Analysis

  • max time kernel
    121s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    02/03/2024, 21:28

General

  • Target

    LICENSES.chromium.html

  • Size

    6.5MB

  • MD5

    180f8acc70405077badc751453d13625

  • SHA1

    35dc54acad60a98aeec47c7ade3e6a8c81f06883

  • SHA256

    0bfa9a636e722107b6192ff35c365d963a54e1de8a09c8157680e8d0fbbfba1c

  • SHA512

    40d3358b35eb0445127c70deb0cb87ec1313eca285307cda168605a4fd3d558b4be9eb24a59568eca9ee1f761e578c39b2def63ad48e40d31958db82f128e0ec

  • SSDEEP

    24576:d7rs5kjWSnB3lWNeUmf0f6W6M6q6A6r/HXpErpem:rovj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2060 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1804

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          67KB

          MD5

          753df6889fd7410a2e9fe333da83a429

          SHA1

          3c425f16e8267186061dd48ac1c77c122962456e

          SHA256

          b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

          SHA512

          9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          52259953972212cecc0667a659315da0

          SHA1

          b8764dbb6c6a7de80fd84af9a47129c08d907d53

          SHA256

          db2e76e7bc13574f8113ae1da7d08b4af0ecf81e135a25523db321a97b2c4d51

          SHA512

          1b30c684fc93fa0866347ac4db166ca18eb0d21cd8706974e13edb327221d0f3c9116afccb5745d5eb2509e8bba5172e79ed6c0534c73dbcb4eee5377ec70ebe

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c450cd1bc82fcc73fac2c0013dba7da3

          SHA1

          840d321b965f7cc4f7e4623ed87cd32438f0a7d5

          SHA256

          ef1ca9df26cd6c4f76e7c24c3afc55558365089543d4de85774de670fed14b37

          SHA512

          69fe59bb2be0b9cdf27a29b58ffe4506015a2490f2b3e5a88aae2724ffc79a3adac61165d4839aad49d69d4d5ba8ba008369bbcef423f9d1a54666edefd5cac2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          afa2ad49e1b9f01acc0f316d647dc324

          SHA1

          f99915ef69f3916d1a8bd41e6baafe6aab285ac9

          SHA256

          ff41c016fc68dccb9d6ff89e149d0f3e2fc99f648f7c07f18792d3128c522a0f

          SHA512

          93a8cb3b86566b0bec7c9fb723b56e8651f0e2650b25fbb8e438561a913682d1517da0762887083d002cb919b1c9abca318a654aa9872f16b70f396ffb6bde38

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          824b8593d7eb7af2a0f82a4d3e91d83c

          SHA1

          f44dd20268a34c618480abec4eae83996d7d168f

          SHA256

          b1fa1ef3ade9e1e928c8c207be14472d9e6804e21f10dad846e5c5aab5741ee8

          SHA512

          dd4ff91437bb91a5aad340fa57fc92ec73791870b13145be8378535e4f6f4fdcb2b85343874b665b9f5be64468d7fcca5716181baca556fd627c31a38be3b890

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6d45ecdbecde7e1ed18843d6b715b56f

          SHA1

          90fb266c60b070c7c7eedb58867042124b5e6968

          SHA256

          efd13785def93175918ede319a5629bf8fa21128231b9d93d52dde99fdf15b70

          SHA512

          6326fb709373f1c39fe06e0d4ea16cb38cbae6b3730a8b45a07733d36f9f30c7aef2d8ba80af7b4f51157e5cfbfffc64cbfe7f1724c37f2f80753494de10909b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1508821bd92a009d530c0abdebc87549

          SHA1

          4e53441f9f997c6662890e089f82dcea1b07a11f

          SHA256

          b1223f07a8109604e4a442fa14249f18a98aeb0fd5d89e895327c6407ddeb53a

          SHA512

          5e26328e63f8fa28e75752e4c249cc0de969de8f5027611befaf36a37813b3a3d3da214b6675396af5cafed5e74924771bc2dc263ac00df8495b78e2323c2079

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2ffef6d7cf4b1b10d2fc473793799dc1

          SHA1

          3fb42c4e65bf6cdb46416c6c8fc23ee86d347248

          SHA256

          003019e85a963ba5679aa1122bdb2aa6387ad5e04168f4423729cbdf4c1d1a1b

          SHA512

          db23cd67089cb32bc828ba4f4f11a5562d603573eda23ba3145962faf56b42b4071c2852be3e6722d1417e31e04a00ae863ef90309af54d59a3fdbaa11447c5c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          48199704a36a68bd7a00be8eff90a62f

          SHA1

          6f165913bce5c5bf8c8308ac9ee4b7ee622cdf10

          SHA256

          7a97c169991aee5f9910cef7281e3ba22077504292e612c5aa96699ecb51342b

          SHA512

          59dabb74f0f5644933a9423a83ba4a35a80277a9f3cd299a93f6615d80582b909b12327b7a3353546b26097baeb1866d9cd68b1ea7359a8f17aba4d81aa50549

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          81d11caf87437441a2a8b097f84910bf

          SHA1

          cba764ad62bcac14bb606a51f6a3019ee1a80430

          SHA256

          cbe350c09a552f693923ed92852824ba904b90c45ae327fd4c5e80d87eb6a98a

          SHA512

          e097bc61cab176e989bc37e5ee73000f464b98c0e890ec659afd169c46b3e954fcb134208548719e5c8b85b41c73d8cd7e047272b4c3a364f5bf26a6bba0113d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6e0381146b9e6eb0c0bba32f0099adf1

          SHA1

          e2fad345b999351e80935acbe0753ab4edeaaf91

          SHA256

          90ce1f650e9ac4bfdb54628badaf9f0b93ef33e1fd5c29f5116b9ac04bcef0be

          SHA512

          944bbd0513b8b10b0b5f510d529c8b409d5d19f784e3497bfec42ea33e255cee545678db7f16c0ac81bb9cfc4b1be1785d20718dfb2953bec5d3dd6d267a389f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3fc2d4be46bf2502afad051af593ce69

          SHA1

          099eb73f4cbfaecae7355e5ad6b64e0ffcb8c699

          SHA256

          f17792d4b8a703b5be7a9d9747366a71811da08d712cbbda91ea774e5d805852

          SHA512

          39f7e96b380d82ba5ec62144c969636a2d28dac20d9e359cd9a839c1cf2e5017bd28e506528523f629c31c0f6b50e41a17268204c34eb49843a073fe4b8dd7b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          93749d37ae4a48689101b78b221e42a6

          SHA1

          07b92fae4aab3eb9caf0df2076ce7f7e820995e4

          SHA256

          f25f31b0a28c29a4f03ba99ffdc987fb887d115f8ad7d7a1454e85f481880175

          SHA512

          0634f9acc8b75fbb29c478404c4b442f29740f02548270be93250248102baa16bac16d71b1eeea6a04957303fb8b358976a9fecddd4e7eb3c125278838926e3a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5e32f3f5ad9b08694f43983c36b2adaa

          SHA1

          8f5142a178d726fb3cb3057b6d3f2ebd3793aaa8

          SHA256

          a3834eaaf203e4d617150e4b407ce5d7820fdd3c4e82480f02a153e0b8b6bdf7

          SHA512

          93283145e4c822fe72a0b91835ed5c6d7df5e01852feca468270473911d1b5ce2b2d586b8a2f9a2c372c5c1412d02577d38624f41a25e3d664b0e5a9f809de2e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4f8ec0e6c33b16638d62b62fa783c6e0

          SHA1

          d9ed2000f34029d640152b00c55aaba27aa73f0e

          SHA256

          c5a44d7f26446dc2809c6f401766eb469be6876a62bd102e217313c14447ec18

          SHA512

          ef8eb249f8fe4b0a327a9a1ad679ce40c287e7f6144bce6429f00b4ccc42101b92259a2e0a97cc4ff498bc92005bf81f0b92e412ae087cea6528fa0650ecf92f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9736b8fd06106cc99d90c611b6e1d91f

          SHA1

          d6ad06a0f83136c6598988e39bc52f808f66d136

          SHA256

          e55ce8a0aad53b41ce33264ef6ac5ca91a997892e18e2efe327f10f1fc0f8e2f

          SHA512

          aa0f518fab0be5ca2f28ed6db12aabd61a797e6c6217742fcc706a5e7fce773c99cf562eaa12d7c28ed9a1b538b7a44bf2d0596e93d1743d268df7706b91b42e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8ddf7c9733c1a32c952bad82697086a9

          SHA1

          4a5ac8290fcf2915215bfcbde58939cff6734733

          SHA256

          5f3ddee2db085299f79fa416bfa298cc2539354c330a2d5bc4940e6c1ad7f3be

          SHA512

          9af21207f39d57ad9f0974daafe915903bb5583be0a0a9d8815df00ebbe4eaef5953cfb62208790b8d74f6b6c86c654e1ae5892e94f47eca31b9308f5ebf70f1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d617de0c583f1e1cf138b02969cd1f58

          SHA1

          91ee4f564fa9ea6788ed665a7d0595c713c9c0e0

          SHA256

          22ce5cb0a770a49d56db66369c121ef25efaff9924999d27cf6262ab54defd4d

          SHA512

          b0b2c5425187ad5acf49799b0feb5baf3ceedd119294d611d3cf8a1f89d8ae87b6855841825762664b8e9e80c9d52e5a1fb15005931453f92f13ca4dc7723a8d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          072f766df2e10fca41abc628f6cc4ab0

          SHA1

          d4e092a6d8e6729f96657d6002dbfa7ceb0d5c67

          SHA256

          7c9edf6f22e818196e94ad0ad869094f28dbae0404a06b5963cff83e723f1a5a

          SHA512

          33e74936aa7e767528fd0e8c8b67c5262a1f6579115005da4efe5c63cd8365e8a1f430f35e00bc2e32f19c52262afd324ffd5936445095a0f76c2d64a3f18196

        • C:\Users\Admin\AppData\Local\Temp\Cab39F7.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar3B17.tmp

          Filesize

          175KB

          MD5

          dd73cead4b93366cf3465c8cd32e2796

          SHA1

          74546226dfe9ceb8184651e920d1dbfb432b314e

          SHA256

          a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

          SHA512

          ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63