3bf431de4fbe5cf2143efe06b3580e1223a6ce835dfe157a0d51b1a92d396bda

Submit
Reports

Overview

overview

Static

static

ArenaWarsSetup.exe

windows7-x64

ArenaWarsSetup.exe

windows10-2004-x64

$PLUGINSDI...er.dll

windows7-x64

$PLUGINSDI...er.dll

windows10-2004-x64

$PLUGINSDI...ls.dll

windows7-x64

$PLUGINSDI...ls.dll

windows10-2004-x64

$PLUGINSDI...em.dll

windows7-x64

$PLUGINSDI...em.dll

windows10-2004-x64

$PLUGINSDI...ll.dll

windows7-x64

$PLUGINSDI...ll.dll

windows10-2004-x64

ArenaWars.exe

windows7-x64

ArenaWars.exe

windows10-2004-x64

LICENSES.c...m.html

windows7-x64

LICENSES.c...m.html

windows10-2004-x64

d3dcompiler_47.dll

windows10-2004-x64

ffmpeg.dll

windows7-x64

ffmpeg.dll

windows10-2004-x64

libEGL.dll

windows7-x64

libEGL.dll

windows10-2004-x64

libGLESv2.dll

windows7-x64

libGLESv2.dll

windows10-2004-x64

resources/...dex.js

windows7-x64

resources/...dex.js

windows10-2004-x64

resources/...pi.dll

windows7-x64

resources/...pi.dll

windows10-2004-x64

resources/...e3.dll

windows7-x64

resources/...e3.dll

windows10-2004-x64

resources/...act.js

windows7-x64

resources/...act.js

windows10-2004-x64

sqlite-aut...llback

ubuntu-18.04-amd64

sqlite-aut...llback

debian-9-armhf

sqlite-aut...llback

debian-9-mips

Analysis

max time kernel
100s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20250314-en
resource tags

arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
submitted
28/03/2025, 05:08

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ArenaWarsSetup.exe

Resource

win7-20240903-en

discovery

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ArenaWarsSetup.exe

Resource

win10v2004-20250313-en

credential_access discovery spyware stealer

windows10-2004-x64

22 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win7-20240903-en

discovery

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/SpiderBanner.dll

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win7-20250207-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

$PLUGINSDIR/WinShell.dll

Resource

win7-20240903-en

discovery

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

$PLUGINSDIR/WinShell.dll

Resource

win10v2004-20250313-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral11

Sample

ArenaWars.exe

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

ArenaWars.exe

Resource

win10v2004-20250314-en

credential_access discovery spyware stealer

windows10-2004-x64

20 signatures

150 seconds

Behavioral task

behavioral13

Sample

LICENSES.chromium.html

Resource

win7-20240903-en

discovery

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

LICENSES.chromium.html

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral15

Sample

d3dcompiler_47.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

ffmpeg.dll

Resource

win7-20241010-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

ffmpeg.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

libEGL.dll

Resource

win7-20240903-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

libEGL.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

libGLESv2.dll

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

libGLESv2.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/app.asar.unpacked/node_modules/ilovingcats/dist/index.js

Resource

win7-20240729-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/app.asar.unpacked/node_modules/ilovingcats/dist/index.js

Resource

win10v2004-20250314-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/app.asar.unpacked/node_modules/ilovingcats/prebuilds/win32-x64/node.napi.dll

Resource

win7-20241010-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/app.asar.unpacked/node_modules/ilovingcats/prebuilds/win32-x64/node.napi.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/app.asar.unpacked/node_modules/sqlite3/build/Release/node_sqlite3.dll

Resource

win7-20240903-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/app.asar.unpacked/node_modules/sqlite3/build/Release/node_sqlite3.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

resources/app.asar.unpacked/node_modules/sqlite3/deps/extract.js

Resource

win7-20241023-en

execution

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

resources/app.asar.unpacked/node_modules/sqlite3/deps/extract.js

Resource

win10v2004-20250314-en

execution

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

sqlite-autoconf-3440200/Makefile.fallback

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

sqlite-autoconf-3440200/Makefile.fallback

Resource

debian9-armhf-20240611-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

sqlite-autoconf-3440200/Makefile.fallback

Resource

debian9-mipsbe-20240729-en

debian-9-mips

0 signatures

150 seconds

Report Analysis Logs

General

Target

resources/app.asar.unpacked/node_modules/sqlite3/build/Release/node_sqlite3.dll
Size

1.8MB
MD5

55c17fc28239b0e8ea873f9c9c4e2c02
SHA1

c1be46fc03e63eae5145018c1ee3e70b3af9338f
SHA256

85ec4e3bcec60ec481cd712b4fcbe83631d5ac1e189a87b08a33e1c85f206a66
SHA512

4d670cf1a2d88452b0d384044f0d0c0f83475e0844711df5420c0cfd0567ac6b655aa75fda81dd2f35bbe7db6c380f0b50e3c6f1d9506096ef17f8d3a8cab7d2
SSDEEP

49152:AVtIA1xRrGLYLn9M+BMPPivsICK9rzoNEqt:mtH4X3inMZt

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\resources\app.asar.unpacked\node_modules\sqlite3\build\Release\node_sqlite3.dll,#1
1⤵
PID:3560

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads