Overview

overview

10

Static

static

10

SilverBull...her.js

windows7-x64

3

SilverBull...her.js

windows10-2004-x64

3

SilverBull...et.exe

windows7-x64

7

SilverBull...et.exe

windows10-2004-x64

7

SilverBull...00.dll

windows7-x64

1

SilverBull...00.dll

windows10-2004-x64

1

SilverBull...00.dll

windows7-x64

1

SilverBull...00.dll

windows10-2004-x64

1

SilverBull...es.dll

windows7-x64

1

SilverBull...es.dll

windows10-2004-x64

1

SilverBull...es.dll

windows7-x64

1

SilverBull...es.dll

windows10-2004-x64

1

SilverBull...es.dll

windows7-x64

1

SilverBull...es.dll

windows10-2004-x64

1

SilverBull...rp.dll

windows7-x64

1

SilverBull...rp.dll

windows10-2004-x64

1

SilverBull...et.dll

windows7-x64

1

SilverBull...et.dll

windows10-2004-x64

1

SilverBull...to.dll

windows7-x64

1

SilverBull...to.dll

windows10-2004-x64

1

SilverBull...re.dll

windows7-x64

1

SilverBull...re.dll

windows10-2004-x64

1

SilverBull...rp.dll

windows7-x64

1

SilverBull...rp.dll

windows10-2004-x64

1

SilverBull...pf.dll

windows7-x64

3

SilverBull...pf.dll

windows10-2004-x64

3

SilverBull...er.exe

windows7-x64

7

SilverBull...er.exe

windows10-2004-x64

7

SilverBull...Re.dll

windows7-x64

1

SilverBull...Re.dll

windows10-2004-x64

1

SilverBull...le.dll

windows7-x64

1

SilverBull...le.dll

windows10-2004-x64

1

Resubmissions

08-12-2024 19:26

241208-x5qbbaxngj 10

Analysis

  • max time kernel
    137s
  • max time network
    165s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08-12-2024 19:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SilverBullet.v1.1.2 - Copy/bin/CloudScraper.exe

  • Size

    7.3MB

  • MD5

    b7453c7d019dfc321d38f4185cf5bdcf

  • SHA1

    8f1d681166025fda670c01f83567b1d7f35c1776

  • SHA256

    e2c547d2cebe2bfd9172b3a40db8cd80b9cb996acc247fa2bd18f9b5300b848a

  • SHA512

    d7b320125a8188f060b54a5b8ceb16122d0956b7d0938e579ac45689f8418957f09f94c66d101dacdde84a12c9e309dee95e460fe0dccfd524d9a253bcf57bef

  • SSDEEP

    196608:bZq0MhC+BTX1QFhjwt25Hnuwf3TWK7g33+QI+0:lqlAuOHuwt7g3Z

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 15 IoCs
  • Suspicious use of WriteProcessMemory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\SilverBullet.v1.1.2 - Copy\bin\CloudScraper.exe
    "C:\Users\Admin\AppData\Local\Temp\SilverBullet.v1.1.2 - Copy\bin\CloudScraper.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:3456
    • C:\Users\Admin\AppData\Local\Temp\SilverBullet.v1.1.2 - Copy\bin\CloudScraper.exe
      "C:\Users\Admin\AppData\Local\Temp\SilverBullet.v1.1.2 - Copy\bin\CloudScraper.exe"
      2⤵
      • Loads dropped DLL
      PID:1608

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\VCRUNTIME140.dll
    Filesize

    91KB

    MD5

    7942be5474a095f673582997ae3054f1

    SHA1

    e982f6ebc74d31153ba9738741a7eec03a9fa5e8

    SHA256

    8ee6b49830436ff3bec9ba89213395427b5535813930489f118721fd3d2d942c

    SHA512

    49fbc9d441362b65a8d78b73d4fdcf988f22d38a35a36a233fcd54e99e95e29b804be7eabe2b174188c7860ebb34f701e13ed216f954886a285bed7127619039

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\_bz2.pyd
    Filesize

    84KB

    MD5

    5a8b3602b3560868bd819b10c6343874

    SHA1

    73a5ce4d07479894f24b776eb387abd33deb83a9

    SHA256

    00d2f34aee55b473bcc11838469b94a62d01fdf4465e19f7d7388c79132f019e

    SHA512

    2f2f8305fd8853c479b5d2a442110efc3ad41a3c482cd554ebcc405fcf097e230f5cd45dbfb44050b5bd6fae662ce7cac0583c9784050f0c7d09a678768587db

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\_ctypes.pyd
    Filesize

    124KB

    MD5

    e1ef9f5c77b01c82cf72522ec96b2a11

    SHA1

    e83daa56a104f6ea6235822c644b6554c3958cfe

    SHA256

    a79cf8259890d5843cf8eaf29db8dbd4bfabed50f4d859756f93ac2b30617023

    SHA512

    4231ec5b06effae6497bf62853b79420529cabaee6b58f519c3c30bdd42c925e85979c29c2db0747dcff3f99f3b19dc02ece96347e08cf49eb0abb1e19238c01

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\_hashlib.pyd
    Filesize

    64KB

    MD5

    8f7edaff246c46dbf09ab5554b918b37

    SHA1

    c14c33b14419f5d24fb36e5f1bf1760a9c63228b

    SHA256

    9154b36c178d84a901edad689a53148451ef3c851a91447a0654f528a620d944

    SHA512

    1947a1010fa1b07671aa471d5821792dee7f2b0cd1937d3f944cd0201a299e6cb37a41debbbd1bc6e774186f6d08ad6264055cba7652b0d5bd22691431cb360e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\_lzma.pyd
    Filesize

    159KB

    MD5

    caa58290ab4414e2e22cc0b6ff4b2d29

    SHA1

    840902aaf7db40da17018776e5c842014c3a81ac

    SHA256

    185d407bcca7399c458133f2ce1efa938352b8093b2de040c91c3c3088ab173f

    SHA512

    a82e380ab1676424e52a36c08eabd572375dd36a7fe2b9df51d48c368aed6c04b0b3674bc6a9787efedd0ed70bb1869ed1a2f3a1f4238485710092b9cbadd00e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\_queue.pyd
    Filesize

    28KB

    MD5

    671a9ac9b34f07ada65bf1635e4626c5

    SHA1

    d4a6e478caaacdbdb52f57d12e16ba96671d30f2

    SHA256

    3f1fc09b3f0a5c8c7aff4223d002952ab26f462aa390940a9f00454815204739

    SHA512

    92617258ef747f93ab2c378f5c9a2aac14668d834df15939c1ef83a555490b9ee3380d7341bee60c33057482736a595593749b8794ddeaa9649339363095108c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\_socket.pyd
    Filesize

    78KB

    MD5

    e71c0c49f7e2bd39cafeed1dca29455b

    SHA1

    22cb314298c6c38e3246f73dc7277ed00d6b8449

    SHA256

    3b0ea76a2b0caabf5b8994d3789778575ecbf2831acaf4d53d274e265d271622

    SHA512

    4c09599c7c93427b30a011cc39738983c79f0835292e5c0e7e19f6329f33810773d0e97e20f4698d22b6d0b8b643521bc3ce318c890366872ed26b6d3dab5c05

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\_ssl.pyd
    Filesize

    150KB

    MD5

    39919e97dc418e0099b2a0bb332a8c77

    SHA1

    f04c9d78b3d5e2a95ea3535c363d8b05d666d39e

    SHA256

    b38b09bf0421b1f49338ded8021d7bc56be19902d9b21a9b6e9c8df448f93eb2

    SHA512

    f179ebe84ae065ed63e71f2855b2b69cdedfc8be70dace0eb07c8b191768eace1312562e27e77492481f214f85d31f35c88c2b1f7a3881cee9dffffa7ffc668a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\_uuid.pyd
    Filesize

    22KB

    MD5

    0803ad237eb9e6370d71d0c500ce6493

    SHA1

    60479ffe844717a7ccd451ae1cfa5208ed003177

    SHA256

    fc5dc4af3a540c97d33cd300558488884417912629fad2e36baeba6ffca9faac

    SHA512

    1f8a19fe1c228a5f7cde873a89d3c64e9b3c9b2d9b360bd893b86ac8558bae76a5f08b6a6ba093ff369f0f04e72ec10260d1d2299b796b2c1433ae11ae8b6e1a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\base_library.zip
    Filesize

    763KB

    MD5

    a1133d8a4365d9ab74140559ae5bd788

    SHA1

    81af7f7de134c290566985ff75b6874c9c209d7d

    SHA256

    52dc5a09026d4f3171a001bb92f858860969930554f1165d114b1aaf6e550e3c

    SHA512

    3ba8b1905bcfea864ea38095a405c3b49815cb1ae745bcfbdc850220d815958ce8370a585cebe615f01f6944374c9f8f2c260f71ba1b8d74eb765039a0df132f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\libcrypto-1_1.dll
    Filesize

    3.2MB

    MD5

    aa811bb63dbd4c5859b68332326f60b1

    SHA1

    6e5584d5c59d2f79cbf60c6c71a92ecd7e4e0977

    SHA256

    00a1eeb37372d11559bf44c9e68af9c841c41c95a173f3dfec4e0b5923d0cae0

    SHA512

    dad9b14f501fd63824480f8801acd4004dd46f7a6965ac8ab91e573676236a11099f4b7cfdf7b3f6c0cc52a3b2e5d9b50f715f53a1f4f858ea2a5eb15d5092cd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\libffi-7.dll
    Filesize

    32KB

    MD5

    eef7981412be8ea459064d3090f4b3aa

    SHA1

    c60da4830ce27afc234b3c3014c583f7f0a5a925

    SHA256

    f60dd9f2fcbd495674dfc1555effb710eb081fc7d4cae5fa58c438ab50405081

    SHA512

    dc9ff4202f74a13ca9949a123dff4c0223da969f49e9348feaf93da4470f7be82cfa1d392566eaaa836d77dde7193fed15a8395509f72a0e9f97c66c0a096016

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\libssl-1_1.dll
    Filesize

    673KB

    MD5

    2335285f5ac87173bd304efeddfa1d85

    SHA1

    64558d2150120abed3514db56299721c42c6fe58

    SHA256

    1b57a201184559164dedbddcb43bb110a18cafa19ea3d00fc23274ccfc420e94

    SHA512

    82737590d5ec7315ce8485c4794c01bfcce176ce443740a9f0cf5adfc3c3ed31a714556d33c1ca56db486636111d1ad855f606c87e5f322a505c535187ce2bde

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\python39.dll
    Filesize

    4.3MB

    MD5

    088904a7f5b53107db42e15827e3af98

    SHA1

    1768e7fb1685410e188f663f5b259710f597e543

    SHA256

    3761c232e151e9ceaf6c7d37b68da3df1962e3106e425cc3937d1f60170f3718

    SHA512

    c5edc25fd9a37673f769af1a1fd540b41e68351bc30b44bc83a1d0d4a8fb078888bbb31173a77ef47698631c9816bc05637b499c20d63e3d65457d9aa4bc2c6b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\select.pyd
    Filesize

    28KB

    MD5

    1e74ba085eb08a3affe5f5fabaaa6caf

    SHA1

    46e3efbd21dc0a2c7650ed949bc7e7e91b37efea

    SHA256

    36be2a85c1989dc171bde986950b81d3e9cda21f1d1bf2f81f7fe15ffefad511

    SHA512

    517a109490c3724a630a85471e28ff3c4f96c9810b96f5baa9b66473ef59ed4055e331c8da064a53bc12892fb674f417b3485e96f16015e1437cbd2ca67e87d8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\_MEI34562\unicodedata.pyd
    Filesize

    1.1MB

    MD5

    06092dbacf3b009ad11376dfc5ed2acd

    SHA1

    2597d23469d65936fca20906ef41e1f999944210

    SHA256

    2f9e76a8148029ade3e8f61d014d79a9b1c154cc9b5d6608f50fc478170ff676

    SHA512

    c782ebb9139a6b358d6e55cca3f018e421747984245fafbd150696b152763f2a6d08a21a0185f49df867dfabf5f066631a55f324abfed4e8bece8f85ead81c85

    Download Submit