100565864eed928d474d1912b9de2f124a2e94f312a454922b4ccdff36860fba

Submit
Reports

Overview

overview

Static

static

download.exe

windows7-x64

download.exe

windows10-2004-x64

$PLUGINSDI...er.dll

windows7-x64

$PLUGINSDI...er.dll

windows10-2004-x64

$PLUGINSDI...ls.dll

windows7-x64

$PLUGINSDI...ls.dll

windows10-2004-x64

$PLUGINSDI...em.dll

windows7-x64

$PLUGINSDI...em.dll

windows10-2004-x64

$PLUGINSDI...ll.dll

windows7-x64

$PLUGINSDI...ll.dll

windows10-2004-x64

Kryptex.exe

windows7-x64

Kryptex.exe

windows10-2004-x64

LICENSES.c...m.html

windows7-x64

LICENSES.c...m.html

windows10-2004-x64

d3dcompiler_47.dll

windows10-2004-x64

ffmpeg.dll

windows7-x64

ffmpeg.dll

windows10-2004-x64

libEGL.dll

windows7-x64

libEGL.dll

windows10-2004-x64

libGLESv2.dll

windows7-x64

libGLESv2.dll

windows10-2004-x64

resources/.../7x.sh

ubuntu-18.04-amd64

resources/.../7x.sh

debian-9-armhf

resources/.../7x.sh

debian-9-mips

resources/.../7x.sh

debian-9-mipsel

resources/...dex.js

windows7-x64

resources/...dex.js

windows10-2004-x64

resources/...za.exe

windows7-x64

resources/...za.exe

windows10-2004-x64

resources/...za.exe

windows7-x64

resources/...za.exe

windows10-2004-x64

resources/...fo.exe

windows7-x64

Resubmissions

25/09/2024, 10:15

240925-mah9eazdjk 8

19/09/2024, 16:05

240919-tjgkhaxdjh 8

Analysis

max time kernel
132s
max time network
142s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
19/09/2024, 16:05

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

download.exe

Resource

win7-20240729-en

discovery execution

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

download.exe

Resource

win10v2004-20240802-en

discovery execution

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win7-20240903-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win7-20240708-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

$PLUGINSDIR/WinShell.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral11

Sample

Kryptex.exe

Resource

win7-20240729-en

persistence

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral12

Sample

Kryptex.exe

Resource

win10v2004-20240802-en

persistence

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral13

Sample

LICENSES.chromium.html

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

LICENSES.chromium.html

Resource

win10v2004-20240802-en

discovery

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral15

Sample

d3dcompiler_47.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

ffmpeg.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

ffmpeg.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

libEGL.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

libEGL.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

libGLESv2.dll

Resource

win7-20240708-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

libGLESv2.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/7x.sh

Resource

ubuntu1804-amd64-20240508-en

discovery

ubuntu-18.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/7x.sh

Resource

debian9-armhf-20240729-en

discovery

debian-9-armhf

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/7x.sh

Resource

debian9-mipsbe-20240611-en

discovery

debian-9-mips

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/7x.sh

Resource

debian9-mipsel-20240611-en

discovery

debian-9-mipsel

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/index.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/index.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/win/arm64/7za.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/win/arm64/7za.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/win/x64/7za.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/7zip-bin/win/x64/7za.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

resources/app.asar.unpacked/node_modules/kryptex-backend/node_modules/amd-binding/build/Release/adlinfo.exe

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

ffmpeg.dll
Size

2.6MB
MD5

002287b5dfe53d87c189f368c7f785b5
SHA1

00e6e0e224b5f391c0172008ec78ec5124153649
SHA256

b453afca000aef28c8f27a315a31f244c46755308dea8d9ad55d19a507471a6b
SHA512

c2b23dd13e3f1c009e2eb2e4aae7a9a4e713642a9031c1e51125c9f0c6c8c6430a2088dd5c20867a2e948c97ae9a9078535e96b5d06ea6c7bd7f67a2db2104aa
SSDEEP

49152:yr95TElsdFD2CD+KQQptuogdTSR/T/yN8vKU8vECJNkuz5ytlHajmjuSesJKqn/7:J4JptuhTSAuvv65sJF

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\ffmpeg.dll,#1
1⤵
PID:3120

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads