785d71950c369a273ded2c1e4159b0d06bcd9fd63a5eefb2288ba77bbfc2b67d | Triage

Submit
Reports

Overview

overview

Static

static

1

123/7zxa.dll

windows7-x64

1

123/7zxa.dll

windows10-2004-x64

1

123/Data/Updater.exe

windows7-x64

1

123/Data/Updater.exe

windows10-2004-x64

1

123/Exlan_....2.exe

windows7-x64

7

123/Exlan_....2.exe

windows10-2004-x64

123/RarExt.dll

windows7-x64

1

123/RarExt.dll

windows10-2004-x64

1

123/psmachine.dll

windows7-x64

5

123/psmachine.dll

windows10-2004-x64

5

123/psmach...64.dll

windows7-x64

1

123/psmach...64.dll

windows10-2004-x64

1

Analysis

max time kernel
91s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
07-01-2025 00:05

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

123/7zxa.dll

Resource

win7-20240729-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

123/7zxa.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

123/Data/Updater.exe

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

123/Data/Updater.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

123/Exlan_setup_v3.1.2.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral6

Sample

123/Exlan_setup_v3.1.2.exe

Resource

win10v2004-20241007-en

lumma discovery stealer

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral7

Sample

123/RarExt.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

123/RarExt.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

123/psmachine.dll

Resource

win7-20240903-en

discovery persistence privilege_escalation

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral10

Sample

123/psmachine.dll

Resource

win10v2004-20241007-en

discovery persistence privilege_escalation

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral11

Sample

123/psmachine_arm64.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

123/psmachine_arm64.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

123/psmachine_arm64.dll
Size

308KB
MD5

a3639cde0be7bf17849262a3053a8c6c
SHA1

cd0e1a95c22c7dd4c6133cab634b534af66337fb
SHA256

f6e957a309fd99abaf67162f3a722943e5fd46d8b69d25dc19f9826f9285e7e3
SHA512

29ba268708277ccf15950001542dc88470bade56b5b430c7dbea00c6db16cfef96a855c4ada46fed3c3cf9d3eca51509b2b86a8c67975e0c277adafb63ec1c63
SSDEEP

6144:5NqXt3efkVrto8ikXRubcB2k8ozcJEyor0sMESED/am8:1v6SEqEzy

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\123\psmachine_arm64.dll,#1
1⤵
PID:1164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy