68ea23c1515b2306e607ce7b124f9314b4af9ee2572e23550b3ac1a8dd3b43e6

Submit
Reports

Overview

overview

Static

static

KraxxStealer-main.zip

windows7-x64

KraxxStealer-main.zip

windows10-2004-x64

KraxxSteal...OS.zip

windows7-x64

KraxxSteal...OS.zip

windows10-2004-x64

Kraxx-Buil...er.exe

windows7-x64

Kraxx-Buil...er.exe

windows10-2004-x64

Kraxx-Buil...nt.xml

windows7-x64

Kraxx-Buil...nt.xml

windows10-2004-x64

Kraxx-Buil...ed.xml

windows7-x64

Kraxx-Buil...ed.xml

windows10-2004-x64

Kraxx-Buil...ce.dll

windows10-2004-x64

Kraxx-Buil...fi.dll

windows7-x64

Kraxx-Buil...fi.dll

windows10-2004-x64

Kraxx-Buil...fi.dll

windows7-x64

Kraxx-Buil...fi.dll

windows10-2004-x64

Kraxx-Buil...ce.dll

windows10-2004-x64

Kraxx-Buil...fi.dll

windows7-x64

Kraxx-Buil...fi.dll

windows10-2004-x64

Kraxx-Buil...VM.exe

windows7-x64

Kraxx-Buil...VM.exe

windows10-2004-x64

Kraxx-Buil...Notice

windows7-x64

Kraxx-Buil...Notice

windows10-2004-x64

Kraxx-Buil...SP.dll

windows10-2004-x64

KraxxSteal...DME.md

windows7-x64

KraxxSteal...DME.md

windows10-2004-x64

Analysis

max time kernel
94s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
15-11-2024 10:02

Sharing

Copy URL

Twitter E-mail

Static task

static1

umbral

3 signatures

Behavioral task

behavioral1

Sample

KraxxStealer-main.zip

Resource

win7-20240708-en

umbral execution spyware stealer

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

KraxxStealer-main.zip

Resource

win10v2004-20241007-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

KraxxStealer-main/Kraxx-OS.zip

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

KraxxStealer-main/Kraxx-OS.zip

Resource

win10v2004-20241007-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

Kraxx-Builder/Kraxx-OS-Builder/Kraxx-Builder.exe

Resource

win7-20240903-en

umbral execution spyware stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral6

Sample

Kraxx-Builder/Kraxx-OS-Builder/Kraxx-Builder.exe

Resource

win10v2004-20241007-en

umbral execution spyware stealer

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral7

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/AssemblyList_4_client.xml

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral8

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/AssemblyList_4_client.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/AssemblyList_4_extended.xml

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral10

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/AssemblyList_4_extended.xml

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/TableTextService.dll

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral12

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/bootmgfw.efi.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/bootmgfw.efi.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/bootmgr.efi.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/bootmgr.efi.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/en-US/TableTextService.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/memtest.efi.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Kraxx-Builder/Kraxx-OS-Builder/Settings/memtest.efi.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Kraxx-Builder/Kraxx-OS-Builder/Source/SenseTVM.exe

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Kraxx-Builder/Kraxx-OS-Builder/Source/SenseTVM.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Kraxx-Builder/Kraxx-OS-Builder/Source/ThirdPartyNotice

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Kraxx-Builder/Kraxx-OS-Builder/Source/ThirdPartyNotice

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Kraxx-Builder/Kraxx-OS-Builder/Source/WATPCSP.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

KraxxStealer-main/README.md

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral25

Sample

KraxxStealer-main/README.md

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

150 seconds

Report Analysis Logs

General

Target

Kraxx-Builder/Kraxx-OS-Builder/Settings/memtest.efi.dll
Size

43KB
MD5

23d005204a917de5ccbf3497d7f57ab2
SHA1

18fc0717730ebf994f0aa045f3e6c79c5b5472f8
SHA256

7ddc6a0b8989c8d20589875baae58b7e9d793440cf23393959638994da980e5f
SHA512

b026a11e8e8cc5ddd769847beaa8f64a2603d1cdd18e67a1631f245fc3c927693d0366331030f1e66d0b3f71ef08ceb56badc6dfde47a058b8319deff75fb33c
SSDEEP

384:fQouJzuN5x0mVZHorzHlvL6WFLW+rzBpRv8TgXLkkvwgvKcvwFNUDBRJHPqslGsZ:oouJzE5wn+8ONU1PHwet

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Kraxx-Builder\Kraxx-OS-Builder\Settings\memtest.efi.dll,#1
1⤵
PID:4212

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads