536e8b1207df3afebfae5d4d9f19e33948c04967c322ae1c02fae00bc3695346

Submit
Reports

Overview

overview

Static

static

bootstrapp...er.exe

windows7-x64

bootstrapp...er.exe

windows10-2004-x64

bootstrapp...m.html

windows7-x64

bootstrapp...m.html

windows10-2004-x64

bootstrapp...47.dll

windows10-2004-x64

bootstrapp...eg.dll

windows7-x64

bootstrapp...eg.dll

windows10-2004-x64

bootstrapp...GL.dll

windows7-x64

bootstrapp...GL.dll

windows10-2004-x64

bootstrapp...v2.dll

windows7-x64

bootstrapp...v2.dll

windows10-2004-x64

bootstrapp...ip.dll

windows7-x64

bootstrapp...ip.dll

windows10-2004-x64

bootstrapp...32.dll

windows7-x64

bootstrapp...32.dll

windows10-2004-x64

bootstrapp...7z.dll

windows7-x64

bootstrapp...7z.dll

windows10-2004-x64

bootstrapp...7z.exe

windows7-x64

bootstrapp...7z.exe

windows10-2004-x64

bootstrapp...on.exe

windows7-x64

bootstrapp...on.exe

windows10-2004-x64

bootstrapp...dex.js

windows7-x64

bootstrapp...dex.js

windows10-2004-x64

bootstrapp...GL.dll

windows7-x64

bootstrapp...GL.dll

windows10-2004-x64

bootstrapp...v2.dll

windows7-x64

bootstrapp...v2.dll

windows10-2004-x64

bootstrapp...11.dll

windows7-x64

bootstrapp...11.dll

windows10-2004-x64

bootstrapp...er.dll

windows7-x64

bootstrapp...er.dll

windows10-2004-x64

bootstrapp...-1.dll

windows7-x64

Analysis

max time kernel
5s
max time network
22s
platform
windows7_x64
resource
win7-20241010-en
resource tags

arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
submitted
10-02-2025 20:39

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bootstrapper/Bootstrapper.exe

Resource

win7-20241010-en

persistence privilege_escalation

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

bootstrapper/Bootstrapper.exe

Resource

win10v2004-20250207-en

rhadamanthys adware discovery persistence privilege_escalation stealer

windows10-2004-x64

29 signatures

150 seconds

Behavioral task

behavioral3

Sample

bootstrapper/LICENSES.chromium.html

Resource

win7-20240729-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral4

Sample

bootstrapper/LICENSES.chromium.html

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

10 signatures

150 seconds

Behavioral task

behavioral5

Sample

bootstrapper/d3dcompiler_47.dll

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

bootstrapper/ffmpeg.dll

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

bootstrapper/ffmpeg.dll

Resource

win10v2004-20250207-en

rhadamanthys discovery stealer

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral8

Sample

bootstrapper/libEGL.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

bootstrapper/libEGL.dll

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

bootstrapper/libGLESv2.dll

Resource

win7-20240729-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

bootstrapper/libGLESv2.dll

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral12

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7-zip.dll

Resource

win7-20240903-en

persistence privilege_escalation

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7-zip.dll

Resource

win10v2004-20250207-en

discovery persistence privilege_escalation

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7-zip32.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral15

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7-zip32.dll

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral16

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7z.dll

Resource

win7-20241010-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7z.dll

Resource

win10v2004-20250129-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7z.exe

Resource

win7-20240729-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral19

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7z.exe

Resource

win10v2004-20250207-en

adware discovery persistence privilege_escalation stealer

windows10-2004-x64

21 signatures

150 seconds

Behavioral task

behavioral20

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7zCon.exe

Resource

win7-20240903-en

discovery

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/7zip-lite/7zCon.exe

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral22

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/index.js

Resource

win7-20240729-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

bootstrapper/resources/app.asar.unpacked/node_modules/7zip/index.js

Resource

win10v2004-20250129-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

bootstrapper/swiftshader/libEGL.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

bootstrapper/swiftshader/libEGL.dll

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

bootstrapper/swiftshader/libGLESv2.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

bootstrapper/swiftshader/libGLESv2.dll

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral28

Sample

bootstrapper/vcruntime211.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

bootstrapper/vcruntime211.dll

Resource

win10v2004-20250129-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

bootstrapper/vk_swiftshader.dll

Resource

win7-20240729-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

bootstrapper/vk_swiftshader.dll

Resource

win10v2004-20250207-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral32

Sample

bootstrapper/vulkan-1.dll

Resource

win7-20241010-en

windows7-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

bootstrapper/swiftshader/libGLESv2.dll
Size

3.0MB
MD5

30f7a174e44be1fd6fc9e24b05edca24
SHA1

6356342fea69d182efe019f388e7169a3ee820de
SHA256

c13b6b090847741433c50e229875100d7a7debb20940fbf99e287f46379c1371
SHA512

c60878ce10e536f797894447cc0141e19af1aa1386c3d7a57e3904f3d5a40e4e7bb49c109fb2b61cc5bbd7ef1be6cf38a37447a97ea88efb826a0584cb97e508
SSDEEP

49152:93o1NYAyXqUQR1R3q0NIfm0phtZFYnMHZUYDbhgnmBVrRCWZPeEaYeFQtmICLP:KUJvXtZun+FJHeF

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\bootstrapper\swiftshader\libGLESv2.dll,#1
1⤵
PID:2164

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads