Overview

overview

3

Static

static

3

Surs.zip

windows11-21h2-x64

1

.gitattributes

windows11-21h2-x64

3

.gradle/7....s.lock

windows11-21h2-x64

3

.gradle/7....ry.bin

windows11-21h2-x64

3

.gradle/7....y.lock

windows11-21h2-x64

3

.gradle/7....ld.bin

windows11-21h2-x64

3

.gradle/7....es.bin

windows11-21h2-x64

3

.gradle/7....s.lock

windows11-21h2-x64

3

.gradle/bu...p.lock

windows11-21h2-x64

3

.gradle/bu...erties

windows11-21h2-x64

3

.gradle/bu...es.bin

windows11-21h2-x64

3

.gradle/ch...s.lock

windows11-21h2-x64

3

.gradle/ch...ms.bin

windows11-21h2-x64

3

.gradle/ch...ms.bin

windows11-21h2-x64

3

.idea/.gitignore

windows11-21h2-x64

3

.idea/Spac...on.xml

windows11-21h2-x64

1

.idea/compiler.xml

windows11-21h2-x64

1

.idea/gradle.vbs

windows11-21h2-x64

1

.idea/jarR...es.xml

windows11-21h2-x64

1

.idea/misc.xml

windows11-21h2-x64

1

.idea/runC...nt.xml

windows11-21h2-x64

1

.idea/runC...er.xml

windows11-21h2-x64

1

.idea/uiDesigner.xml

windows11-21h2-x64

1

.idea/workspace.xml

windows11-21h2-x64

1

build.gradle

windows11-21h2-x64

3

build/_app...og.txt

windows11-21h2-x64

3

build/nati...32.dll

windows11-21h2-x64

3

build/nati...64.dll

windows11-21h2-x64

1

build/reso....dylib

windows11-21h2-x64

3

build/reso...rpc.so

windows11-21h2-x64

3

build/reso...pc.dll

windows11-21h2-x64

1

build/reso...pc.dll

windows11-21h2-x64

3

Analysis

  • max time kernel
    90s
  • max time network
    94s
  • platform
    windows11-21h2_x64
  • resource
    win11-20241007-en
  • resource tags

    arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    21-11-2024 16:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    build/natives/OpenAL32.dll

  • Size

    381KB

  • MD5

    9e02334f9bba622885eadb059f0633b3

  • SHA1

    ede381bf55e7d0cd3a7e058237bbc66a8ff63837

  • SHA256

    baf27fc91dc852d78889e052cfc9ed2b6fc0927258bb507a895c6fcd50f10fef

  • SHA512

    066eaaee241976d99e3f11de415976fb0e47e97035d4d7a7c121c33882190f3546637650f841a2858ac1734655f4994dc2cb8c5bdda5828557485fc20a779def

  • SSDEEP

    6144:qB0wNMEdGJE5cN8PLJ8I1kabGLPwrWr+JervPI6YXaZ8AO8+H1MOi7BU:qBDL+af1kabGL/r+JwvPjKaZ8NMO

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\build\natives\OpenAL32.dll,#1
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:1128
    • C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\build\natives\OpenAL32.dll,#1
      2⤵
      • System Location Discovery: System Language Discovery
      PID:1116

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads