8f53c4425f6546c0570e1893297ebc337d01017cc188803e303c53d106ebc501

Submit
Reports

Overview

overview

Static

static

e2f85c3eb2...16.exe

windows7-x64

e2f85c3eb2...16.exe

windows10-2004-x64

$PLUGINSDIR/Math.dll

windows7-x64

$PLUGINSDIR/Math.dll

windows10-2004-x64

$PLUGINSDI...em.dll

windows7-x64

$PLUGINSDI...em.dll

windows10-2004-x64

GameVisualPlugin.dll

windows7-x64

GameVisualPlugin.dll

windows10-2004-x64

Mythogenes...in.dll

windows7-x64

Mythogenes...in.dll

windows10-2004-x64

Mythogenes...NE.exe

windows7-x64

Mythogenes...NE.exe

windows10-2004-x64

Mythogenes...em.dll

windows7-x64

Mythogenes...em.dll

windows10-2004-x64

Sellerier/...es.dll

windows7-x64

Sellerier/...es.dll

windows10-2004-x64

Sellerier/...le.dll

windows7-x64

Sellerier/...le.dll

windows10-2004-x64

StartNE.exe

windows7-x64

StartNE.exe

windows10-2004-x64

System.IO....em.dll

windows7-x64

System.IO....em.dll

windows10-2004-x64

System.Tex...es.dll

windows7-x64

System.Tex...es.dll

windows10-2004-x64

System.ValueTuple.dll

windows7-x64

System.ValueTuple.dll

windows10-2004-x64

dbdump.dll

windows7-x64

dbdump.dll

windows10-2004-x64

gmodule-2.0.dll

windows7-x64

gmodule-2.0.dll

windows10-2004-x64

icon-cli.html

windows7-x64

icon-cli.html

windows10-2004-x64

Analysis

max time kernel
149s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
27-12-2024 00:42

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e2f85c3eb27695e55e3377d8695f66791dc80a6cbb7b9b059b365c58b5b49d16.exe

Resource

win7-20240708-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

e2f85c3eb27695e55e3377d8695f66791dc80a6cbb7b9b059b365c58b5b49d16.exe

Resource

win10v2004-20241007-en

guloader discovery downloader persistence

windows10-2004-x64

12 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/Math.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/Math.dll

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

GameVisualPlugin.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

GameVisualPlugin.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Mythogeneses/Highlandish/Tagalogs/Hulslib114/GameVisualPlugin.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Mythogeneses/Highlandish/Tagalogs/Hulslib114/GameVisualPlugin.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Mythogeneses/Highlandish/Tagalogs/Hulslib114/StartNE.exe

Resource

win7-20240903-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral12

Sample

Mythogeneses/Highlandish/Tagalogs/Hulslib114/StartNE.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

Mythogeneses/Highlandish/Tagalogs/Hulslib114/System.IO.Compression.FileSystem.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Mythogeneses/Highlandish/Tagalogs/Hulslib114/System.IO.Compression.FileSystem.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Sellerier/System.Text.Encoding.CodePages.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Sellerier/System.Text.Encoding.CodePages.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Sellerier/System.ValueTuple.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Sellerier/System.ValueTuple.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

StartNE.exe

Resource

win7-20241010-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

StartNE.exe

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral21

Sample

System.IO.Compression.FileSystem.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

System.IO.Compression.FileSystem.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

System.Text.Encoding.CodePages.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

System.Text.Encoding.CodePages.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

System.ValueTuple.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

System.ValueTuple.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

dbdump.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

dbdump.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

gmodule-2.0.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

gmodule-2.0.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

icon-cli.html

Resource

win7-20241023-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral32

Sample

icon-cli.html

Resource

win10v2004-20241007-en

discovery

windows10-2004-x64

7 signatures

150 seconds

Report Analysis Logs

General

Target

Mythogeneses/Highlandish/Tagalogs/Hulslib114/System.IO.Compression.FileSystem.dll
Size

23KB
MD5

00f567c4f703502d26e62b16023099b4
SHA1

f3db676945d47579778862e2ccd69d2141c9aa56
SHA256

6f1f542f0545476c5d52b9e2ee8891343eb846a8409c3684a329a631d049b283
SHA512

237b9786fc38be6c263f71a4838c62ec99ff3efdbad923a714d368b50a5e8166c22c302d7ed4d3d13690ef4ff0656d4b7ee336372a3919396e33687e7b3c4e3e
SSDEEP

384:P+dI4qsPZrvWMoWrzv9A0GftpBj3PhJ+ILKHRN7eclSllL9:mdYMZJJiRhJmAllp

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\Mythogeneses\Highlandish\Tagalogs\Hulslib114\System.IO.Compression.FileSystem.dll,#1
1⤵
PID:3424

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads