Overview

overview

7

Static

static

3

94caad77d4...c0.exe

windows7-x64

94caad77d4...c0.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

Spacetherapy.exe

windows7-x64

7

Spacetherapy.exe

windows10-2004-x64

7

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/02/2024, 05:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    5.3MB

  • MD5

    dfa12f4edccb902d7d3b07fae219f176

  • SHA1

    c2073440a5add265b4143de05e6864fed2c3b840

  • SHA256

    501f0b7ebf0be7ed8702d317332a0f8820af837c0a2a1d7645ba04352270e2b8

  • SHA512

    eee3a8e0eeae139ddd9369d0869c29c91007bf6c5b0d7982918d5a013214a9e80b9233e7c1ccb43124152f684f0b782831b0a6b3d126558261dd161230004e50

  • SSDEEP

    12288:FetnJnVncnJnknE9RBvjYJEi400/Q599b769B9UOE6MwMGucMEbHDuX04nNWQFna:WbXZ5IoWSL9bcwVR8mf+/cHBBaRp1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2672
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2672 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2688

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    679e3ae03f431d2b73f75fe56c0b2283

    SHA1

    c9316b671f87d54d1a4c58b6a0bf2e10e20278a9

    SHA256

    636c1fc8042f584bc378ec185a6238c84d0a603dea17982ee7c14f0ae6135674

    SHA512

    32374adc6a8c4f18222c520f4e84b6150051b11bee0759cd68c476653f4a01ad6e344f5e5fa536149a9f5c125ef549a90bd07e4b5ad133ef6f257caba2e13d03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e8fb000b71489d8d98275289819c416

    SHA1

    1cb29624793c4d35da90f2300387a0962a0e4365

    SHA256

    dbd3f908d8c2ba47cb415a59cbc9981b7a4b7f4ac292ff258e6b58f0fe595620

    SHA512

    a797dc3bc8e1bf082f805fb9872ff03c0e04fab19c3b02810dae61634a15941e6e94cfe8f7d308ee8ce2b52596242d9c65acb2ce18a8fb99f0c9b746da8f0d99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    68c79c3d0027d4d0ee3aa5526485ce8b

    SHA1

    31de535509661959ec5cc20a18de811f8d34943d

    SHA256

    f7f66913c68f510aa10e73caf9c10d33e4962baf5514939efb9d232ae2d44c6a

    SHA512

    2e860b1235e01e869647acac68e5e5b4d0cc29425099e01761f45f88bb5977926940cbbf5f766db5813e4a042e170602170c5a9410aa8a5f0cba0670e3988903

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a11671f2308c761575670efb4e89e427

    SHA1

    5db854cfcb6f47ed4eb854ea2e17470ebafd047a

    SHA256

    b2d9ed6d7744529c3e95cb860ba4d59b3b8f8c2e7d78b610b98f75dd38f7b6a0

    SHA512

    bcd740fc75e5790d2f3768429879ac0d52bb3c43ff2b584483dd91ab9c0a18ff92ee2518a99073249f6e25a2447092c658b115a9fe3885bddd9244422b7f49ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    528ffcadfabd454b5169e6e3bf09dd15

    SHA1

    b8117cbd3afa3543bbfc806b72c1cb4c3ab03736

    SHA256

    5413a1714f725edb4c979be056ae464b1d234b5b7c742876ef79f2c7c075c70d

    SHA512

    93ae432ae67f62f63122f6b6a3009da618e81c5a11d64b50914e118204f7233509d000682a576f4097d3d3ec9392715758f44dc73e77f411954389de2e2017c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aebf6456ddbbcf018047456122256dbc

    SHA1

    a28ffe503db8805a851e88fe6b85e6c1dd32a12a

    SHA256

    2ac763985178ea97f2c5d44752325ba3ef2838049b192a5a593aff7ba98f4881

    SHA512

    cd300e1a4f3c9d9fc0ed60ce50446d47833073cbcdc0b76ca77b97ce5ba9be97518a833c3d21cc94e8d94aa1710263ff5f2328e0ff767cd95b3011203cebb89d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18ce80a3e82f6f4c29d7995d85265635

    SHA1

    7bc2fec826997a2a269e8d8865e271526a7f9343

    SHA256

    00447b8ac4a0473438ef028cc7b2ea778c3b82de9e3ca54a4ff298eb75f4f180

    SHA512

    d8b664f4861cf0557c4dd0059c95b0aa70cedd40446b3617a41e6b41e3cbb928a5915a92098119524320d120d56b7eabc916e65d80e724a8e68e221330983b20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    137063100361fa80b1a0d4e06f91270f

    SHA1

    cdd43ca374d90933a4428c1fa4db53fa4b9eaa40

    SHA256

    72b0654a6d91bf3e4e5c73b49f58cc98855fba7fc3166018278ac8b080a0d3e5

    SHA512

    63d99283babdece4783c002f4a987b4cc646d53af489094e8ff1703f9a44e6fe781f30f26a08635235da6ed83bb0e5c9f7e6447f47325bdb83d8d4042c243ba6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    307582437f58c8f3b6cdd8304511db5c

    SHA1

    17c792e654a174b650d7d31d1dc84bba435ee283

    SHA256

    a86448356ddec568176e170972c01a781f6945482d0191111970c55bf41e8d34

    SHA512

    c3c3d130cf8eb722c67949732cc1eacf3e93f6b1894a9136e57aafe1e9373be7324d4f349af30be62b8cc2059d30108103d0c408eedf99c2d326a5b69a0e4a60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc885ab059a5a8ac62a7a4b1378834fe

    SHA1

    4c148fe1d59eb694f0d3c0a95f7c1cc438e91db5

    SHA256

    916c258c46f375031c3a1e2191d4328d5df752694244109c1cd507a6313a651c

    SHA512

    6eea90eed06775b102efb892a5c4fd5b6adb180100b1326f6f9937f8ac28a7b61e6e6990fc2e74c75be7b70d7332168d53b250de2a2671c114142b9265857df3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    28ccc0f8c956f675f9e66a827c9ac1d0

    SHA1

    feb91256b04cfb3c5cb67301cc9b268d9eb06715

    SHA256

    81e90e9b05d79df2bc9f9f5d7fe5edf4a85aca36e121f7485aaa420f958ab8ab

    SHA512

    4355ae405772ccf09820eda47f59fcf445ed38a37b47fee5c6fa7c6ca43ea884a1517cddc72a4b6e39bd5db723d11fc9832ff7d843f3c34e347720dc4ee9b615

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    297e6248a9e4e8f15c1e560ee341c29d

    SHA1

    5c51fb6a747b58071048b7e9558229028f080185

    SHA256

    0b55fd167d80deca2e999fdc82884c4c5dad31cfda90caf13182c9aa221339c8

    SHA512

    c5e7e4dbe76259fed9e59a8e1b5eb3c0aafb1350d1e57783d125bd05adc58c77b972dab24fc1f04eaa842ae208c0a4d2ec25dd35d65d69c06a94c68d01e5a4f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac17800cc17f5759944b51c7897597b8

    SHA1

    c843f4fdf342fb49d1f3c5f7de8311fbe6eb1243

    SHA256

    69d9f81110c6ee243597ee3c0edbb7f391df3905d8703f5ccce7e3b49ca0ae8a

    SHA512

    8b61ee594f25c72a021f4b0f3306d595608a201cd19b27cc18ed2b02015a32cd07ef1839d5e8246951c3285868d15a77db0cf08dd7292835d3688bd2bb100207

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fdeebb53cb437df1248cfacd73149907

    SHA1

    114b57aa164de008abd77ef7f3dedc0108a6cae1

    SHA256

    a8d0c25d963a447cc8f8048b2d95d01fb9c6be7438fd8597dbd1d678ca97e56a

    SHA512

    0b41afe34b3b922ef36b91133ec6b52bba57ff68a534353f8cb1b0248ebe0487deb9a83c60af06b2055d5382fcaf4807670851a60a62557d9e508aec62670793

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b94e7f43c477101ea78e19ecfc2d05c8

    SHA1

    c4645543b16036889ee427d98c5359f6f6847d1a

    SHA256

    63a366c06864a83c2377ed726a2bc9f37e069e0f062dccfc0cf9749b32cbe593

    SHA512

    432b9b8da16c3df212a893abc1623cc1ee16a5b38a6a04d944b31eb416e8edfd0035932420a75c9458d33b7e4895fccf6b18cc170a0f7bcb0daeb340dc2706c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d8ab93156e95fd2790e431b7250f1451

    SHA1

    66cf8aef93a61730fc40315f3a964b156c25dd4b

    SHA256

    f7dde1fd69f467812472ee4214417400358ffc85e06e21ddb369258ea232d553

    SHA512

    9638ad473e275ca92530bdbf9f8289b2054adfb7ce300c409015a752957d22acbb373a3db2257926a10b001c35f7f6e4c0feac477fc9d2cb7bee8faa6d63f33c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    30f92fdfab902e4e8f3aa22c9ccbb297

    SHA1

    441d81fad4fb955df5d699fa92dc045970713b6b

    SHA256

    beb392c0a0ed9b84f175f62c8c56985198b83f7a255deb2ff7cfa5756729f589

    SHA512

    6fcdd3c775f39d0a6ba1f92eaf00493843a5402306271ea9aea9c0002aad2dea59f2b5fbd7cc2311695695990fd8304ea4e849d5f15942f0fab98c957d95a659

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    31b0c9e2c40565a56a49ce81ab1ce61d

    SHA1

    8f8215a30225cec4d1a78fa98c27baaffaed4f44

    SHA256

    b6702e20ee3034c9fcecf885ba5707b32ac4c7bb39abd9e58358166710a7c211

    SHA512

    a675c8fefab21dcd386cb815fb3fc97a03a7adbf7fc0dac9ce5e9b40750fe434d740cd37c36c0b9bd328574bd1eff716e0d123fea6f096356b73fb46703f7641

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB712.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB7D1.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit