Overview

overview

3

Static

static

3

NitroxLauncher.exe

windows11-21h2-x64

1

NitroxServ...ca.exe

windows11-21h2-x64

1

lib/0Harmony.dll

windows11-21h2-x64

1

lib/Assets...ET.dll

windows11-21h2-x64

1

lib/Autofac.dll

windows11-21h2-x64

1

lib/BinaryPack.dll

windows11-21h2-x64

1

lib/Discor...er.dll

windows11-21h2-x64

1

lib/JetBra...ns.dll

windows11-21h2-x64

1

lib/LZ4.dll

windows11-21h2-x64

1

lib/LitJSON.dll

windows11-21h2-x64

1

lib/LiteNetLib.dll

windows11-21h2-x64

1

lib/Micros...ry.dll

windows11-21h2-x64

1

lib/Micros...ll.dll

windows11-21h2-x64

1

lib/Micros...ck.dll

windows11-21h2-x64

1

lib/Mono.C...db.dll

windows11-21h2-x64

1

lib/Mono.C...db.dll

windows11-21h2-x64

1

lib/Mono.C...ks.dll

windows11-21h2-x64

1

lib/Mono.Cecil.dll

windows11-21h2-x64

1

lib/Mono.Nat.dll

windows11-21h2-x64

1

lib/MonoMo...ur.dll

windows11-21h2-x64

1

lib/MonoMod.Utils.dll

windows11-21h2-x64

1

lib/Newton...on.dll

windows11-21h2-x64

1

lib/NitroxClient.dll

windows11-21h2-x64

1

lib/Nitrox...ca.dll

windows11-21h2-x64

1

lib/NitroxModel.dll

windows11-21h2-x64

1

lib/NitroxPatcher.dll

windows11-21h2-x64

1

lib/NitroxServer.dll

windows11-21h2-x64

1

lib/Serilo...nc.dll

windows11-21h2-x64

1

lib/Serilo...le.dll

windows11-21h2-x64

1

lib/Serilo...ap.dll

windows11-21h2-x64

1

lib/Serilog.dll

windows11-21h2-x64

1

lib/System...rs.dll

windows11-21h2-x64

1

Analysis

  • max time kernel
    427s
  • max time network
    1155s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    15/11/2024, 15:51 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lib/Mono.Nat.dll

  • Size

    67KB

  • MD5

    05164f22c0b8a36ef01309e78d07b241

  • SHA1

    618c2ea99a0994cf61fcd53d03f5d309fcf7dc4e

  • SHA256

    1119d22cb1ecf7c402a6893cfdfb92c66340d80cb7791f33c3502f8932284b81

  • SHA512

    63991123b116be8bac9ef7ce1c2913dcc8aa966679215506994cf7d6f2d43f22aa6fc0243759a01c8904e3e6a374bef37666df78a1631d3894eafa4a3c638678

  • SSDEEP

    1536:s2CjOAhap6ntQDOx5622PAZVyJu7TZs6/JugDsb61Xy:s2DS769zwXZs6/K8C

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\lib\Mono.Nat.dll,#1
    1⤵
      PID:3052

    Network

    • flag-us
      DNS
      95.221.229.192.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      95.221.229.192.in-addr.arpa
      IN PTR
      Response
    • flag-us
      DNS
      ctldl.windowsupdate.com
      Remote address:
      8.8.8.8:53
      Request
      ctldl.windowsupdate.com
      IN A
      Response
      ctldl.windowsupdate.com
      IN CNAME
      ctldl.windowsupdate.com.delivery.microsoft.com
      ctldl.windowsupdate.com.delivery.microsoft.com
      IN CNAME
      wu-b-net.trafficmanager.net
      wu-b-net.trafficmanager.net
      IN CNAME
      edge.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
      edge.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
      IN CNAME
      default.qdr.p1.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
      default.qdr.p1.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
      IN A
      91.81.130.134
      default.qdr.p1.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
      IN A
      91.80.49.21
      default.qdr.p1.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
      IN A
      91.80.49.22
      default.qdr.p1.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
      IN A
      91.80.49.20
      default.qdr.p1.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
      IN A
      91.80.49.85
    No results found
    • 8.8.8.8:53
      95.221.229.192.in-addr.arpa
      dns
      142 B
       488 B
       2
      2

      DNS Request

      95.221.229.192.in-addr.arpa

      DNS Request

      ctldl.windowsupdate.com

      DNS Response

      91.81.130.134
      91.80.49.21
      91.80.49.22
      91.80.49.20
      91.80.49.85

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.