Overview
overview
3Static
static
3ninjarippe...mp.exe
windows10-2004-x64
3blender-im...nja.py
windows10-2004-x64
3ninjarippe...rip.py
windows10-2004-x64
3fmt_ninjar...rip.py
windows10-2004-x64
3ninjarippe...er.exe
windows10-2004-x64
1ninjarippe...ap.dll
windows10-2004-x64
1ninjarippe...er.exe
windows10-2004-x64
1ninjarippe...er.dll
windows10-2004-x64
1ninjarippe...er.exe
windows10-2004-x64
3ninjarippe...ap.dll
windows10-2004-x64
3ninjarippe...8d.dll
windows10-2004-x64
3ninjarippe...er.exe
windows10-2004-x64
3ninjarippe...er.dll
windows10-2004-x64
3Analysis
-
max time kernel
92s -
max time network
94s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
05-10-2024 03:04
Static task
static1
Behavioral task
behavioral1
Sample
ninjaripper1.7.1/ripdump.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral2
Sample
blender-import-ninjaripper-master/import-ninja.py
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
ninjaripper1.7.1/tools/noesis_importer/fmt_ninjaripper_rip.py
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral4
Sample
fmt_ninjaripper_rip.py
Resource
win10v2004-20240910-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
ninjaripper1.7.1/x64/NinjaRipper.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral6
Sample
ninjaripper1.7.1/x64/d3dwrap.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
ninjaripper1.7.1/x64/injhelper.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral8
Sample
ninjaripper1.7.1/x64/intruder.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
ninjaripper1.7.1/x86/NinjaRipper.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral10
Sample
ninjaripper1.7.1/x86/d3dwrap.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
ninjaripper1.7.1/x86/d3dx8d.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral12
Sample
ninjaripper1.7.1/x86/injhelper.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
ninjaripper1.7.1/x86/intruder.dll
Resource
win10v2004-20240802-en
windows10-2004-x64
General
-
Target
ninjaripper1.7.1/x64/intruder.dll
-
Size
1.0MB
-
MD5
dee02d7dd4b822ab1204c4e14f8cb5c8
-
SHA1
5d0a06da3e259d6849459932471c2563e9a60b17
-
SHA256
3aa424f235d3ca6919745c88441e52e5b948b090610b7d64246e19beef85a3f5
-
SHA512
03442288cc6ccd97dfb3c37fc493a3faef9bad3f433ec0afde24bde8b941ec3d08d097ac4cbb72f65c206069be209793a310f331d79d317ba6ea98a0de864402
-
SSDEEP
12288:rpAJ9VYtR33pcHpNqRGkJb7SYfag//7ZN3Vp:rk9VYtRHpcJNqIkJb7Vfag/tD
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 32 IoCs
pid Process 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe 644 rundll32.exe