09e65a661e85c3a3ab0e848809e44f20332b9f46cf5da364c7c8d3992c957f85 | Triage

Submit
Reports

Overview

overview

5

Static

static

4

TeraBox_sl....1.exe

windows7-x64

4

TeraBox_sl....1.exe

windows10-2004-x64

4

$PLUGINSDI...UI.dll

windows7-x64

3

$PLUGINSDI...UI.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...sW.dll

windows7-x64

3

$PLUGINSDI...sW.dll

windows10-2004-x64

3

$TEMP/kernel.dll

windows7-x64

1

$TEMP/kernel.dll

windows10-2004-x64

1

AppUtil.dll

windows7-x64

1

AppUtil.dll

windows10-2004-x64

1

AutoUpdate...il.dll

windows7-x64

1

AutoUpdate...il.dll

windows10-2004-x64

3

AutoUpdate...te.exe

windows7-x64

1

AutoUpdate...te.exe

windows10-2004-x64

1

BugReport.exe

windows7-x64

3

BugReport.exe

windows10-2004-x64

5

Bull140U.dll

windows7-x64

1

Bull140U.dll

windows10-2004-x64

1

ChromeNati...st.exe

windows7-x64

1

ChromeNati...st.exe

windows10-2004-x64

1

HelpUtility.exe

windows7-x64

1

HelpUtility.exe

windows10-2004-x64

1

TeraBox.exe

windows7-x64

5

TeraBox.exe

windows10-2004-x64

5

TeraBoxHost.exe

windows7-x64

1

TeraBoxHost.exe

windows10-2004-x64

1

TeraBoxRender.exe

windows7-x64

1

TeraBoxRender.exe

windows10-2004-x64

1

TeraBoxWebService.exe

windows7-x64

1

TeraBoxWebService.exe

windows10-2004-x64

1

Analysis

max time kernel
143s
max time network
177s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
30-06-2024 11:54

Sharing

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

TeraBox_sl_b_1.31.0.1.exe

Resource

win7-20240419-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

TeraBox_sl_b_1.31.0.1.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/NsisInstallUI.dll

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/NsisInstallUI.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240611-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

$PLUGINSDIR/nsProcessW.dll

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral8

Sample

$PLUGINSDIR/nsProcessW.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral9

Sample

$TEMP/kernel.dll

Resource

win7-20240611-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral10

Sample

$TEMP/kernel.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

13 signatures

150 seconds

Behavioral task

behavioral11

Sample

AppUtil.dll

Resource

win7-20231129-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

AppUtil.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

AutoUpdate/AutoUpdateUtil.dll

Resource

win7-20240220-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

AutoUpdate/AutoUpdateUtil.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

AutoUpdate/Autoupdate.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral16

Sample

AutoUpdate/Autoupdate.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral17

Sample

BugReport.exe

Resource

win7-20240508-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral18

Sample

BugReport.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

Bull140U.dll

Resource

win7-20240508-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

Bull140U.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

ChromeNativeMessagingHost.exe

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

ChromeNativeMessagingHost.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

HelpUtility.exe

Resource

win7-20240611-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

HelpUtility.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

TeraBox.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral26

Sample

TeraBox.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral27

Sample

TeraBoxHost.exe

Resource

win7-20240220-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

TeraBoxHost.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

TeraBoxRender.exe

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

TeraBoxRender.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

TeraBoxWebService.exe

Resource

win7-20240419-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

TeraBoxWebService.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

ChromeNativeMessagingHost.exe
Size

126KB
MD5

cc7d7af64836078ce16a6919f753637c
SHA1

3046f9a67c40e5a21c8ed92a15af4f53e34395e0
SHA256

f9e1e7b4f81d3c08aa9b84701d6dac243541535fa3a39946bb517707e1af0d2b
SHA512

94fd2b097337d83a1635b922f14ffb368e1bbf3db8036d86dfffa7aad4ebfe5c19d96b8bfac99c3b4749acd5d47e7e517e88f9f1da553803e819272def7aad95
SSDEEP

1536:J3g0SyOZkuKe2nzGik0QkDYhH5RKA2CERlXR4L5O1L7nZcGZc9eiy:J3g0SywqqhH5RKA231R4tO1fnpn

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\ChromeNativeMessagingHost.exe
"C:\Users\Admin\AppData\Local\Temp\ChromeNativeMessagingHost.exe"
1⤵
PID:636

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4144 --field-trial-handle=2276,i,11674642242468042059,14711253743544118298,262144 --variations-seed-version /prefetch:8
1⤵
PID:4632

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy