Overview

overview

10

Static

static

10

R.E.P.O/Mo...tor.js

windows7-x64

3

R.E.P.O/Mo...tor.js

windows10-2004-x64

3

R.E.P.O/OnlineFix.url

windows7-x64

6

R.E.P.O/OnlineFix.url

windows10-2004-x64

6

R.E.P.O/On...64.dll

windows7-x64

1

R.E.P.O/On...64.dll

windows10-2004-x64

1

R.E.P.O/REPO.exe

windows7-x64

1

R.E.P.O/REPO.exe

windows10-2004-x64

1

R.E.P.O/RE...ss.dll

windows7-x64

1

R.E.P.O/RE...ss.dll

windows10-2004-x64

1

R.E.P.O/RE...rp.dll

windows7-x64

1

R.E.P.O/RE...rp.dll

windows10-2004-x64

1

R.E.P.O/RE...bx.dll

windows7-x64

1

R.E.P.O/RE...bx.dll

windows10-2004-x64

1

R.E.P.O/RE...64.dll

windows7-x64

1

R.E.P.O/RE...64.dll

windows10-2004-x64

1

R.E.P.O/RE...ts.dll

windows7-x64

1

R.E.P.O/RE...ts.dll

windows10-2004-x64

1

R.E.P.O/RE...th.dll

windows7-x64

1

R.E.P.O/RE...th.dll

windows10-2004-x64

1

R.E.P.O/RE...ty.dll

windows7-x64

1

R.E.P.O/RE...ty.dll

windows10-2004-x64

1

R.E.P.O/RE...on.dll

windows7-x64

1

R.E.P.O/RE...on.dll

windows10-2004-x64

1

R.E.P.O/RE...3D.dll

windows7-x64

1

R.E.P.O/RE...3D.dll

windows10-2004-x64

1

R.E.P.O/RE...at.dll

windows7-x64

1

R.E.P.O/RE...at.dll

windows10-2004-x64

1

R.E.P.O/RE...me.dll

windows7-x64

1

R.E.P.O/RE...me.dll

windows10-2004-x64

1

R.E.P.O/RE...es.dll

windows7-x64

1

R.E.P.O/RE...es.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    88s
  • max time network
    140s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250314-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/03/2025, 13:37 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    R.E.P.O/REPO_Data/Managed/Newtonsoft.Json.dll

  • Size

    675KB

  • MD5

    d751086b7423fd5580b5e909b06217b9

  • SHA1

    c1707b17df636cd6d4a804361fc6ead4ef9db5cf

  • SHA256

    a56146202232958f46bd6a28b5a7da166aea123ee0d646735a46e5c341dfbf1f

  • SHA512

    86655b59ad62664a35a30807cce7dc2c2be8f1ece235f35dc9031873d255dc6f13a22b55d0386becbe927f007a14a6d936ba3861d1103af8f2fe16aa0afebe11

  • SSDEEP

    12288:aBNYm5IWx4AhnIqjCfP4bYaRLL0eglBmjV+0kRqQCB0jEIF:aBum5I24A5LYa5g1ByNyq5B0jzF

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\R.E.P.O\REPO_Data\Managed\Newtonsoft.Json.dll,#1
    1⤵
      PID:5828

    Network

    • flag-us
      DNS
      g.bing.com
      Remote address:
      8.8.8.8:53
      Request
      g.bing.com
      IN A
      Response
      g.bing.com
      IN CNAME
      g-bing-com.ax-0001.ax-msedge.net
      g-bing-com.ax-0001.ax-msedge.net
      IN CNAME
      ax-0001.ax-msedge.net
      ax-0001.ax-msedge.net
      IN A
      150.171.28.10
      ax-0001.ax-msedge.net
      IN A
      150.171.27.10
    • flag-us
      DNS
      c.pki.goog
      Remote address:
      8.8.8.8:53
      Request
      c.pki.goog
      IN A
      Response
      c.pki.goog
      IN CNAME
      pki-goog.l.google.com
      pki-goog.l.google.com
      IN A
      142.250.187.195
    • flag-gb
      GET
      http://c.pki.goog/r/r1.crl
      Remote address:
      142.250.187.195:80
      Request
      GET /r/r1.crl HTTP/1.1
      Cache-Control: max-age = 3000
      Connection: Keep-Alive
      Accept: */*
      If-Modified-Since: Thu, 25 Jul 2024 14:48:00 GMT
      User-Agent: Microsoft-CryptoAPI/10.0
      Host: c.pki.goog
      Response
      HTTP/1.1 304 Not Modified
      Date: Fri, 14 Mar 2025 13:20:00 GMT
      Expires: Fri, 14 Mar 2025 14:10:00 GMT
      Age: 1432
      Last-Modified: Thu, 25 Jul 2024 14:48:00 GMT
      Cache-Control: public, max-age=3000
      Vary: Accept-Encoding
    • 150.171.28.10:443
      g.bing.com
      tls
      2.0kB
       9.4kB
       22
      19
    • 142.250.187.195:80
      http://c.pki.goog/r/r1.crl
      http
      476 B
       395 B
       6
      4

      HTTP Request

      GET http://c.pki.goog/r/r1.crl

      HTTP Response

      304
    • 8.8.8.8:53
      g.bing.com
      dns
      56 B
       148 B
       1
      1

      DNS Request

      g.bing.com

      DNS Response

      150.171.28.10
      150.171.27.10

    • 8.8.8.8:53
      c.pki.goog
      dns
      56 B
       107 B
       1
      1

      DNS Request

      c.pki.goog

      DNS Response

      142.250.187.195

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.