Analysis

  • max time kernel
    136s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    22/02/2024, 18:53

General

  • Target

    LICENSES.chromium.html

  • Size

    6.5MB

  • MD5

    d18c09a075cb6531d7ffd7c3da77bd4e

  • SHA1

    571f29b6004007111782bf5727c4bc9510cca286

  • SHA256

    86f5222580a4ab03dad8ea62e6cea22b23454dccf1c77e74ae0e0410a13b16fc

  • SHA512

    091cd68e12633919fc6100b606f3002b16f4b9c7c6d7c820ff20e31a3b9ea690c8a1fc90529ff3e5c21e8d778e254743a8708049830c3bb046eda8f2653000b7

  • SSDEEP

    24576:8P5K5WfWSJiJjQlaCmf2P6e666A6o69/kHPZQHpuQ:UrYR

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2960 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2724

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a455aa09e1a9605be1d59a37fc30172e

          SHA1

          d300a008dce139eaabf8815dd30da00f6b6fc263

          SHA256

          8496952501a1fb09d6439ec5525a3273298d059c038c8fa7309ac2fde67e2b47

          SHA512

          4203a4d63b8842bb3cfa99d7ec45cd6896ec90ab7011f282283ea83702e6f93cfe08d86c5c7758a3783f6b4c925d10fb746a611d0d305d3e752d856403c63ff4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ca97b4c2bf7dd12c4782c72afb73a21d

          SHA1

          79032344a6587875be84279fd1679ee0a6a37cb6

          SHA256

          86cb3ba107520e000a1b872329ce4a2b84f0e31719f805e57534b4be770e396a

          SHA512

          e02485d89a5fbcaaaaca9079e5e39d02414836493ec8de91fe78a20b8c1399b099c7cf75b27c44ada8273c9cb88eb085a66b29ed2a2c27edd772510e723c02fc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3563d99762de9bedd97fdbe91b2a116b

          SHA1

          ee6f06256b253ad5265600d84bfbce636f3e7b12

          SHA256

          a0cf6eaa1148164a4002b125c742fd894aa78b63e1376e11e4bcbf8c48fa91d6

          SHA512

          29aa2f40f0cc2de5bfed8d5a08ce0a4d6d6a58b7c9820e07efe5a66b92b0a4ec3bd4728b6de7629d7ee9ec58d2693f9e9ae233ef0245525de72e0b46c1ecb9a2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ec45102dfed852a3c7681a9761fa808a

          SHA1

          22b3bb24f456443ebdd9525408ff98bb9df0bdcd

          SHA256

          4cdbdb21eff1586405b2b6efecef7ef1ae0a41cd59c32b59b60eb97955eaee05

          SHA512

          8b216d564d12cdb5679bfd582a2672ec1717a18dc7fbab3adfa9478b25cab796f59a9af0d139b03e2253d9d80e74ba041c9993ac4da520d946b467f7ec344a5b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2b442a5f58607916efb2b58beabe5906

          SHA1

          4b3f4b9deedbf5d80378a36fe76b3eff860bb940

          SHA256

          741bacacac58b12f4922220bdd32c52da0045898b3b2ca78a06f4baadd920756

          SHA512

          06cf10f708ffc8c628449fdae1410b1f8c42bb9a3a8be1074a380a59b898d288bdf7903a1251caa347616e425fb5ef8afc0795eb43306ba890d494b2177c5c53

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          78d6374de6f4cbd87db8743e773612a5

          SHA1

          a35b8e2551fc863b716f2f1571550bb47ce62621

          SHA256

          fb0539dda1b17b461998519f6ef0c3fe7985913f5ae2445f42c09905301f8a9a

          SHA512

          e962a1a1ea68f44f84db732d19bdb573343eadc0cec79d9e4c5ce631297e44d53c39bc5df8c92bfad1c9213cf1e0269c10eead0cc6cb560a3402ea85b2b30c91

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c0f1927cf163d160c26f72805ac1adc8

          SHA1

          0b1b0bb949375eabb89c0fe14d1d9f16a43df419

          SHA256

          f91503ca887158865d3afdefbece8ea093f470fa3f3d1f2d87bd417cd4032ab4

          SHA512

          2cbc2c9ddf686334f5d1114ccd21ff03ae6782aa695dc069ebe91a822b5dfbef1824103ae7244bcfcccdec7a2168b1c51ef1406e6e319158785723967198ece5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          acd5e29e1432c997167c0e7fd2d20cea

          SHA1

          8aa77015cdde8b1a7c9a82affa1b2b0377344742

          SHA256

          f91c2d2d653dfe406aca23f8a038610b5e3544e14f021f8ee2eb1b019d7761ce

          SHA512

          717bc6ff6d8786d66d24dc9d3428fc204fd8af2c3af153b34b937ec5641a85e41cec7912a914d0ce9ea19ed475f4490aad85540def9aaec47107b6a8afc3392c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          05640183c8bbea141c5fa1dbc93870de

          SHA1

          c3b74bea16fdf4ab28412e84e48288dffc1d62bf

          SHA256

          e94ad2f3fc7986318464bcf4b7a4df8e2a1326b4d88eaf40e495d47e9e588e7a

          SHA512

          e612017651c9b8ba874f016b67ca6cbe2f7ab53647e2150d440ed3124dd6c70da8b92404e1dd83dcd39d2990f915f5b464b28b7e5022dd92ba7be6bdd8cd6b49

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d2bfbedcb08ba657796b2c80edac5c12

          SHA1

          dfbf6680e65724d9274b955599a7be0fcecb945e

          SHA256

          bbc3712ff25c39601475abc6ee2ae116128280b8d526b04db59f7480f9148b6d

          SHA512

          04dbd20989cac83606f2ae57c0f57cf4af6b9a217ebfe987919f5542d1fd9afc622c3ff08cc2be617f9864e93ff067ebf69513eeeac79548845a642e35280ab1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8f1c0964b47986f73477137631c246b1

          SHA1

          5a5d2977688fa6d2656669e459360553f32fbde9

          SHA256

          0e9e0f75b68a1350c982a69ca68f43da05775412a22c9da105e30441e3dcc005

          SHA512

          ec5d4c0e07d4eb8018614edaa7ee26bc70876f2b66472cd76f413adbe69d65ca0832b3b9ff0a654cab8063b9f9fc48e3c7e151f2713eaeda2a3a231590c994e0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          93a3aae3de6508f56967013ec4c72afb

          SHA1

          eaef26c6a1fa43f8b15fc343aa04822dba92ffff

          SHA256

          f62a3589a8904ea9f57af10fad1f3773ebc1fdf7161db7f34c240ea9f2291d6f

          SHA512

          8ac7cf3f65647c54a484761a7211c509c93257192180b63e1f3b46a5812d8a570c627a442bc7cf42578e7c329811c43bca1fceccd193405dd67fe32b32b3f497

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          00f2a4c438fb050e9196b4800f443111

          SHA1

          c7da5e3a7fcc65468cb98fdb36ebe5281a91a4ac

          SHA256

          7fb6421e557e477d93147a84eb181e860394a6c966506132d8714e279ac35d0b

          SHA512

          f11effa67889a0e0d5b530fafb8c0aefa78e1ce6d21c54c7bf3e3aa1184e7c9a9d074a3709251cf3ab2c65453dca258d935308edd4ee0f53207b1c5f80e05716

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          70377b2869d32dbc7f7468eac34b6cbb

          SHA1

          a8b22be7dc2a685a46e3211f0b6940473528b696

          SHA256

          10b2976007c2daf2a4f2eff83f0e83e2d3ca31f5e1b6a865d83fbf1945d2f4e0

          SHA512

          bf8839ce5f8a0dc9fa32ba77fdd9f0b577b855492a4204df5f8800c2cd9fadae0ee1d67f329c9caee5e00f3d021de1cfb35745964d4985bfe8c13472af13f061

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4d1af088e8dd33b1ad2ef7218b375bef

          SHA1

          d913b7fc5139d218be9060acb3152186432c51e8

          SHA256

          f23853855c7a05d3b025f02f7e08edf7ee94e7e29655d27807025490e08011ce

          SHA512

          22a7daedf7557c38028739c6ed47c6a14d3ff64dc39eba0b8a473fef2cbc9915e8cce81987d66d4c3fe39cf074b792f71c3d55246b26f86e2a2b4ca979361f9c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f3343d361cb41b739a0ea6908367fed1

          SHA1

          c979dd4ef55f710469b07c3822ed8142b44ba891

          SHA256

          ae3ea0adf5355b00d4427e9d8bfeb20a72180ec04e5b807e706754840e302cfc

          SHA512

          c21e852c33720ca785a6b0605154987e4bef02a1d634383e530b81ebb7a948e464ea455fe142d17b29d32f32b777308352f630cc09230b5e50015655669f73f7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          241aed1952036f1a4672452057a0e7e6

          SHA1

          6d13c8c1c539237f7cd4831ffdb4eae541371eb0

          SHA256

          8fc3baf771b4a920db6643a449cb9c413432661ccd7b4c78836b467a01302c75

          SHA512

          781e770f0fd383a0387bf3a71000da55e28b0bf6033bfd3f15935d1af61570e8d2ccb1013a9a32be4719dcb13b3f6c4dfc73534713763c456f1532c983c091fd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e4c33952c72c63199389314c90f8a25a

          SHA1

          f54c0b0e9f878aee34560abc7df91a6b8d4f8671

          SHA256

          e5aaf438be488bc91cb7a5782e138a0c30926a4f4f41761443313f2042069e21

          SHA512

          0e047bf6ba58f681a1c2f5c6315939e07c0112f5dde27494a5dad5ca7da33026ab894491f1522acfc91a277bbd1abed465d72959b20794f5884123d387200ea7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          eea661ed2e333c64bd2eb6fb29631027

          SHA1

          d02a48d65ac74e7611868aaedf6131aa856264ba

          SHA256

          931f15f98cce2ea8fa8947a0d1fd2f23ed15f3150aaf844bd266e8fda6a92050

          SHA512

          80dee15a53d946ff6bd55a256a22dd62f017c4f0d529db71138d33636ecb3bba3e100a8f833265902f176c1978ed27d9fc23216b8797d4791dc8a2f57430aa61

        • C:\Users\Admin\AppData\Local\Temp\Cab4BA3.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar4C71.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06