Analysis
-
max time kernel
72s -
max time network
100s -
platform
windows11-21h2_x64 -
resource
win11-20250217-en -
resource tags
-
submitted
10/03/2025, 05:36
General
-
Target
R.E.P.O/REPO_Data/Managed/UnityEngine.XRModule.dll
-
Size
67KB
-
MD5
539da23ff25072a2425848a0e9a8dac4
-
SHA1
a40fdbaf67d24abec75806a41d891fb8b371b666
-
SHA256
db8bdaa2dd15f0dc0ddb22e511b0acebf70f18420ba153a67ce9f7f8a67d19d3
-
SHA512
55dd652edd596e2ed1b91c002694d8af0c03fb365488154fdd82efb809370444d63e107883e660cb217bfdb941a3ad524f577911bfb4d5646fa3d1be97cd2d67
-
SSDEEP
1536:YJMyAvGaUUUUUU1q1YB08bQSXB4hKrizncHAhjMFSZh3oxVc:YQ9RQrrznHEc
Malware Config
Signatures
-
Modifies registry class 1 IoCs
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\R.E.P.O\REPO_Data\Managed\UnityEngine.XRModule.dll,#11⤵
-
C:\Windows\System32\rundll32.exeC:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding1⤵
-
C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
23KB
MD59087ae74d30d2e2b097ee71597c836d5
SHA1fa53fd233fe40713494c877d602d594eaef823e7
SHA2560f556a1dc8300722d5c9e1fa02e9f752de0ad6218bec80c942d664bf9256cb97
SHA5128b36a58eeb967c69762b67b7931867cfed4757eb9eb397b6cb381bac83874928eb18aa43a43bdbbe9ec425bf54ac55fffcc565d56b33438b613c815f3a5940ba
-
Filesize
23KB
MD596f36c2acf32c990fcdefa63b834673c
SHA1e6789e2116691b32c8a5546cf06dce92593e7db9
SHA2565e64cc195984ea46ee3afdf1ff05fe5a91882ce64f7ba036b55a09e9fa5483a1
SHA5122db4c973235c8b2ec52df5a7ca981a84ec167e03e4c015f41583f2e06c3d1fa054ccf349d2ddb5ce0ee455496d801879cca21df1fbbbdaadf47a89fb23a3f647