9c7c57c4de010e15d30c61f85921ad3535d53fc9430266dde90514cd04a2fe10 | Triage

Submit
Reports

Overview

overview

6

Static

static

3

DiscordRPC.dll

windows7-x64

1

DiscordRPC.dll

windows10-2004-x64

1

Elsify v2.exe

windows7-x64

1

Elsify v2.exe

windows10-2004-x64

1

Elsify v2.exe

windows7-x64

3

Elsify v2.exe

windows10-2004-x64

6

Microsoft....ns.dll

windows7-x64

1

Microsoft....ns.dll

windows10-2004-x64

1

Microsoft....ng.dll

windows7-x64

1

Microsoft....ng.dll

windows10-2004-x64

1

Microsoft....ns.dll

windows7-x64

1

Microsoft....ns.dll

windows10-2004-x64

1

Newtonsoft.Json.dll

windows7-x64

1

Newtonsoft.Json.dll

windows10-2004-x64

1

RestSharp.dll

windows7-x64

1

RestSharp.dll

windows10-2004-x64

1

Analysis

max time kernel
131s
max time network
133s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
06-09-2024 11:48

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

DiscordRPC.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

DiscordRPC.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Elsify v2.exe

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Elsify v2.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Elsify v2.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral6

Sample

Elsify v2.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral7

Sample

Microsoft.IdentityModel.JsonWebTokens.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Microsoft.IdentityModel.JsonWebTokens.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Microsoft.IdentityModel.Logging.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Microsoft.IdentityModel.Logging.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Microsoft.IdentityModel.Tokens.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Microsoft.IdentityModel.Tokens.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Newtonsoft.Json.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Newtonsoft.Json.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

RestSharp.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

RestSharp.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Elsify v2.exe
Size

10.0MB
MD5

6648e7297021062f58750aab38566a9a
SHA1

1692474c42eb5176a388e6d54635165a0bdb8c78
SHA256

b7914592b44887528911b7d41d9ca02c9b095116ec66d7971c82d28fb6c65922
SHA512

82e340dd9e523b20c71328215b6509a27bab6debf85daa07e366af138d8c8c12cf3172b86f521b9e0b5a2cce815748b1f6de6e3e90ccb84cad5647b88c8fe775
SSDEEP

196608:ZBWT3RKt6/+jgd4Yuh5PnWPFBN6casJKyilOZ7LMgdcS/:6EtM14Yuh5P8FBB3Kyd7ZcS/

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\Elsify v2.exe
"C:\Users\Admin\AppData\Local\Temp\Elsify v2.exe"
1⤵
PID:5204

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=944,i,2904906934812054273,11716976550456127484,262144 --variations-seed-version --mojo-platform-channel-handle=4128 /prefetch:8
1⤵
PID:5612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy