19bd57fa080deeb94b3b07325b0d45d0e1a5abde38c123010b5fd640504751e0 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

KRNL Remak....3.dll

windows7-x64

1

KRNL Remak....3.dll

windows10-2004-x64

1

KRNL Remak...ox.dll

windows7-x64

1

KRNL Remak...ox.dll

windows10-2004-x64

1

KRNL Remak...I2.dll

windows7-x64

1

KRNL Remak...I2.dll

windows10-2004-x64

1

KRNL Remak...ke.exe

windows7-x64

6

KRNL Remak...ke.exe

windows10-2004-x64

7

KRNL Remak...es.dll

windows7-x64

1

KRNL Remak...es.dll

windows10-2004-x64

1

KRNL Remak...on.dll

windows7-x64

1

KRNL Remak...on.dll

windows10-2004-x64

1

KRNL Remak...rp.dll

windows7-x64

1

KRNL Remak...rp.dll

windows10-2004-x64

1

KRNL Remak...rs.dll

windows7-x64

1

KRNL Remak...rs.dll

windows10-2004-x64

1

KRNL Remak...om.dll

windows7-x64

1

KRNL Remak...om.dll

windows10-2004-x64

1

KRNL Remak...es.dll

windows7-x64

1

KRNL Remak...es.dll

windows10-2004-x64

1

KRNL Remak...ry.dll

windows7-x64

1

KRNL Remak...ry.dll

windows10-2004-x64

1

KRNL Remak...rs.dll

windows7-x64

1

KRNL Remak...rs.dll

windows10-2004-x64

1

KRNL Remak...fe.dll

windows7-x64

1

KRNL Remak...fe.dll

windows10-2004-x64

1

KRNL Remak...eb.dll

windows7-x64

1

KRNL Remak...eb.dll

windows10-2004-x64

1

KRNL Remak...on.dll

windows7-x64

1

KRNL Remak...on.dll

windows10-2004-x64

1

KRNL Remak...ns.dll

windows7-x64

1

KRNL Remak...ns.dll

windows10-2004-x64

1

Analysis

max time kernel
420s
max time network
423s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
19-01-2025 14:11

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

KRNL Remake/Bunifu_UI_v1.5.3.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral2

Sample

KRNL Remake/Bunifu_UI_v1.5.3.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral3

Sample

KRNL Remake/FastColoredTextBox.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral4

Sample

KRNL Remake/FastColoredTextBox.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral5

Sample

KRNL Remake/Guna.UI2.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral6

Sample

KRNL Remake/Guna.UI2.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral7

Sample

KRNL Remake/KRNL Remake.exe

Resource

win7-20240903-en

discovery persistence

windows7-x64

8 signatures

900 seconds

Behavioral task

behavioral8

Sample

KRNL Remake/KRNL Remake.exe

Resource

win10v2004-20241007-en

discovery persistence privilege_escalation

windows10-2004-x64

20 signatures

900 seconds

Behavioral task

behavioral9

Sample

KRNL Remake/Microsoft.Bcl.AsyncInterfaces.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral10

Sample

KRNL Remake/Microsoft.Bcl.AsyncInterfaces.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral11

Sample

KRNL Remake/Newtonsoft.Json.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral12

Sample

KRNL Remake/Newtonsoft.Json.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral13

Sample

KRNL Remake/RestSharp.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral14

Sample

KRNL Remake/RestSharp.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral15

Sample

KRNL Remake/System.Buffers.dll

Resource

win7-20241023-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral16

Sample

KRNL Remake/System.Buffers.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral17

Sample

KRNL Remake/System.CodeDom.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral18

Sample

KRNL Remake/System.CodeDom.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral19

Sample

KRNL Remake/System.IO.Pipelines.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral20

Sample

KRNL Remake/System.IO.Pipelines.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral21

Sample

KRNL Remake/System.Memory.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral22

Sample

KRNL Remake/System.Memory.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral23

Sample

KRNL Remake/System.Numerics.Vectors.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral24

Sample

KRNL Remake/System.Numerics.Vectors.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral25

Sample

KRNL Remake/System.Runtime.CompilerServices.Unsafe.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral26

Sample

KRNL Remake/System.Runtime.CompilerServices.Unsafe.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral27

Sample

KRNL Remake/System.Text.Encodings.Web.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral28

Sample

KRNL Remake/System.Text.Encodings.Web.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral29

Sample

KRNL Remake/System.Text.Json.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral30

Sample

KRNL Remake/System.Text.Json.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Behavioral task

behavioral31

Sample

KRNL Remake/System.Threading.Tasks.Extensions.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

900 seconds

Behavioral task

behavioral32

Sample

KRNL Remake/System.Threading.Tasks.Extensions.dll

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

900 seconds

Report Analysis Logs

General

Target

KRNL Remake/System.Buffers.dll
Size

23KB
MD5

b20c1ed526c9fd90569a340914864d32
SHA1

8c23283128d23f6cbc208e3a485a1cf1a9c0cb50
SHA256

3af1e07305bed0abe0cf32d9854e0a7f5f470216adee1b87d02350be09d31b35
SHA512

c7de839aa129b73094678efea3da88073c3521c99e3533a0858ec8e0804db2004c4e84af12ecf4358ce134b12c66040fd04add9ab96c78414a247a7cbd0d75d5
SSDEEP

384:HRJyzxhqFAB5n55560IxEFuAUTcxR+sDWY82W6fX6HRN7gCJDtdQ5R9z1QUMtr:xJyYkx60IxeuSM2Wrds9z8

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe "C:\Users\Admin\AppData\Local\Temp\KRNL Remake\System.Buffers.dll",#1
1⤵
PID:3560

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy