bb8ae4c7145884c0e06e08839b39a2a13a06924e93fba1e217cc4ada072652d1

Submit
Reports

Overview

overview

Static

static

KMSpico/KM...DI.exe

windows10-2004-x64

KMSpico/KM...MI.dll

windows10-2004-x64

KMSpico/KM...it.dll

windows10-2004-x64

KMSpico/KM...pi.dll

windows10-2004-x64

KMSpico/KM...es.dll

windows10-2004-x64

KMSpico/KM...xt.dll

windows10-2004-x64

KMSpico/KM...32.dll

windows10-2004-x64

KMSpico/KM...lc.dll

windows10-2004-x64

KMSpico/KM...re.dll

windows10-2004-x64

KMSpico/KM...ll.dll

windows10-2004-x64

KMSpico/KM...RT.dll

windows10-2004-x64

KMSpico/KM...es.dll

windows10-2004-x64

KMSpico/KM...ls.dll

windows10-2004-x64

KMSpico/KM...ar.exe

windows10-2004-x64

KMSpico/KM...32.dll

windows10-2004-x64

KMSpico/KM...32.dll

windows10-2004-x64

KMSpico/KM...re.pkg

macos-10.15-amd64

KMSpico/KM...ar.dll

windows10-2004-x64

KMSpico/KM...te.exe

windows10-2004-x64

KMSpico/KM...32.dll

windows10-2004-x64

KMSpico/KM...64.dll

windows10-2004-x64

KMSpico/KM...32.dll

windows10-2004-x64

KMSpico/KM...64.dll

windows10-2004-x64

KMSpico/KM...io.exe

windows10-2004-x64

KMSpico/KM...iz.exe

windows10-2004-x64

KMSpico/KM...er.exe

windows10-2004-x64

KMSpico/KM...ll.dll

windows10-2004-x64

KMSpico/KM...RT.dll

windows10-2004-x64

KMSpico/KM...es.dll

windows10-2004-x64

KMSpico/KM...ls.dll

windows10-2004-x64

KMSpico/KM...ar.exe

windows10-2004-x64

KMSpico/KM...32.dll

windows10-2004-x64

Analysis

max time kernel
100s
max time network
110s
platform
windows10-2004_x64
resource
win10v2004-20250410-en
resource tags

arch:x64arch:x86image:win10v2004-20250410-enlocale:en-usos:windows10-2004-x64system
submitted
10/04/2025, 22:22

Sharing

Copy URL

Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

KMSpico/KMSpico/KMSELDI.exe

Resource

win10v2004-20250314-en

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

KMSpico/KMSpico/Resource/Full-Info/ClusWMI.dll

Resource

win10v2004-20250410-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

KMSpico/KMSpico/Resource/Full-Info/clrjit.dll

Resource

win10v2004-20250410-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

KMSpico/KMSpico/Resource/Full-Info/clusapi.dll

Resource

win10v2004-20250410-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

KMSpico/KMSpico/Resource/Full-Info/clusres.dll

Resource

win10v2004-20250410-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

KMSpico/KMSpico/Resource/Full-Info/cluswmiext.dll

Resource

win10v2004-20250410-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

KMSpico/KMSpico/Resource/Full-Info/cmdial32.dll

Resource

win10v2004-20250410-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

KMSpico/KMSpico/Resource/Full-Info/libvlc.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral9

Sample

KMSpico/KMSpico/Resource/Full-Info/libvlccore.dll

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral10

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/ICQLiteShell.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral11

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/ICQRT.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral12

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/Language/LiteRes.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral13

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/Language/LiteSkinUtils.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral14

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/Language/WinRar.exe

Resource

win10v2004-20250410-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/Language/madHcNet32.dll

Resource

win10v2004-20250313-en

discovery

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral16

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/Language/mvrSettings32.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral17

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/Language/nolimetangere.pkg

Resource

macos-20250410-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

KMSpico/KMSpico/Resource/Full-Info/plugins/cache/Language/unrar.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

KMSpico/KMSpico/activate.exe

Resource

win10v2004-20250410-en

lumma discovery execution spyware stealer

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral20

Sample

KMSpico/KMSpico/plugins/CryptoPP530Fips32.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral21

Sample

KMSpico/KMSpico/plugins/CryptoPP530Fips64.dll

Resource

win10v2004-20250314-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

KMSpico/KMSpico/plugins/FlowSshC32.dll

Resource

win10v2004-20250313-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral23

Sample

KMSpico/KMSpico/plugins/FlowSshC64.dll

Resource

win10v2004-20250410-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

KMSpico/KMSpico/plugins/Microsoft.VisualStudio.exe

Resource

win10v2004-20250410-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

KMSpico/KMSpico/plugins/NvStWiz.exe

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

KMSpico/KMSpico/plugins/StartupHelper.exe

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

KMSpico/KMSpico/plugins/cache/ICQLiteShell.dll

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral28

Sample

KMSpico/KMSpico/plugins/cache/ICQRT.dll

Resource

win10v2004-20250313-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral29

Sample

KMSpico/KMSpico/plugins/cache/Language/LiteRes.dll

Resource

win10v2004-20250314-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

KMSpico/KMSpico/plugins/cache/Language/LiteSkinUtils.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral31

Sample

KMSpico/KMSpico/plugins/cache/Language/WinRar.exe

Resource

win10v2004-20250410-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

KMSpico/KMSpico/plugins/cache/Language/madHcNet32.dll

Resource

win10v2004-20250410-en

discovery

windows10-2004-x64

6 signatures

150 seconds

Report Analysis Logs

General

Target

KMSpico/KMSpico/Resource/Full-Info/clusres.dll
Size

1.1MB
MD5

1fe1366d70efc7160f57bc4414c26667
SHA1

19beb3b8aad7ab970e76ef088ae4c2673e84b3e8
SHA256

aa661d52e2e2a5cb4ce3b18bc2835fbb30c38f0f1c4f8c91ae68704512b93eb6
SHA512

f2d1624891cde898fc7231a2aa0f0a5d3a864692eb4e1849c0f3cb3def89ec530913a33a69d7c5eb734f21de3738b2b631d2b8a6855af08e9eb5eadfba65f397
SSDEEP

24576:0zlvm+kq8cnVvD7+vXA/yD52UwHsJJoGCBnwpu2sFwiwI8E9e4F245:ARmZV2cXA/yD8UZoGkwpihwI9V2q

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\KMSpico\KMSpico\Resource\Full-Info\clusres.dll,#1
1⤵
PID:2836

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads