Overview
overview
8Static
static
3csaudioint...er.exe
windows7-x64
7csaudioint...er.exe
windows10-2004-x64
8$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3drivers/cs...42.sys
windows10-2004-x64
1drivers/cs...of.sys
windows10-2004-x64
1drivers/da...19.sys
windows10-2004-x64
1drivers/dpinst.exe
windows7-x64
4drivers/dpinst.exe
windows10-2004-x64
4drivers/ma...7a.sys
windows10-2004-x64
1drivers/ma...90.sys
windows10-2004-x64
1drivers/na...25.sys
windows10-2004-x64
1drivers/op...ec.sys
windows10-2004-x64
1drivers/rt...11.sys
windows10-2004-x64
1drivers/rt...15.sys
windows10-2004-x64
1drivers/rt...82.sys
windows10-2004-x64
1drivers/rt...2s.sys
windows10-2004-x64
1drivers/sk...us.sys
windows10-2004-x64
1uninstall.exe
windows7-x64
8uninstall.exe
windows10-2004-x64
8$PLUGINSDI...ss.dll
windows7-x64
3$PLUGINSDI...ss.dll
windows10-2004-x64
3utils/csau...er.exe
windows7-x64
1utils/csau...er.exe
windows10-2004-x64
1Analysis
-
max time kernel
92s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
13-11-2024 21:47
Static task
static1
Behavioral task
behavioral1
Sample
csaudiointcsof.1.0.4-installer.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
csaudiointcsof.1.0.4-installer.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240729-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral5
Sample
drivers/cs42l42/cs42l42.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral6
Sample
drivers/csaudiointcsof/csaudiointcsof.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral7
Sample
drivers/da7219/da7219.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral8
Sample
drivers/dpinst.exe
Resource
win7-20241010-en
Behavioral task
behavioral9
Sample
drivers/dpinst.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral10
Sample
drivers/max98357a/max98357a.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral11
Sample
drivers/max98390/max98390.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral12
Sample
drivers/nau8825/nau8825.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral13
Sample
drivers/opengmaxcodec/opengmaxcodec.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral14
Sample
drivers/rt1011/rt1011.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral15
Sample
drivers/rt1015/rt1015.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral16
Sample
drivers/rt5682/rt5682.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral17
Sample
drivers/rt5682s/rt5682s.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral18
Sample
drivers/sklhdaudbus/sklhdaudbus.sys
Resource
win10v2004-20241007-en
Behavioral task
behavioral19
Sample
uninstall.exe
Resource
win7-20241010-en
Behavioral task
behavioral20
Sample
uninstall.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral21
Sample
$PLUGINSDIR/nsProcess.dll
Resource
win7-20240708-en
Behavioral task
behavioral22
Sample
$PLUGINSDIR/nsProcess.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral23
Sample
utils/csaudioendpointswitcher.exe
Resource
win7-20240903-en
Behavioral task
behavioral24
Sample
utils/csaudioendpointswitcher.exe
Resource
win10v2004-20241007-en
General
-
Target
drivers/csaudiointcsof/csaudiointcsof.sys
-
Size
156KB
-
MD5
b29472b5ff4ddb9dbd675cb6e3130358
-
SHA1
4bcfb0070523f9c874770011fd6c22bbbf6d12f5
-
SHA256
9bdf7476354993fd90871d386020a00e68ecec8264fe75183e4311286e19c52a
-
SHA512
72f24040f834cb466bd37ca7f314176ae732f051767581f4eeb988f522dbfbe361e7910fe2ccdcbfdd830c7341190c597cfb969a33b96dfcc7231fbf898c64b0
-
SSDEEP
1536:cCy6KWPaIGVucWRaMs2oksRF/q3e/4nk8S8yeFtbQyCkySn5qL+QH8IzZ:XpCKPwt/qS4nknmzKsqLFl
Malware Config
Signatures
Processes
-
C:\Windows\system32\cmd.execmd /c C:\Users\Admin\AppData\Local\Temp\drivers\csaudiointcsof\csaudiointcsof.sys1⤵PID:4568
-
C:\Users\Admin\AppData\Local\Temp\drivers\csaudiointcsof\csaudiointcsof.sysC:\Users\Admin\AppData\Local\Temp\drivers\csaudiointcsof\csaudiointcsof.sys2⤵PID:3532
-