30263649fa9032042bd4f1828fd41e6dc096be790c60c886741b4ae0fb86bd22 | Triage

Submit
Reports

Overview

overview

Static

static

3

BlackBullet2.exe

windows7-x64

BlackBullet2.exe

windows10-2004-x64

Data/BB2.exe

windows7-x64

Data/BB2.exe

windows10-2004-x64

Data/BlackBullet2.exe

windows7-x64

Data/BlackBullet2.exe

windows10-2004-x64

Data/Docum...5).pdf

windows7-x64

3

Data/Docum...5).pdf

windows10-2004-x64

3

Data/Docum...OK.pdf

windows7-x64

3

Data/Docum...OK.pdf

windows10-2004-x64

3

Data/DotNetZip.dll

windows7-x64

1

Data/DotNetZip.dll

windows10-2004-x64

1

Data/bin/A...rp.dll

windows7-x64

1

Data/bin/A...rp.dll

windows10-2004-x64

1

Data/bin/A...ry.dll

windows7-x64

1

Data/bin/A...ry.dll

windows10-2004-x64

1

Data/bin/D...ry.dll

windows7-x64

1

Data/bin/D...ry.dll

windows10-2004-x64

1

Data/bin/D...ha.dll

windows7-x64

1

Data/bin/D...ha.dll

windows10-2004-x64

1

Data/bin/E...et.dll

windows7-x64

1

Data/bin/E...et.dll

windows10-2004-x64

1

Data/bin/I...it.dll

windows7-x64

1

Data/bin/I...it.dll

windows10-2004-x64

1

Data/bin/I...rs.dll

windows7-x64

1

Data/bin/I...rs.dll

windows10-2004-x64

1

Data/bin/I...es.dll

windows7-x64

1

Data/bin/I...es.dll

windows10-2004-x64

1

Data/bin/I...te.dll

windows7-x64

1

Data/bin/I...te.dll

windows10-2004-x64

1

Data/bin/I...pf.dll

windows7-x64

1

Data/bin/I...pf.dll

windows10-2004-x64

1

Analysis

max time kernel
134s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
26-10-2024 21:18

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

BlackBullet2.exe

Resource

win7-20240903-en

zgrat discovery rat

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

BlackBullet2.exe

Resource

win10v2004-20241007-en

zgrat discovery rat

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral3

Sample

Data/BB2.exe

Resource

win7-20241010-en

zgrat discovery rat

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral4

Sample

Data/BB2.exe

Resource

win10v2004-20241007-en

zgrat discovery rat

windows10-2004-x64

14 signatures

150 seconds

Behavioral task

behavioral5

Sample

Data/BlackBullet2.exe

Resource

win7-20240903-en

zgrat discovery rat

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral6

Sample

Data/BlackBullet2.exe

Resource

win10v2004-20241007-en

zgrat discovery rat

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral7

Sample

Data/Documentation/OLD USER GUIDE (1.1.5).pdf

Resource

win7-20241010-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral8

Sample

Data/Documentation/OLD USER GUIDE (1.1.5).pdf

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral9

Sample

Data/Documentation/SELENIUM CONFIGS HANDBOOK.pdf

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

Data/Documentation/SELENIUM CONFIGS HANDBOOK.pdf

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral11

Sample

Data/DotNetZip.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Data/DotNetZip.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Data/bin/AngleSharp.dll

Resource

win7-20241023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Data/bin/AngleSharp.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Data/bin/AntiCaptchaLibrary.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Data/bin/AntiCaptchaLibrary.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Data/bin/DeCaptcherLibrary.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Data/bin/DeCaptcherLibrary.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Data/bin/DeathByCaptcha.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Data/bin/DeathByCaptcha.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Data/bin/Extreme.Net.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Data/bin/Extreme.Net.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Data/bin/ICSharpCode.AvalonEdit.dll

Resource

win7-20241023-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Data/bin/ICSharpCode.AvalonEdit.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Data/bin/ImageTypers.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Data/bin/ImageTypers.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Data/bin/IronPython.Modules.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Data/bin/IronPython.Modules.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Data/bin/IronPython.SQLite.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Data/bin/IronPython.SQLite.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Data/bin/IronPython.Wpf.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Data/bin/IronPython.Wpf.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Data/bin/IronPython.Modules.dll
Size

726KB
MD5

621192db357916f2261989a49fa2c6bd
SHA1

c32bc90cdd7d8261ac4702fdf30d0e30cc1d80b8
SHA256

87525121d7826dcfc76963ab8bd7996b9644bf4f148d1296757eb702a43da51f
SHA512

a7985ae16c4a4e931daddaa93b4cf4c4cad89c961261afd14765366a2ae46e5cf62ab153bf8dc6a20626c570a1eca8083dc4b68cfd72741619fd5f41143f1ef2
SSDEEP

12288:S9FB+o9rBYvjexGLpDgy1+8pIe6K3OLdIfehae5mq+GDN8:cBYvvI/OJmXN8

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Data\bin\IronPython.Modules.dll,#1
1⤵
PID:4024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy