

windows11-21h2-x64

1

CryptMP La...config

windows10-2004-x64

3

CryptMP La...config

windows11-21h2-x64

3

CryptMP La...yp.exe

windows10-2004-x64

1

CryptMP La...yp.exe

windows11-21h2-x64

1

CryptMP La...g.json

windows10-2004-x64

3

CryptMP La...g.json

windows11-21h2-x64

3

Analysis

max time kernel
140s
max time network
129s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
25/08/2024, 09:07

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

CryptMP Launcher [STARFALL DLL].rar

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

CryptMP Launcher [STARFALL DLL].rar

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

CryptMP Launcher [STARFALL DLL]/ModernWpf.Controls.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

CryptMP Launcher [STARFALL DLL]/ModernWpf.Controls.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

CryptMP Launcher [STARFALL DLL]/ModernWpf.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

CryptMP Launcher [STARFALL DLL]/ModernWpf.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

CryptMP Launcher [STARFALL DLL]/Redirect.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

CryptMP Launcher [STARFALL DLL]/Redirect.dll

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

CryptMP Launcher [STARFALL DLL]/cryp.deps.json

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

CryptMP Launcher [STARFALL DLL]/cryp.deps.json

Resource

win11-20240802-en

windows11-21h2-x64

4 signatures

150 seconds

Behavioral task

behavioral11

Sample

CryptMP Launcher [STARFALL DLL]/cryp.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

CryptMP Launcher [STARFALL DLL]/cryp.exe

Resource

win11-20240802-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

CryptMP Launcher [STARFALL DLL]/cryp.dll.config

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral14

Sample

CryptMP Launcher [STARFALL DLL]/cryp.dll.config

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

CryptMP Launcher [STARFALL DLL]/cryp.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

CryptMP Launcher [STARFALL DLL]/cryp.exe

Resource

win11-20240802-en

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

CryptMP Launcher [STARFALL DLL]/cryp.runtimeconfig.json

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral18

Sample

CryptMP Launcher [STARFALL DLL]/cryp.runtimeconfig.json

Resource

win11-20240802-en

windows11-21h2-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

CryptMP Launcher [STARFALL DLL]/ModernWpf.dll
Size

1.5MB
MD5

d920ef07aeae9efe2da177db857117c4
SHA1

ab3d2834c5f602fff995c79d075f0e3371ef5eba
SHA256

15950333b0d6d01c11976095aef7e8da1ddcbaa22b9e5e63b009d65848d02313
SHA512

284e06b9da42af8c1dc2a37ab4e80239d37622c84357a6fd322d03ada819de3902dbf856df0594cc8091840210f158194c7ebd44bc056f248fc1b0a6d90574c0
SSDEEP

24576:FtHPkr1Dvp6qhFDDqWei7BDSkcA6eTksqjl1Sy9jl:FtHPkJ8qhFVphTksqjl1Sy9jl

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\CryptMP Launcher [STARFALL DLL]\ModernWpf.dll",#1
1⤵
PID:4600

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4104,i,13995403245988825027,7033610968827661507,262144 --variations-seed-version --mojo-platform-channel-handle=4132 /prefetch:8
1⤵
PID:4496

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy