37f96b32d050dadcc930a639eba68e1ccd57ed5c04a5f77dfca908f01905a4c5

Submit
Reports

Overview

overview

Static

static

goodbyedpi...le.cmd

windows7-x64

goodbyedpi...le.cmd

windows10-2004-x64

goodbyedpi...st.cmd

windows7-x64

goodbyedpi...st.cmd

windows10-2004-x64

goodbyedpi...BE.cmd

windows7-x64

goodbyedpi...BE.cmd

windows10-2004-x64

goodbyedpi...LT.cmd

windows7-x64

goodbyedpi...LT.cmd

windows10-2004-x64

goodbyedpi...ir.cmd

windows7-x64

goodbyedpi...ir.cmd

windows10-2004-x64

goodbyedpi...ry.cmd

windows7-x64

goodbyedpi...ry.cmd

windows10-2004-x64

goodbyedpi...ir.cmd

windows7-x64

goodbyedpi...ir.cmd

windows10-2004-x64

goodbyedpi...st.cmd

windows7-x64

goodbyedpi...st.cmd

windows10-2004-x64

goodbyedpi...BE.cmd

windows7-x64

goodbyedpi...BE.cmd

windows10-2004-x64

goodbyedpi...LT.cmd

windows7-x64

goodbyedpi...LT.cmd

windows10-2004-x64

goodbyedpi...ir.cmd

windows7-x64

goodbyedpi...ir.cmd

windows10-2004-x64

goodbyedpi...ve.cmd

windows7-x64

goodbyedpi...ve.cmd

windows10-2004-x64

goodbyedpi...rt.dll

windows7-x64

goodbyedpi...rt.dll

windows10-2004-x64

goodbyedpi...32.sys

windows10-2004-x64

goodbyedpi...64.sys

windows10-2004-x64

goodbyedpi...pi.exe

windows7-x64

goodbyedpi...pi.exe

windows10-2004-x64

goodbyedpi...rt.dll

windows7-x64

goodbyedpi...rt.dll

windows10-2004-x64

Analysis

max time kernel
93s
max time network
99s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
15-09-2024 09:02

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

goodbyedpi-0.2.3rc3-2/0_russia_update_blacklist_file.cmd

Resource

win7-20240729-en

dropper

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

goodbyedpi-0.2.3rc3-2/0_russia_update_blacklist_file.cmd

Resource

win10v2004-20240802-en

dropper

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

goodbyedpi-0.2.3rc3-2/1_russia_blacklist.cmd

Resource

win7-20240708-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

goodbyedpi-0.2.3rc3-2/1_russia_blacklist.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

goodbyedpi-0.2.3rc3-2/1_russia_blacklist_YOUTUBE.cmd

Resource

win7-20240729-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

goodbyedpi-0.2.3rc3-2/1_russia_blacklist_YOUTUBE.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

goodbyedpi-0.2.3rc3-2/1_russia_blacklist_YOUTUBE_ALT.cmd

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

goodbyedpi-0.2.3rc3-2/1_russia_blacklist_YOUTUBE_ALT.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

goodbyedpi-0.2.3rc3-2/1_russia_blacklist_dnsredir.cmd

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

goodbyedpi-0.2.3rc3-2/1_russia_blacklist_dnsredir.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral11

Sample

goodbyedpi-0.2.3rc3-2/2_any_country.cmd

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

goodbyedpi-0.2.3rc3-2/2_any_country.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

goodbyedpi-0.2.3rc3-2/2_any_country_dnsredir.cmd

Resource

win7-20240704-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

goodbyedpi-0.2.3rc3-2/2_any_country_dnsredir.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist.cmd

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist_YOUTUBE.cmd

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist_YOUTUBE.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist_YOUTUBE_ALT.cmd

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist_YOUTUBE_ALT.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist_dnsredir.cmd

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist_dnsredir.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

goodbyedpi-0.2.3rc3-2/service_remove.cmd

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

goodbyedpi-0.2.3rc3-2/service_remove.cmd

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

goodbyedpi-0.2.3rc3-2/x86/WinDivert.dll

Resource

win7-20240903-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

goodbyedpi-0.2.3rc3-2/x86/WinDivert.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral27

Sample

goodbyedpi-0.2.3rc3-2/x86/WinDivert32.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

goodbyedpi-0.2.3rc3-2/x86/WinDivert64.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

goodbyedpi-0.2.3rc3-2/x86/goodbyedpi.exe

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

goodbyedpi-0.2.3rc3-2/x86/goodbyedpi.exe

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral31

Sample

goodbyedpi-0.2.3rc3-2/x86_64/WinDivert.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

goodbyedpi-0.2.3rc3-2/x86_64/WinDivert.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

goodbyedpi-0.2.3rc3-2/service_install_russia_blacklist.cmd
Size

660B
MD5

af6dac6686b77dc51203800737f41b75
SHA1

385568a96d92ca8206e45b6cf945b2fa11b29f80
SHA256

4d2068f04436998bdf003c430f7bc28f0d0fc7d48031b8a37983f84bad6374bb
SHA512

ae54f13ec18a71983b598f9f2d38231168b9f7de3238f6f742128331f2957e0a770b9502f2bf1997c8f6a6cb0c4bb90e9f4a8156ac807744141c51f4b0c4c49c

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c "C:\Users\Admin\AppData\Local\Temp\goodbyedpi-0.2.3rc3-2\service_install_russia_blacklist.cmd"
1⤵
PID:2420

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads