Overview

overview

7

Static

static

3

94caad77d4...c0.exe

windows7-x64

94caad77d4...c0.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

Spacetherapy.exe

windows7-x64

7

Spacetherapy.exe

windows10-2004-x64

7

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/02/2024, 05:03

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    5.3MB

  • MD5

    dfa12f4edccb902d7d3b07fae219f176

  • SHA1

    c2073440a5add265b4143de05e6864fed2c3b840

  • SHA256

    501f0b7ebf0be7ed8702d317332a0f8820af837c0a2a1d7645ba04352270e2b8

  • SHA512

    eee3a8e0eeae139ddd9369d0869c29c91007bf6c5b0d7982918d5a013214a9e80b9233e7c1ccb43124152f684f0b782831b0a6b3d126558261dd161230004e50

  • SSDEEP

    12288:FetnJnVncnJnknE9RBvjYJEi400/Q599b769B9UOE6MwMGucMEbHDuX04nNWQFna:WbXZ5IoWSL9bcwVR8mf+/cHBBaRp1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2672
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2672 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2688

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          679e3ae03f431d2b73f75fe56c0b2283

          SHA1

          c9316b671f87d54d1a4c58b6a0bf2e10e20278a9

          SHA256

          636c1fc8042f584bc378ec185a6238c84d0a603dea17982ee7c14f0ae6135674

          SHA512

          32374adc6a8c4f18222c520f4e84b6150051b11bee0759cd68c476653f4a01ad6e344f5e5fa536149a9f5c125ef549a90bd07e4b5ad133ef6f257caba2e13d03

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1e8fb000b71489d8d98275289819c416

          SHA1

          1cb29624793c4d35da90f2300387a0962a0e4365

          SHA256

          dbd3f908d8c2ba47cb415a59cbc9981b7a4b7f4ac292ff258e6b58f0fe595620

          SHA512

          a797dc3bc8e1bf082f805fb9872ff03c0e04fab19c3b02810dae61634a15941e6e94cfe8f7d308ee8ce2b52596242d9c65acb2ce18a8fb99f0c9b746da8f0d99

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          68c79c3d0027d4d0ee3aa5526485ce8b

          SHA1

          31de535509661959ec5cc20a18de811f8d34943d

          SHA256

          f7f66913c68f510aa10e73caf9c10d33e4962baf5514939efb9d232ae2d44c6a

          SHA512

          2e860b1235e01e869647acac68e5e5b4d0cc29425099e01761f45f88bb5977926940cbbf5f766db5813e4a042e170602170c5a9410aa8a5f0cba0670e3988903

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a11671f2308c761575670efb4e89e427

          SHA1

          5db854cfcb6f47ed4eb854ea2e17470ebafd047a

          SHA256

          b2d9ed6d7744529c3e95cb860ba4d59b3b8f8c2e7d78b610b98f75dd38f7b6a0

          SHA512

          bcd740fc75e5790d2f3768429879ac0d52bb3c43ff2b584483dd91ab9c0a18ff92ee2518a99073249f6e25a2447092c658b115a9fe3885bddd9244422b7f49ab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          528ffcadfabd454b5169e6e3bf09dd15

          SHA1

          b8117cbd3afa3543bbfc806b72c1cb4c3ab03736

          SHA256

          5413a1714f725edb4c979be056ae464b1d234b5b7c742876ef79f2c7c075c70d

          SHA512

          93ae432ae67f62f63122f6b6a3009da618e81c5a11d64b50914e118204f7233509d000682a576f4097d3d3ec9392715758f44dc73e77f411954389de2e2017c3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          aebf6456ddbbcf018047456122256dbc

          SHA1

          a28ffe503db8805a851e88fe6b85e6c1dd32a12a

          SHA256

          2ac763985178ea97f2c5d44752325ba3ef2838049b192a5a593aff7ba98f4881

          SHA512

          cd300e1a4f3c9d9fc0ed60ce50446d47833073cbcdc0b76ca77b97ce5ba9be97518a833c3d21cc94e8d94aa1710263ff5f2328e0ff767cd95b3011203cebb89d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          18ce80a3e82f6f4c29d7995d85265635

          SHA1

          7bc2fec826997a2a269e8d8865e271526a7f9343

          SHA256

          00447b8ac4a0473438ef028cc7b2ea778c3b82de9e3ca54a4ff298eb75f4f180

          SHA512

          d8b664f4861cf0557c4dd0059c95b0aa70cedd40446b3617a41e6b41e3cbb928a5915a92098119524320d120d56b7eabc916e65d80e724a8e68e221330983b20

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          137063100361fa80b1a0d4e06f91270f

          SHA1

          cdd43ca374d90933a4428c1fa4db53fa4b9eaa40

          SHA256

          72b0654a6d91bf3e4e5c73b49f58cc98855fba7fc3166018278ac8b080a0d3e5

          SHA512

          63d99283babdece4783c002f4a987b4cc646d53af489094e8ff1703f9a44e6fe781f30f26a08635235da6ed83bb0e5c9f7e6447f47325bdb83d8d4042c243ba6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          307582437f58c8f3b6cdd8304511db5c

          SHA1

          17c792e654a174b650d7d31d1dc84bba435ee283

          SHA256

          a86448356ddec568176e170972c01a781f6945482d0191111970c55bf41e8d34

          SHA512

          c3c3d130cf8eb722c67949732cc1eacf3e93f6b1894a9136e57aafe1e9373be7324d4f349af30be62b8cc2059d30108103d0c408eedf99c2d326a5b69a0e4a60

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          dc885ab059a5a8ac62a7a4b1378834fe

          SHA1

          4c148fe1d59eb694f0d3c0a95f7c1cc438e91db5

          SHA256

          916c258c46f375031c3a1e2191d4328d5df752694244109c1cd507a6313a651c

          SHA512

          6eea90eed06775b102efb892a5c4fd5b6adb180100b1326f6f9937f8ac28a7b61e6e6990fc2e74c75be7b70d7332168d53b250de2a2671c114142b9265857df3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          28ccc0f8c956f675f9e66a827c9ac1d0

          SHA1

          feb91256b04cfb3c5cb67301cc9b268d9eb06715

          SHA256

          81e90e9b05d79df2bc9f9f5d7fe5edf4a85aca36e121f7485aaa420f958ab8ab

          SHA512

          4355ae405772ccf09820eda47f59fcf445ed38a37b47fee5c6fa7c6ca43ea884a1517cddc72a4b6e39bd5db723d11fc9832ff7d843f3c34e347720dc4ee9b615

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          297e6248a9e4e8f15c1e560ee341c29d

          SHA1

          5c51fb6a747b58071048b7e9558229028f080185

          SHA256

          0b55fd167d80deca2e999fdc82884c4c5dad31cfda90caf13182c9aa221339c8

          SHA512

          c5e7e4dbe76259fed9e59a8e1b5eb3c0aafb1350d1e57783d125bd05adc58c77b972dab24fc1f04eaa842ae208c0a4d2ec25dd35d65d69c06a94c68d01e5a4f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ac17800cc17f5759944b51c7897597b8

          SHA1

          c843f4fdf342fb49d1f3c5f7de8311fbe6eb1243

          SHA256

          69d9f81110c6ee243597ee3c0edbb7f391df3905d8703f5ccce7e3b49ca0ae8a

          SHA512

          8b61ee594f25c72a021f4b0f3306d595608a201cd19b27cc18ed2b02015a32cd07ef1839d5e8246951c3285868d15a77db0cf08dd7292835d3688bd2bb100207

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fdeebb53cb437df1248cfacd73149907

          SHA1

          114b57aa164de008abd77ef7f3dedc0108a6cae1

          SHA256

          a8d0c25d963a447cc8f8048b2d95d01fb9c6be7438fd8597dbd1d678ca97e56a

          SHA512

          0b41afe34b3b922ef36b91133ec6b52bba57ff68a534353f8cb1b0248ebe0487deb9a83c60af06b2055d5382fcaf4807670851a60a62557d9e508aec62670793

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b94e7f43c477101ea78e19ecfc2d05c8

          SHA1

          c4645543b16036889ee427d98c5359f6f6847d1a

          SHA256

          63a366c06864a83c2377ed726a2bc9f37e069e0f062dccfc0cf9749b32cbe593

          SHA512

          432b9b8da16c3df212a893abc1623cc1ee16a5b38a6a04d944b31eb416e8edfd0035932420a75c9458d33b7e4895fccf6b18cc170a0f7bcb0daeb340dc2706c4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d8ab93156e95fd2790e431b7250f1451

          SHA1

          66cf8aef93a61730fc40315f3a964b156c25dd4b

          SHA256

          f7dde1fd69f467812472ee4214417400358ffc85e06e21ddb369258ea232d553

          SHA512

          9638ad473e275ca92530bdbf9f8289b2054adfb7ce300c409015a752957d22acbb373a3db2257926a10b001c35f7f6e4c0feac477fc9d2cb7bee8faa6d63f33c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          30f92fdfab902e4e8f3aa22c9ccbb297

          SHA1

          441d81fad4fb955df5d699fa92dc045970713b6b

          SHA256

          beb392c0a0ed9b84f175f62c8c56985198b83f7a255deb2ff7cfa5756729f589

          SHA512

          6fcdd3c775f39d0a6ba1f92eaf00493843a5402306271ea9aea9c0002aad2dea59f2b5fbd7cc2311695695990fd8304ea4e849d5f15942f0fab98c957d95a659

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          31b0c9e2c40565a56a49ce81ab1ce61d

          SHA1

          8f8215a30225cec4d1a78fa98c27baaffaed4f44

          SHA256

          b6702e20ee3034c9fcecf885ba5707b32ac4c7bb39abd9e58358166710a7c211

          SHA512

          a675c8fefab21dcd386cb815fb3fc97a03a7adbf7fc0dac9ce5e9b40750fe434d740cd37c36c0b9bd328574bd1eff716e0d123fea6f096356b73fb46703f7641

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabB712.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarB7D1.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit