Overview

overview

10

Static

static

10

Plugins/0g...oG.dll

windows11-21h2-x64

1

Plugins/59...uJ.dll

windows11-21h2-x64

1

Plugins/9O...Pn.exe

windows11-21h2-x64

10

Plugins/EV...LC.dll

windows11-21h2-x64

1

Plugins/FBSyChwp.dll

windows11-21h2-x64

1

Plugins/G3...uZ.dll

windows11-21h2-x64

1

Plugins/K8...WP.dll

windows11-21h2-x64

1

Plugins/KN...Hs.dll

windows11-21h2-x64

1

Plugins/PK...TS.dll

windows11-21h2-x64

1

Plugins/Recovery.dll

windows11-21h2-x64

1

Plugins/Rs...xj.dll

windows11-21h2-x64

1

Plugins/Wk...pi.dll

windows11-21h2-x64

1

Plugins/fzAgyDYa.dll

windows11-21h2-x64

1

Plugins/mM...GA.dll

windows11-21h2-x64

1

Plugins/ma...EC.dll

windows11-21h2-x64

1

Plugins/oYsKwDG.dll

windows11-21h2-x64

1

Plugins/sJ...zK.dll

windows11-21h2-x64

1

Plugins/yL...2P.dll

windows11-21h2-x64

1

Plugins/zV...LS.dll

windows11-21h2-x64

1

Stub/Stub.exe

windows11-21h2-x64

10

skibidirat.exe

windows11-21h2-x64

10

Resubmissions

16/11/2024, 13:28 UTC

241116-qq11yaxejd 10

16/11/2024, 13:22 UTC

241116-ql9ghs1mcj 10

Analysis

  • max time kernel
    90s
  • max time network
    99s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241023-en
  • resource tags

    arch:x64arch:x86image:win11-20241023-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    16/11/2024, 13:22 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Plugins/EVa7gBMKoaHmLC.dll

  • Size

    170KB

  • MD5

    64a3d908b8a5feff2bccfc67f3a67dbd

  • SHA1

    a17d7e5fa57c99a067cac459cb507b625dac254e

  • SHA256

    6ea1ae7ab496666c0117fc20e704bfb6104b13cfb0408073a09689f863fa64b1

  • SHA512

    66374d720230799bea6ac6cfe3faadc37fd775a49d40c04facae1caf1ec658956bbda54ba75287d7128b19b97971bd933a64469da8e0884225c5a8d8b9423ccc

  • SSDEEP

    3072:/bFHKx2Vpgdk6BCNs19kPVoPsb7oR4ZkvEfxMxf4t8BkVb0Uc:/TVpgdkpNs19I6Pe7oR4ZAEfx+LiVb

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\Plugins\EVa7gBMKoaHmLC.dll,#1
    1⤵
      PID:5036

    Network

    • flag-us
      DNS
      11.227.111.52.in-addr.arpa
      Remote address:
      8.8.8.8:53
      Request
      11.227.111.52.in-addr.arpa
      IN PTR
      Response
    No results found
    • 8.8.8.8:53
      11.227.111.52.in-addr.arpa
      dns
      72 B
       158 B
       1
      1

      DNS Request

      11.227.111.52.in-addr.arpa

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.