c1bcbc47df990fdd6df4a22821921020c7a10a4288a5a8bb5a5b167289b80ee8

Submit
Reports

Overview

overview

Static

static

SignalSetup.exe

windows7-x64

SignalSetup.exe

windows10-2004-x64

$PLUGINSDI...er.dll

windows7-x64

$PLUGINSDI...er.dll

windows10-2004-x64

$PLUGINSDI...ls.dll

windows7-x64

$PLUGINSDI...ls.dll

windows10-2004-x64

$PLUGINSDI...em.dll

windows7-x64

$PLUGINSDI...em.dll

windows10-2004-x64

$PLUGINSDI...ll.dll

windows7-x64

$PLUGINSDI...ll.dll

windows10-2004-x64

LICENSES.c...m.html

windows7-x64

LICENSES.c...m.html

windows10-2004-x64

Signal.exe

windows10-2004-x64

d3dcompiler_47.dll

windows10-2004-x64

ffmpeg.dll

windows10-2004-x64

libEGL.dll

windows10-2004-x64

libGLESv2.dll

windows10-2004-x64

resources/...ns.dll

windows7-x64

resources/...ns.dll

windows10-2004-x64

resources/...e3.dll

windows7-x64

resources/...e3.dll

windows10-2004-x64

resources/...nt.dll

windows7-x64

resources/...nt.dll

windows10-2004-x64

resources/...64.dll

windows7-x64

resources/...64.dll

windows10-2004-x64

resources/elevate.exe

windows7-x64

resources/elevate.exe

windows10-2004-x64

vk_swiftshader.dll

windows10-2004-x64

vulkan-1.dll

windows10-2004-x64

$PLUGINSDI...ec.dll

windows7-x64

$PLUGINSDI...ec.dll

windows10-2004-x64

$PLUGINSDI...7z.dll

windows7-x64

Analysis

max time kernel
146s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
18-09-2024 07:31

Sharing

Copy URL

Twitter E-mail

Static task

static1

zloader

2 signatures

Behavioral task

behavioral1

Sample

SignalSetup.exe

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

SignalSetup.exe

Resource

win10v2004-20240802-en

discovery persistence

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win7-20240729-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240708-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

$PLUGINSDIR/WinShell.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10v2004-20240910-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral11

Sample

LICENSES.chromium.html

Resource

win7-20240704-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral12

Sample

LICENSES.chromium.html

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral13

Sample

Signal.exe

Resource

win10v2004-20240802-en

persistence

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral14

Sample

d3dcompiler_47.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

ffmpeg.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

libEGL.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

libGLESv2.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/app.asar.unpacked/node_modules/@indutny/simple-windows-notifications/build/Release/simple-windows-notifications.dll

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/app.asar.unpacked/node_modules/@indutny/simple-windows-notifications/build/Release/simple-windows-notifications.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/app.asar.unpacked/node_modules/@signalapp/better-sqlite3/build/Release/better_sqlite3.dll

Resource

win7-20240729-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/app.asar.unpacked/node_modules/@signalapp/better-sqlite3/build/Release/better_sqlite3.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/app.asar.unpacked/node_modules/@signalapp/libsignal-client/prebuilds/win32-x64/@signalapp+libsignal-client.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/app.asar.unpacked/node_modules/@signalapp/libsignal-client/prebuilds/win32-x64/@signalapp+libsignal-client.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/app.asar.unpacked/node_modules/@signalapp/ringrtc/build/win32/libringrtc-x64.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/app.asar.unpacked/node_modules/@signalapp/ringrtc/build/win32/libringrtc-x64.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/elevate.exe

Resource

win7-20240903-en

discovery

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/elevate.exe

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

vk_swiftshader.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

vulkan-1.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/nsExec.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral31

Sample

$PLUGINSDIR/nsExec.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral32

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

libGLESv2.dll
Size

8.0MB
MD5

d1ff2ac8dfe49b8846208ec710c28426
SHA1

d2f1d2c0805ba91c4b0963087745d0da9f85bca8
SHA256

3a70592d4b77abe4005040d70647fa7db0851def813f59430418be011d1c5f3a
SHA512

1e1ecd36db0a0c5dc589e29831c432773b5c001d4b9b4b3bd28ae1c0f5222b2433b5ac6099965b476fc0748531b2badbd555e3d2d9e26438b3e880eac6b1396f
SSDEEP

98304:oAb24VjbjUkC/f5031ZIXytRt1lK6XC3aB:oAb24VjbIk2sEol/maB

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\libGLESv2.dll,#1
1⤵
PID:5024

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads