8fce64111907ee6f0cfa6a5117fd5117574bee3e3bd69cd9efa1c4217f17bc92 | Triage

Submit
Reports

Overview

overview

Static

static

搞机工�...pi.dll

windows7-x64

3

搞机工�...pi.dll

windows10-2004-x64

3

搞机工�...pi.dll

windows7-x64

3

搞机工�...pi.dll

windows10-2004-x64

3

搞机工�...or.cmd

windows7-x64

1

搞机工�...or.cmd

windows10-2004-x64

1

搞机工�...in.dll

windows7-x64

1

搞机工�...in.dll

windows10-2004-x64

1

搞机工�...db.exe

windows7-x64

3

搞机工�...db.exe

windows10-2004-x64

3

搞机工�...ot.exe

windows7-x64

3

搞机工�...ot.exe

windows10-2004-x64

3

搞机工�...v9.exe

windows7-x64

3

搞机工�...v9.exe

windows10-2004-x64

3

Analysis

max time kernel
148s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
08-11-2024 02:28

Sharing

Static task

static1

stealer revengerat

3 signatures

Behavioral task

behavioral1

Sample

搞机工具箱9.93/AdbWinApi.dll

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

搞机工具箱9.93/AdbWinApi.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

搞机工具箱9.93/AdbWinUsbApi.dll

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

搞机工具箱9.93/AdbWinUsbApi.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral5

Sample

搞机工具箱9.93/Connector.cmd

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

搞机工具箱9.93/Connector.cmd

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral7

Sample

搞机工具箱9.93/MaterialSkin.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

搞机工具箱9.93/MaterialSkin.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

搞机工具箱9.93/adb.exe

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

搞机工具箱9.93/adb.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

搞机工具箱9.93/fastboot.exe

Resource

win7-20241010-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

搞机工具箱9.93/fastboot.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

搞机工具箱9.93/搞机工具箱v9.exe

Resource

win7-20240903-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral14

Sample

搞机工具箱9.93/搞机工具箱v9.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

搞机工具箱9.93/MaterialSkin.dll
Size

6.4MB
MD5

77dec48d6870d0658760ac5f79e3a496
SHA1

ca1fd236597eaedc901669b41313e747149ee20c
SHA256

04021c60a2ecc2bf46152cccb973dde479727da66f1f041a9bc50b5f98ebfed4
SHA512

dc9caea7720c0383e42c563dbedb5aedb60233d953a8a89613e1edb447f7c1cc6832d9ae7cc03d743e468e46aa8b8845a673f371b66beb60997ae7b47a37eea1
SSDEEP

98304:MEvd9tWpmIgMlqVz+rQVe97lwu9cXvBxDh3DYnskFb06vSXvfnjMK3aYLB+8uN4E:MDKv8XcXD4K

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\搞机工具箱9.93\MaterialSkin.dll,#1
1⤵
PID:3996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy