Overview

overview

8

Static

static

3

x64 beta/A...ss.dll

windows7-x64

1

x64 beta/A...ss.dll

windows10-2004-x64

1

x64 beta/beta.exe

windows7-x64

7

x64 beta/beta.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

beta.exe

windows7-x64

7

beta.exe

windows10-2004-x64

7

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

x64 beta/d...h..bat

windows7-x64

8

Analysis

  • max time kernel
    117s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-02-2024 18:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    5.2MB

  • MD5

    df37c89638c65db9a4518b88e79350be

  • SHA1

    6b9ba9fba54fb3aa1b938de218f549078924ac50

  • SHA256

    dbd18fe7c6e72eeb81680fabef9b6c0262d1d2d1aa679b3b221d9d9ced509463

  • SHA512

    93dd6df08fc0bfaf3e6a690943c090aefe66c5e9995392bebd510c5b6260533b1522dc529b8328dfe862192e1357e9e98d1cdd95117c08c76be3ab565c6eea67

  • SSDEEP

    12288:/7etnqnVnMnBnunQ9RBvjYJEi400/Q599b769B9UOE6MwMGucMEbHDuX0YnpWQZb:sPM95FCWStQj6ERs/mfMl6H0skDpS

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3052
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3052 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2292

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6897bd32c8f8eb0dec9905eebbd31b45

    SHA1

    11935d86e19db47ce8d54a7f059589ea6b6dc534

    SHA256

    0d996c4be2588651956beb608a58aa6c66745ffb6a0aff65e75d10aec72d9297

    SHA512

    e5ce3af4a326ddd11bdf9e5e48e0749270946f34cf02cdeca2bdae720625a94e16a50ff734ea2edccfe3688d0214fd47c58840ea952fefb2c9468c0093ec1342

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a62394c9bac8310c618042849db4a27a

    SHA1

    dcba2eb598e144a91a0cd87ac7229de2b32fbc5c

    SHA256

    c4881789ca17c26ede68d8b4977c314d40ee3e7ec459172cbc14a4a4aa7b1ba7

    SHA512

    c40db682615a9b879aa0bc4e68ea013951fdfdade0c67260796e77cfee4acd5e05462f43dc6b7bc52ebeafaff8ed8ffb2ee5eab51059e226d40b96209700da77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c28691a808f2506e36a1478bc073d7f

    SHA1

    b7835f73f7f5f291c20623dd8a5a003c33aea9dc

    SHA256

    139d23231dfed5a3f4e07e0c22a65f2151d27113c370be3a3dd5a2aa8b957ccb

    SHA512

    29778ff72eb980915d7c6dbfb18498bf854fe3177e5856b026c707b5875ecafbefb84c6c8e98e853a92a457f751eb60a1cd03f71adb75b022d16eb15efd9f93f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f648310439e698791c1148ff13b01bc

    SHA1

    1d89c5e2052634f4faf0c96544708d1fb46df707

    SHA256

    8bf49a6e9a3263bceb97bacb98a6fef93761261d9059c3887b501e399905efb8

    SHA512

    f6eb610bcbb7b26521f8e73bba6263deab44518260a76346268e5d50e3227dd16e3a35f427afe1d0259281224e4cb874a10615f0f04d7d8dec013c1f2d6aab26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aab69801a2c166520b3d8c3c7a00a62c

    SHA1

    8b50e2a9c0836953d98c963857efc135126db3fe

    SHA256

    7d8894fc9db633922dc23be20ec3406249174199ef2aaf2539e63f91e2d9dfc7

    SHA512

    5a4635b5f08bb1814dab80144c1a48f4d7736afc475f2244af5008cd5df9d11e91d4c88169bdb7ee511075faa372b348b01eb5848f4f961368d4d9e499a97640

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e170c656ce9e16fdcd08d04157a6f119

    SHA1

    0207ecc640d0e343609ec96329b6df36de6482eb

    SHA256

    1b9abac192595dc939786b96ec35c3e2a49c465964b5adf2a3799b3e6b4932cb

    SHA512

    bda7ed673392c439cb587b5acaf4291244a4db97ffde33d70251eb5e24d268cdfe8b70badc932589eede920df4bf0c6a9301f6263a796a7810e577e63c9e83c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    94ea3010f60060e5c8d005c4ab4d5918

    SHA1

    bafb91ffd2d929abd50c9eea61716759d320acb1

    SHA256

    5863aef8f86b82313d8d65c00be58ec7dc287676961254603d2b029e466b370a

    SHA512

    d2c86b7ff49e9a2637a57905ef435a250bab65adfc9cd619dcb2e1ee28809df6918809f18b59322c57ca3a5b94136c9b1f004276f39b4dc1c8bdd01a7d974371

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0943eda7fe79cb394b5915a14150dce

    SHA1

    f3762a21a103f7169bf5d3e8ffe6428e2c118360

    SHA256

    cf39c447fece694eabb73a1f25dc7d7d712a475a33bb0ff98bc204a05b60e46f

    SHA512

    4d641133223b6ecd1cb8e59cdc07970a7d6bb5d67132e6a21506fbae7b3c37e1c642985ca80e1cc14efbfd2a1473045b2b5700c6159318dffd7be5d904672b47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d859527b2c74ff4f2d609df7a6a538c2

    SHA1

    d8e54861f22fdc2ea467c78cbb0bc1049cbedd90

    SHA256

    95d286c67d77fddee08095c736bd71f6f799c1f94ef8ccfa205d3c6c8dc06279

    SHA512

    cdb78705a25ce4024142f0e6e50aab58afd78a2f6015bf76edb1006e0fa4bd4a6d3dccfe57d8a8a08a278c54910dd62399737d116d2b1287e036259af29b983c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17ea04665b9bb42b5ba9d456a30b7086

    SHA1

    0fce8db885b521376303c9b86f26ea3cacc2403a

    SHA256

    f378ca0d3c4371dc72e79468099405d12836cdd191a27313f4ffbeb4e77a24b7

    SHA512

    b2bbbb01d6c79b3ee038a97907dbedabcce34e896ce1f2a05597334426d919a875226c0dd7d687f906a00c7fae74fb16d19253e0176f8e5f51bed73d53bb06e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    43999980863a7cd6fd639c48564aaf61

    SHA1

    e17385614e1b8a258be3d660aa738208e23077fa

    SHA256

    fded0c7205b3e678b55f77f742a1d91719146696e2ae7feba74c53581402263d

    SHA512

    2db1708d6eb438c480fc62338dab154f6c6efb48e3f3b43c9514cfb253e48aa31eb7603eef4f92a1684eee2613fe86c08e79707071b0f7173ea86ec4dabbd8fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    765623228a8f1901814dd6db09c90b9f

    SHA1

    bda5f9137c8c40d997cdaa57fa112fe497363fda

    SHA256

    1d26e6ac8717f3172918bc500256c57a85a870ded918f4f3a644b5b2aeaa7b60

    SHA512

    fd493d4ddc9ed1fcb69bf6c77be623b7b7b21aab68f817b14bcc104ea26f1df6380d486e701c3617117727a1da0e340dc104dc1adaacc1d5c9cc50076e62f3cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e14c6cf0ba7541b4be60854048da855

    SHA1

    c2e42b9f23827b6e07d58901745e1e5b5c0546fa

    SHA256

    0088b6f19f1224a47cec77e46b722aa6ec9b3ab73bddba4920f18a0058360235

    SHA512

    25e80054bf830167b7b69a527847200da3a067a825283c45398d5f8fb8cbb6a927d8076dacae4421c9d9caf9c129e086a6f1c702bc64d2072a8a504c6a8272d9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3DB.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4A8.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit