7e7c00740baa58af22ef6f825d86344732464a4e325b5eb6f93f33898de079fa

Submit
Reports

Overview

overview

Static

static

516874.exe

windows7-x64

5479329c03...a2.exe

windows7-x64

54ab323053...1f.exe

windows7-x64

5600.exe

windows7-x64

56a9736b82...7a.exe

windows7-x64

59ddf36a9e...ws.dll

windows7-x64

5C53687F73...ViR.js

windows7-x64

5bfae47c9f..._2.dll

windows7-x64

5c6416f819...be.exe

windows7-x64

5f1fcdfb95...1c.exe

windows7-x64

5fc9230812...e9.exe

windows7-x64

61318fa1f1...5F.exe

windows7-x64

61318fa1f1...5B.exe

windows7-x64

6184f1def4...ss.exe

windows7-x64

61bc10e8ed...3e.exe

windows7-x64

6217ea6bb8...f5.apk

windows7-x64

62ebcfeeff...C3.exe

windows7-x64

62ebcfeeff...BB.exe

windows7-x64

647f242.exe.vir.exe

windows7-x64

64bfea1efc...99.exe

windows7-x64

64f540a7c6...B3.exe

windows7-x64

64f540a7c6...77.exe

windows7-x64

6916a006c4...9a.exe

windows7-x64

69ee634973...df.exe

windows7-x64

6f772eb660...bc.exe

windows7-x64

7077437251...e9.exe

windows7-x64

7175d6bb11...2b.exe

windows7-x64

728733095f...on.dll

windows7-x64

73c3d88d0d...5F.exe

windows7-x64

73c3d88d0d...BF.exe

windows7-x64

74add6536c...ef.exe

windows7-x64

757a661bcc...d8.exe

windows7-x64

Analysis

max time kernel
840s
max time network
844s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
22-11-2024 02:36

Sharing

Copy URL

Twitter E-mail

Static task

static1

upx

4 signatures

Behavioral task

behavioral1

Sample

516874.exe

Resource

win7-20241010-en

discovery

windows7-x64

8 signatures

1200 seconds

Behavioral task

behavioral2

Sample

5479329c03e12e27adc81caeefe1a1dc26bf59d4dac36dd2eae008213e8fe0a2.exe

Resource

win7-20240903-en

discovery evasion persistence trojan

windows7-x64

14 signatures

1200 seconds

Behavioral task

behavioral3

Sample

54ab323053f1138e5ccaa8f8afaa38cabca9491f.exe

Resource

win7-20240903-en

discovery ransomware spyware stealer upx

windows7-x64

13 signatures

1200 seconds

Behavioral task

behavioral4

Sample

5600.exe

Resource

win7-20241010-en

discovery persistence

windows7-x64

4 signatures

1200 seconds

Behavioral task

behavioral5

Sample

56a9736b82bc9f65ddad590d1edfd9df26b5d97ecfeb48787f6ccc00ce26597a.exe

Resource

win7-20241023-en

metasploit backdoor bootkit discovery persistence trojan

windows7-x64

8 signatures

1200 seconds

Behavioral task

behavioral6

Sample

59ddf36a9e85f4cf82a6511b49cfcdd9e4521b17f7e245f005e18418176ff4aa_PonyNews.dll

Resource

win7-20240903-en

pony credential_access discovery rat spyware stealer

windows7-x64

9 signatures

1200 seconds

Behavioral task

behavioral7

Sample

5C53687F7327933R.js.ViR.js

Resource

win7-20240903-en

execution

windows7-x64

1 signatures

1200 seconds

Behavioral task

behavioral8

Sample

5bfae47c9fda81243b50b6df53ac4184d90a70000894fa2a516044fa44770cfd_Stealer_2.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

1200 seconds

Behavioral task

behavioral9

Sample

5c6416f819bfbca2f1862691a03f68be.exe

Resource

win7-20241010-en

windows7-x64

0 signatures

1200 seconds

Behavioral task

behavioral10

Sample

5f1fcdfb951dc4642ce136a5d3e6bc42021f8e0cd631975a5eb3842da020531c.exe

Resource

win7-20240903-en

defense_evasion discovery ransomware spyware stealer

windows7-x64

13 signatures

1200 seconds

Behavioral task

behavioral11

Sample

5fc92308120aa10dc1062c4c319559ed0b1308befe117d5cafa283e245bea1e9.exe

Resource

win7-20240903-en

defense_evasion discovery evasion execution impact persistence ransomware trojan

windows7-x64

11 signatures

1200 seconds

Behavioral task

behavioral12

Sample

61318fa1f1db342045573d584badc254c9e2578db916594dc749d8cc44ce8ac4_Dumped_TDS=4F8C315F.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral13

Sample

61318fa1f1db342045573d584badc254c9e2578db916594dc749d8cc44ce8ac4_TDS=4F91F15B.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral14

Sample

6184f1def457c10b2ae10a33b8639c89cb0115061c3d424d330342b44d4179aa_not_packed_maybe_useless.exe

Resource

win7-20241010-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral15

Sample

61bc10e8ede3997da73b3de9fa57b059e352b592404fb9c171469c4026fdc03e.exe

Resource

win7-20240903-en

discovery persistence spyware stealer

windows7-x64

12 signatures

1200 seconds

Behavioral task

behavioral16

Sample

6217ea6bb87295983c4915a4d97c7e4142effef95d1e815693a72ea3a73b45f5.apk

Resource

win7-20240903-en

discovery

windows7-x64

6 signatures

1200 seconds

Behavioral task

behavioral17

Sample

62ebcfeeff976f3635e36544b9f6d6282a565ea6a0b4d8319d9831ce68ef26df_Dumped_TDS=4F854EC3.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral18

Sample

62ebcfeeff976f3635e36544b9f6d6282a565ea6a0b4d8319d9831ce68ef26df_TDS=4F8644BB.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral19

Sample

647f242.exe.vir.exe

Resource

win7-20241010-en

defense_evasion discovery execution impact persistence ransomware

windows7-x64

12 signatures

1200 seconds

Behavioral task

behavioral20

Sample

64bfea1efccb47a049ba2cb592878e5c415cc70f9488dd97291c1356e3d79299.exe

Resource

win7-20240708-en

defense_evasion discovery evasion execution impact persistence ransomware trojan

windows7-x64

12 signatures

1200 seconds

Behavioral task

behavioral21

Sample

64f540a7c6ded1c751c9a66629fd2aaa6cdd61749f05c8d0760a1aaeb5548935_Dumped_TDS=4F9911B3.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral22

Sample

64f540a7c6ded1c751c9a66629fd2aaa6cdd61749f05c8d0760a1aaeb5548935_TDS=4F9DB277.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral23

Sample

6916a006c429a3b3a76dfa8c162ddab178b5a20763493506deeb9447875d039a.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral24

Sample

69ee6349739643538dd7eb60e92368f209e12a366f00a7b80000ba02307c9bdf.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

1200 seconds

Behavioral task

behavioral25

Sample

6f772eb660bc05fc26df86c98ca49abc.exe

Resource

win7-20240708-en

windows7-x64

4 signatures

1200 seconds

Behavioral task

behavioral26

Sample

70774372517532ae1dcb97a7133983811d5cc7d2975cd58a1f132f2ef100c5e9.exe

Resource

win7-20240729-en

windows7-x64

0 signatures

1200 seconds

Behavioral task

behavioral27

Sample

7175d6bb11dea0932bd4b611d0f7221b62a71dbc54607e97ad397f104bcffa2b.exe

Resource

win7-20240903-en

collection defense_evasion discovery evasion execution impact persistence ransomware trojan

windows7-x64

15 signatures

1200 seconds

Behavioral task

behavioral28

Sample

728733095fe2c66f91a19ebde412dd25_70186ceb735016eadd98466e62c03635_TheLastReveton.dll

Resource

win7-20240903-en

discovery persistence

windows7-x64

6 signatures

1200 seconds

Behavioral task

behavioral29

Sample

73c3d88d0d9d1c73080bcdda423879ce9eff3aa1f26cc93d120f596091825960_Dumped_TDS=4F8C315F.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral30

Sample

73c3d88d0d9d1c73080bcdda423879ce9eff3aa1f26cc93d120f596091825960_TDS=4F8DFBBF.exe

Resource

win7-20240729-en

discovery persistence

windows7-x64

7 signatures

1200 seconds

Behavioral task

behavioral31

Sample

74add6536cdcfb8b77d10a1e7be6b9ef.exe

Resource

win7-20241010-en

maktub defense_evasion discovery execution impact ransomware upx

windows7-x64

16 signatures

1200 seconds

Behavioral task

behavioral32

Sample

757a661bcc68616f99366b10abac92d8.exe

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

1200 seconds

Report Analysis Logs

General

Target

5bfae47c9fda81243b50b6df53ac4184d90a70000894fa2a516044fa44770cfd_Stealer_2.dll
Size

993KB
MD5

b824d94af0f981106ec2a12d0c4cc1c0
SHA1

b4e17ebe8b07727e7ce6ae8580b97d1129e7c6ce
SHA256

5bfae47c9fda81243b50b6df53ac4184d90a70000894fa2a516044fa44770cfd
SHA512

4dd79f51be35a55f64f1658651f2ab52d824f6d87b82082a5d24f129988b1d9635778ffa5a5bc21688f8a74991d7fd68d7b54faddc4ad2d2bf20a2a027e1995a
SSDEEP

24576:GAwOEE2PTlSPNT9SCD7jEnkEd5JyHNSys4Q:sTlSlH7Mtd5JyHNSj4Q

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\5bfae47c9fda81243b50b6df53ac4184d90a70000894fa2a516044fa44770cfd_Stealer_2.dll,#1
1⤵
PID:3048

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads