fd17c39f31d3ad3ce0c7d7f3ad03e85f0475e3e84e3e582dcac4864f8a2390c7 | Triage

Submit
Reports

Overview

overview

Static

static

3

ExxxxSet_up.exe

windows7-x64

3

ExxxxSet_up.exe

windows10-2004-x64

UP/AspNetM...ni.dll

windows7-x64

1

UP/AspNetM...ni.dll

windows10-2004-x64

1

UP/AudioEn...er.dll

windows10-2004-x64

1

UP/AudioEng.dll

windows10-2004-x64

1

UP/AudioSes.dll

windows10-2004-x64

1

UP/AuthFWSnapin.dll

windows7-x64

1

UP/AuthFWSnapin.dll

windows10-2004-x64

1

UP/audiosrv.dll

windows10-2004-x64

1

UP/authfwcfg.dll

windows10-2004-x64

1

Analysis

max time kernel
126s
max time network
132s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
07/09/2024, 19:49

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ExxxxSet_up.exe

Resource

win7-20240708-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

ExxxxSet_up.exe

Resource

win10v2004-20240802-en

lumma discovery stealer

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

UP/AspNetMMCExt.ni.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

UP/AspNetMMCExt.ni.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

UP/AudioEndpointBuilder.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

UP/AudioEng.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

UP/AudioSes.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

UP/AuthFWSnapin.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

UP/AuthFWSnapin.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

UP/audiosrv.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

UP/authfwcfg.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

UP/authfwcfg.dll
Size

514KB
MD5

5d74048b1de852583602e64a68b05cf3
SHA1

ceadb9280319deaab9224f62dea1e78167047a23
SHA256

c70bc8fd1f17b32a64c1ea2448dd3f45802f2fc59ec0d8cd52e5786330eaa2b4
SHA512

47048e1fe14c1d353ec1520692c1a841e0a182970339b4ced2a9da44b8bffa8af4b060b13663b0b4dadf050e4c52da1bdf56e781315acf8a7197ff3076c93d1d
SSDEEP

6144:9++muUfZE/Ur+CkGtBlEHHZkRhG+yb2KmYweNoGzt27:9bUfOCntnyeohb0Yphzt2

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\UP\authfwcfg.dll,#1
1⤵
PID:2320

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4384,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=4388 /prefetch:8
1⤵
PID:4336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy