a9ffe5bb14b05e775f34f9eeff41fca89a350d49252eedae1e330e88952e7f36

Submit
Reports

Overview

overview

Static

static

BetterJoyForCemu.exe

windows7-x64

BetterJoyForCemu.exe

windows10-2004-x64

Crc32.NET.dll

windows7-x64

Crc32.NET.dll

windows10-2004-x64

Drivers/HI...n).bat

windows7-x64

Drivers/HI...n).bat

windows10-2004-x64

Drivers/HI...n).bat

windows7-x64

Drivers/HI...n).bat

windows10-2004-x64

Drivers/HI...ib.dll

windows7-x64

Drivers/HI...ib.dll

windows10-2004-x64

Drivers/HI...sts.js

windows7-x64

Drivers/HI...sts.js

windows10-2004-x64

Drivers/HI...els.js

windows7-x64

Drivers/HI...els.js

windows10-2004-x64

Drivers/HI...min.js

windows7-x64

Drivers/HI...min.js

windows10-2004-x64

Drivers/HI...min.js

windows7-x64

Drivers/HI...min.js

windows10-2004-x64

Drivers/HI...min.js

windows7-x64

Drivers/HI...min.js

windows10-2004-x64

Drivers/HI...min.js

windows7-x64

Drivers/HI...min.js

windows10-2004-x64

Drivers/HI...min.js

windows7-x64

Drivers/HI...min.js

windows10-2004-x64

Drivers/HI...rv.exe

windows7-x64

Drivers/HI...rv.exe

windows10-2004-x64

Drivers/HI...x.html

windows7-x64

Drivers/HI...x.html

windows10-2004-x64

Drivers/HI...an.sys

windows10-2004-x64

Drivers/HI...09.dll

windows7-x64

Drivers/HI...09.dll

windows10-2004-x64

Drivers/HI...on.exe

windows10-2004-x64

Analysis

max time kernel
94s
max time network
99s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
21/09/2024, 03:23

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

BetterJoyForCemu.exe

Resource

win7-20240704-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

BetterJoyForCemu.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral3

Sample

Crc32.NET.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Crc32.NET.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Drivers/HIDGuardian/HIDGuardian Install (Run as Admin).bat

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral6

Sample

Drivers/HIDGuardian/HIDGuardian Install (Run as Admin).bat

Resource

win10v2004-20240802-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral7

Sample

Drivers/HIDGuardian/HIDGuardian Uninstall (Run as Admin).bat

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

Drivers/HIDGuardian/HIDGuardian Uninstall (Run as Admin).bat

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Lib.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Lib.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/custom/api-requests.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/custom/api-requests.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/custom/viewmodels.js

Resource

win7-20240704-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/custom/viewmodels.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/bootstrap.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/bootstrap.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/jquery-3.2.1.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/jquery-3.2.1.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/jquery.form.min.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/jquery.form.min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/knockout-min.js

Resource

win7-20240708-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/knockout-min.js

Resource

win10v2004-20240802-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/knockout.mapping.min.js

Resource

win7-20240903-en

discovery execution

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral24

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/Content/dep/knockout.mapping.min.js

Resource

win10v2004-20240802-en

discovery execution

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral25

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/HidCerberus.Srv.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral26

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/HidCerberus.Srv.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral27

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/index.html

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral28

Sample

Drivers/HIDGuardian/_drivers/HidCerberus.Srv/index.html

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Drivers/HIDGuardian/_drivers/HidGuardian/HidGuardian.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Drivers/HIDGuardian/_drivers/HidGuardian/WdfCoinstaller01009.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Drivers/HIDGuardian/_drivers/HidGuardian/WdfCoinstaller01009.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Drivers/HIDGuardian/_drivers/devcon.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Drivers/HIDGuardian/_drivers/HidGuardian/HidGuardian.sys
Size

36KB
MD5

7ff3b4842c374d8b4a6b5f73ef4937b0
SHA1

3560a98e4f8051f51767ee094787896b01401674
SHA256

7853f2b2ac260a5ea9fc70e08445ca83708d73a0024154debb590bf33a0c64a7
SHA512

c980795c08425e49024537dd786f01ff4148fb628e634a7386082311a68c5eccc4ac316cae87f40d0acaf80c2e111a0cfbc806aeaaee4b980fbb7e8a82a018b8
SSDEEP

384:FQQOzxpc9f3lCME0Zryvaq9XZTgJUBf8/Ra1Ch3UPdgmlGizYnlKMQM1K2XYmK+I:MpKUMOy4XZTgm8/R13yuOSpI2OC3wh7

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Drivers\HIDGuardian\_drivers\HidGuardian\HidGuardian.sys
1⤵
PID:1380
- C:\Users\Admin\AppData\Local\Temp\Drivers\HIDGuardian\_drivers\HidGuardian\HidGuardian.sys
  C:\Users\Admin\AppData\Local\Temp\Drivers\HIDGuardian\_drivers\HidGuardian\HidGuardian.sys
  2⤵
  PID:3424

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads