Overview

overview

10

Static

static

3

INQUIRY 20...20.exe

windows7-x64

10

INQUIRY 20...20.exe

windows10-2004-x64

7

$APPDATA/s...DH.dll

windows7-x64

1

$APPDATA/s...DH.dll

windows10-2004-x64

1

$APPDATA/s...ui.dll

windows7-x64

1

$APPDATA/s...ui.dll

windows10-2004-x64

1

$APPDATA/s...sX.exe

windows7-x64

1

$APPDATA/s...sX.exe

windows10-2004-x64

1

$APPDATA/s...60.dll

windows7-x64

1

$APPDATA/s...60.dll

windows10-2004-x64

1

$APPDATA/s...cl.dll

windows7-x64

3

$APPDATA/s...cl.dll

windows10-2004-x64

3

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$TEMP/Barracoon.dll

windows7-x64

3

$TEMP/Barracoon.dll

windows10-2004-x64

3

$TEMP/alum...60.dll

windows7-x64

1

$TEMP/alum...60.dll

windows10-2004-x64

1

$TEMP/alum...xy.exe

windows7-x64

3

$TEMP/alum...xy.exe

windows10-2004-x64

3

$TEMP/alum...gP.dll

windows7-x64

3

$TEMP/alum...gP.dll

windows10-2004-x64

3

$TEMP/alum...ap.dll

windows7-x64

1

$TEMP/alum...ap.dll

windows10-2004-x64

1

$TEMP/map/...60.dll

windows7-x64

1

$TEMP/map/...60.dll

windows10-2004-x64

1

$TEMP/map/...ip.dll

windows7-x64

8

$TEMP/map/...ip.dll

windows10-2004-x64

8

$TEMP/refe...80.dll

windows7-x64

1

$TEMP/refe...80.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    125s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-08-2024 04:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $TEMP/referral/msvcrt80.dll

  • Size

    38KB

  • MD5

    cdce62bd68cfd6b3bee664e32453708a

  • SHA1

    0315c77484f4f28c8e17c05ee20695dcd6001ce2

  • SHA256

    19f4c2ffc874646f4f290a4255cba805e597d4569684d0537591588fea2f1962

  • SHA512

    0e7aaa37a89f6bbe857112e749860e604573ec6473ae4b6232781b7580659376b22c40395ff302049f4764f85ed2dfc88a5268b5896288da4f3e9b53a17a00dc

  • SSDEEP

    768:Jq8q7Y4Y4Y4d+pfeC5Z8U1l0TOu6OXQ+c+jiut+vSL3uBsP:Jq9dqfZ5Z8U10cA5QaGsP

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\$TEMP\referral\msvcrt80.dll,#1
    1⤵
      PID:4860

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads