07aab4b73e6ddfdc331481b36c9ec94b0da42cac81eb50f6c50aeb0fd211a435 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

07aab4b73e...35.exe

windows7-x64

3

07aab4b73e...35.exe

windows10-2004-x64

7

$0/Archive...64.dll

windows7-x64

1

$0/Archive...64.dll

windows10-2004-x64

1

$0/Microso...er.dll

windows7-x64

1

$0/Microso...er.dll

windows10-2004-x64

1

$0/RAVEndP...er.exe

windows7-x64

1

$0/RAVEndP...er.exe

windows10-2004-x64

1

$0/System....te.dll

windows7-x64

1

$0/System....te.dll

windows10-2004-x64

1

$0/System....le.dll

windows7-x64

1

$0/System....le.dll

windows10-2004-x64

1

$0/cs-CZ/R...es.dll

windows7-x64

1

$0/cs-CZ/R...es.dll

windows10-2004-x64

1

$0/da-DK/R...es.dll

windows7-x64

1

$0/da-DK/R...es.dll

windows10-2004-x64

1

$0/de-DE/R...es.dll

windows7-x64

1

$0/de-DE/R...es.dll

windows10-2004-x64

1

$0/de/Micr...es.dll

windows7-x64

1

$0/de/Micr...es.dll

windows10-2004-x64

1

$0/el-GR/R...es.dll

windows7-x64

1

$0/el-GR/R...es.dll

windows10-2004-x64

1

$0/es-ES/R...es.dll

windows7-x64

1

$0/es-ES/R...es.dll

windows10-2004-x64

1

$0/es/Micr...es.dll

windows7-x64

1

$0/es/Micr...es.dll

windows10-2004-x64

1

$0/fi-FI/R...es.dll

windows7-x64

1

$0/fi-FI/R...es.dll

windows10-2004-x64

1

$0/fil-PH/...es.dll

windows7-x64

1

$0/fil-PH/...es.dll

windows10-2004-x64

1

$0/fr-FR/R...es.dll

windows7-x64

1

$0/fr-FR/R...es.dll

windows10-2004-x64

1

Analysis

max time kernel
93s
max time network
143s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
21-12-2024 14:40

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

07aab4b73e6ddfdc331481b36c9ec94b0da42cac81eb50f6c50aeb0fd211a435.exe

Resource

win7-20241010-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

07aab4b73e6ddfdc331481b36c9ec94b0da42cac81eb50f6c50aeb0fd211a435.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

$0/ArchiveUtilityx64.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

$0/ArchiveUtilityx64.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$0/Microsoft.Win32.TaskScheduler.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

$0/Microsoft.Win32.TaskScheduler.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

$0/RAVEndPointProtection-installer.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$0/RAVEndPointProtection-installer.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

$0/System.Data.SQLite.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

$0/System.Data.SQLite.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

$0/System.ValueTuple.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

$0/System.ValueTuple.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

$0/cs-CZ/RavStub.resources.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

$0/cs-CZ/RavStub.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

$0/da-DK/RavStub.resources.dll

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

$0/da-DK/RavStub.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

$0/de-DE/RavStub.resources.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

$0/de-DE/RavStub.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

$0/de/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

$0/de/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

$0/el-GR/RavStub.resources.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

$0/el-GR/RavStub.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

$0/es-ES/RavStub.resources.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

$0/es-ES/RavStub.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

$0/es/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

$0/es/Microsoft.Win32.TaskScheduler.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

$0/fi-FI/RavStub.resources.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$0/fi-FI/RavStub.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

$0/fil-PH/RavStub.resources.dll

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

$0/fil-PH/RavStub.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

$0/fr-FR/RavStub.resources.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

$0/fr-FR/RavStub.resources.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

$0/da-DK/RavStub.resources.dll
Size

12KB
MD5

98b6df5f4e0f1d34a0bd3dd49f92d82b
SHA1

b69000a0998055612ea5940d4b1d5f2ce07ae427
SHA256

3e7d3946c5efeb9f7a27ae43de75f1a1d0af34ccbb69f857217be97bd28c0761
SHA512

833b5e0fc14e247e788d59a7d21edc7f6db1ff0d9378a77fb13f25ccfbea820623b2b5f9823ae409d7eaa3b5526aa61bb367bf83bee2a33263457fd3049d3fb6
SSDEEP

192:FIYRN3EsGGj3fvKEx8rUrb+M0lIVixNPqDGomU3WUeQoXjAUwMXrAfeMA7AWmBHP:FXN3EsVfvVx8rUrb+M0lIVixNqiomyJD

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\$0\da-DK\RavStub.resources.dll,#1
1⤵
PID:4104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy