615dd41707af9736ba4eeb08a0797395a0edc6fd605718a965c5029cbafe5818 | Triage

Submit
Reports

Overview

overview

Static

static

Setup.exe

windows7-x64

1

Setup.exe

windows10-2004-x64

8

msvcp290.dll

windows7-x64

1

msvcp290.dll

windows10-2004-x64

1

nasrallah_x86.dll

windows7-x64

1

nasrallah_x86.dll

windows10-2004-x64

1

tier0_s64.dll

windows7-x64

1

tier0_s64.dll

windows10-2004-x64

1

vcruntime210.dll

windows7-x64

1

vcruntime210.dll

windows10-2004-x64

1

vstdlib_s64.dll

windows7-x64

1

vstdlib_s64.dll

windows10-2004-x64

Analysis

max time kernel
104s
max time network
130s
platform
windows10-2004_x64
resource
win10v2004-20250314-en
resource tags

arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
submitted
21/03/2025, 01:05

Sharing

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Setup.exe

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

Setup.exe

Resource

win10v2004-20250314-en

defense_evasion discovery persistence spyware

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral3

Sample

msvcp290.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

msvcp290.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

nasrallah_x86.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

nasrallah_x86.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

tier0_s64.dll

Resource

win7-20241023-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

tier0_s64.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

vcruntime210.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

vcruntime210.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

vstdlib_s64.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

vstdlib_s64.dll

Resource

win10v2004-20250314-en

rhadamanthys discovery stealer

windows10-2004-x64

9 signatures

150 seconds

Report Analysis Logs

General

Target

tier0_s64.dll
Size

412KB
MD5

de738f87b7a558476d73d590ea20a3b9
SHA1

ea2da2c8b5c811ea798805d3e77250f12cf6da76
SHA256

87b2d5cd0f667d8f72468ffd146dcf2aebdf7e65db575c04ffe6a4df9c1f1850
SHA512

934a24556d0a4dd7643c03f96cb057ff25bceecbc9795c4a30884aecc5afd441fa99bfe0d978c8879f3fb10260373f055731f51a18775c55de68fa716bccb81b
SSDEEP

6144:xgK7Z8Fd7IQx/XYn7z504xbPnTfMrqS63qqp5WEoXWGhYcRo4gFYRu7oJzBV9:hZ8Fd7IM/Xwnz2qS63nYEe6uo4gxyB

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\tier0_s64.dll,#1
1⤵
PID:208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy