Overview
overview
10Static
static
10wentra/Guna.UI2.dll
windows7-x64
1wentra/Guna.UI2.dll
windows10-2004-x64
1wentra/Spoofer.exe
windows7-x64
1wentra/Spoofer.exe
windows10-2004-x64
1wentra/alperenxrq.exe
windows7-x64
3wentra/alperenxrq.exe
windows10-2004-x64
7wentra/run...nt.dll
windows7-x64
1wentra/run...nt.dll
windows10-2004-x64
1Analysis
-
max time kernel
124s -
max time network
129s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
13-09-2024 19:15
Behavioral task
behavioral1
Sample
wentra/Guna.UI2.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
wentra/Guna.UI2.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
wentra/Spoofer.exe
Resource
win7-20240704-en
Behavioral task
behavioral4
Sample
wentra/Spoofer.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
wentra/alperenxrq.exe
Resource
win7-20240903-en
Behavioral task
behavioral6
Sample
wentra/alperenxrq.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
wentra/runtimes/win/lib/net6.0/System.Management.dll
Resource
win7-20240903-en
Behavioral task
behavioral8
Sample
wentra/runtimes/win/lib/net6.0/System.Management.dll
Resource
win10v2004-20240802-en
General
-
Target
wentra/Guna.UI2.dll
-
Size
2.1MB
-
MD5
fc5aba3c395c5f9098cb8e2f78e17022
-
SHA1
217061a89757a1d6eb976ad48fb9c93a7a58edcb
-
SHA256
cad8bb34cf070c10e995ebdb60d9d1b4e206bc763183a8cdfb29e17ffa30dd10
-
SHA512
148b275edaccd403ee7dcb70e959b29a22ed1c5f61b674afb94af6e9e6b010bb0a7dd9e964d2811dff9c2642a49bb278cc1a838a4f384f5648470187ee83936d
-
SSDEEP
49152:YTTFBySg6etzcwp8fB0hXGErGn9lut4XrgF0:irG8farRo
Malware Config
Signatures
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\wentra\Guna.UI2.dll,#11⤵PID:4892
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4288,i,12470628711992022444,7767535593390851522,262144 --variations-seed-version --mojo-platform-channel-handle=4056 /prefetch:81⤵PID:2288