Overview

overview

4

Static

static

3

imager_1.8.5.exe

windows7-x64

4

imager_1.8.5.exe

windows10-2004-x64

4

QtGraphica...dow.js

windows7-x64

3

QtGraphica...dow.js

windows10-2004-x64

3

QtGraphica...lur.js

windows7-x64

3

QtGraphica...lur.js

windows10-2004-x64

3

QtGraphica...te.dll

windows7-x64

3

QtGraphica...te.dll

windows10-2004-x64

3

QtGraphica...in.dll

windows7-x64

3

QtGraphica...in.dll

windows10-2004-x64

3

QtQuick.2/...in.dll

windows7-x64

3

QtQuick.2/...in.dll

windows10-2004-x64

3

QtQuick/Co...in.dll

windows7-x64

3

QtQuick/Co...in.dll

windows10-2004-x64

3

QtQuick/Co...low.js

windows7-x64

3

QtQuick/Co...low.js

windows10-2004-x64

3

QtQuick/Co...in.dll

windows7-x64

3

QtQuick/Co...in.dll

windows10-2004-x64

3

QtQuick/Co...in.dll

windows7-x64

3

QtQuick/Co...in.dll

windows10-2004-x64

3

QtQuick/La...in.dll

windows7-x64

3

QtQuick/La...in.dll

windows10-2004-x64

3

QtQuick/Te...in.dll

windows7-x64

3

QtQuick/Te...in.dll

windows10-2004-x64

3

QtQuick/Wi...in.dll

windows7-x64

3

QtQuick/Wi...in.dll

windows10-2004-x64

3

bearer/qge...er.dll

windows7-x64

3

bearer/qge...er.dll

windows10-2004-x64

3

fat32format.exe

windows7-x64

1

fat32format.exe

windows10-2004-x64

3

iconengine...on.dll

windows7-x64

3

iconengine...on.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    94s
  • max time network
    123s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-10-2024 13:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    QtQuick/Controls.2/Fusion/qtquickcontrols2fusionstyleplugin.dll

  • Size

    737KB

  • MD5

    dc4a14295bb1ff490290a2c97ef6b887

  • SHA1

    465157b5021923855234816b4243e6f8597e35fd

  • SHA256

    80c6eb72431dd51f6f9822aa8ae7dfddb633092b623e34643f9e99242d591b22

  • SHA512

    71d0d4fa958e69351af72b0eb0842befbad599bf2f2398f7401b2f808530a76f8b685dade3f806ab53798eed715e8bc11860b26a8d389a3b37ceefd1dcfd4627

  • SSDEEP

    12288:qYJiupprpp9pp1ppeppMppnppcppdpp3p3uppOppIppCppPpp6ppvppKppsppnp0:Lgw6

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\QtQuick\Controls.2\Fusion\qtquickcontrols2fusionstyleplugin.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:3332
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\QtQuick\Controls.2\Fusion\qtquickcontrols2fusionstyleplugin.dll,#1
      2⤵
      • System Location Discovery: System Language Discovery
      PID:5000

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads