Overview

overview

7

Static

static

3

b9c3eb4289...13.exe

windows7-x64

7

b9c3eb4289...13.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

Babalar.exe

windows7-x64

1

Babalar.exe

windows10-2004-x64

7

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/uk.ps1

windows7-x64

1

locales/uk.ps1

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows7-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/03/2024, 02:50

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    6.5MB

  • MD5

    180f8acc70405077badc751453d13625

  • SHA1

    35dc54acad60a98aeec47c7ade3e6a8c81f06883

  • SHA256

    0bfa9a636e722107b6192ff35c365d963a54e1de8a09c8157680e8d0fbbfba1c

  • SHA512

    40d3358b35eb0445127c70deb0cb87ec1313eca285307cda168605a4fd3d558b4be9eb24a59568eca9ee1f761e578c39b2def63ad48e40d31958db82f128e0ec

  • SSDEEP

    24576:d7rs5kjWSnB3lWNeUmf0f6W6M6q6A6r/HXpErpem:rovj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2992
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2992 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2620

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          67KB

          MD5

          753df6889fd7410a2e9fe333da83a429

          SHA1

          3c425f16e8267186061dd48ac1c77c122962456e

          SHA256

          b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

          SHA512

          9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1eb710fd94bce72b770f90430b79fa25

          SHA1

          3089340a288b9ea2d2aa98985a239cd43d2f5e79

          SHA256

          ee65e8091666eb668f7ea3111c1e3c85aef954f09d52b5e1c1a6e405aa21c014

          SHA512

          48780bfac6e7b3024852fc35116bc93c8a4868edda1f61a69993b000b929cceac403ed0529b7495e8c0ab9cff065e216a9fc9ceb0370b99222aa827c9c36044b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4d6f2dfe15b082d4a122d224647313c9

          SHA1

          09236b89a3629c9bf3d88778780170fd8de4b5e2

          SHA256

          5f754f741f56142173a2f93d828cab92ad5dba8f85362fc2dfa8834db6ae57e0

          SHA512

          ce823d39fd4c0c8e841bdc8b4311ab76500c18507102d375c55a3280318999fe2d78639a625bbd5f40d5df437303a1c22587f562c6e443a8a26196d646daee5a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          65a09323a4c5b00c96f8a2b7db8d699e

          SHA1

          6eaa2809bbe4439342981b68e94a4e2fc982963f

          SHA256

          aa5a88e665ad9a27ad619405e703dc30aea16e1406d9f2ec8a6f78be63ef8e6f

          SHA512

          76f300399531b100f76f1446c5bc361550cfa179ce05032c90ca61f58378f1fbe75bab5ab8dac541c91745b309cfc6e4c444d259a3753b0043cc66f36a32522c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          eb80dcfc2b668d5ea9869d65e5ca5434

          SHA1

          f9ce8e780405ef200026d680b2e10ce9c9f52529

          SHA256

          c0cecd5fe52cd86e14c981f6a0e4eb17f5fa526a167833f6f7a5a94181ead66b

          SHA512

          0fa6c062d91c39de55fd4a86bab5abb4474e62bcc052d0520f10e174a835691262e64b28022d75b3d0c19b346f7c8cc9b650a089c2d444193aebec2bf0ca8372

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fba95df3cffd622a1c253f59e4f8f201

          SHA1

          946476f2dd13d8fe59ad7b0c26ee04e66236a576

          SHA256

          0ff46ea0709bea220069dea6510311e3f6c0b77c2d179e0e50bac673d350088f

          SHA512

          67b8f931d2d8babbe919cf66b7247066d141e04be3803943a58c723ca4bae1c1c463f24e9e91dbbef4712369544fee47a4b4ea5eba5949b2c836a52ac425d600

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fe98f7db01839c5fea613f57b495e962

          SHA1

          a35c89b358545a421a2157d8878f99b47b655f87

          SHA256

          9b492f0744e0c7eb959f2cb17662fc4b0f759f26c69ae5afc5867b7bdc3158e6

          SHA512

          54be17813869e776f3d84534e943b3f178446c12006161df0a1aab2061edc6da9f85d0c1d5689b0e70c4eb96f93473dcb3a5da2def5c0a6bcbc03342eb442987

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d9f2abb559cc93869657a8a5e79ad687

          SHA1

          5bfc91e70cdb0a075629e6ddcb584e319749a376

          SHA256

          4308206827b8024ff3f73a38656fbf5ff728957ad16c471412f8bafafd45dca1

          SHA512

          5435b35abc8ee25bc63dc31fe19a5c00a67c1db8fd3f57416503b0e25110d03845f4d1d202e06abc6030a619b06351dd34ecf82030113f8977a1c6770e665f80

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2bb5131694c92a08e9343b03857cbdff

          SHA1

          4fa1c13e77450314fdd40017015d4608bf77a5ba

          SHA256

          cd9ea17d5d75dc35cf5737d8d52427ac7eff05b1f5d85c345cdceca1d97caade

          SHA512

          7e948f8f3d04b92cf75ff43f6dbfdb4b5b5f4288c3fd4627c089afb87d00e6a70dbf16af3dd5b2d110ee946f8c9e9bdb44137406bdcc3b30e06d38e56f4e7192

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6a970d0bb184339fbdb2c1f569350920

          SHA1

          e8db220b93c157300864080c263d8d376faabcf3

          SHA256

          280d3b4e6b30676361dcb428d2754f81060ece1304dea163f15ffd4141419984

          SHA512

          96df5b1ae3caa950c1691eda175dcf22abf761171ae54a14cc693cf9c116ccf6c716a5e9968315e2c1145656d1c2a9be746058c1acc53f1c6f23ef52296d83b2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f4823ab9c6ac0f8a7fe71598a327587b

          SHA1

          643b5a6487c67f92b62c1996095b1e196c7ef6d8

          SHA256

          f15bdec00fc98e4eb8e1a2e382fd4e7855d1bb9023a984ee0e1c33032ee0f66b

          SHA512

          528008f05b811c5621acf6a9dace057921b76a10da5eba3c154f16cca22650266256c7b2899b50cd828abc8a6c83a78bf7d0f4d3877b00bf097f3982b082182d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          90733d8ccfa98ebd097624b661f3bb13

          SHA1

          fc401aa67d56d14515f552021d655eaa58a7623b

          SHA256

          93df30732929f170e93e4c00bdeb90ca2d792d2b535d6c6533105696f1b04fbd

          SHA512

          1eefe8d1c290e824c4344b410451fab4718b27456c455d89edac3c8dd04a27dc74dfff7f82bc80c835dded13babef0fb8d09ccc9e8dbd6c187c5842c76c10c41

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6d9af037819c3ba333d8851bddc09798

          SHA1

          a2fffd574496dd30b9c4fa8c6ca00515c6e79444

          SHA256

          7447bee478a901815e89301f353959270c678f0640d29209b62707a1c7dead6f

          SHA512

          6461f475def969a3bcea1bd01d4bc493520886fd005756d713bf1f6dc46935c8bd4dccd03a99212772beb60615daf92e078e05270cdc2a127da73e967a202b5c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          34cad82ff32acb9b1e1e8308aeb401c9

          SHA1

          8ec40487c97f3b05fe82918573187d7f0a0ecef3

          SHA256

          df99db040fa5f39191176feb44f7ec546b4fba20028d80560774cfd1eadabfd0

          SHA512

          e7637fb11cfcc2f591020a6ab19aa540de8a16dd8eb81600c2c2a5cf05756b93173e4609ef7ff3effdb8d4c0db5fecb1b97cd1ce90522c04aa889b2dc8dfb981

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9acf447d0c20ab43ea8ea7c6e476ca66

          SHA1

          fabc4ed1318a691d1c03d89e11a305512b80baf9

          SHA256

          3fcb7f7a82ea9d62790f6d14fdc0644e05b5642014815a071c1ead684eac5815

          SHA512

          890fc8969280b8fe9903e2da30e72a75b37f98525a3bbd8122b2af87a4209c19ed58da918fb029e03bb442780e7acab9ac7fce25fecfa9793b7731ad309b86f5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0d5467442019ca62e2a9ad7abda5ecd2

          SHA1

          8b4613943065a127e7c3f558c7bf11dd9dbc9ef9

          SHA256

          8a33de4093d3e99fcae6a4fdb2f7bf7b569841ced1f2d57fff4976d71fab6447

          SHA512

          8d441d73996a269d0806612de6da5dcf7c0633c6f032f86507e2588947e090b30a73fa7ed2364f0f3b7dec3a7fa02888429a5e61c15ecdaf34a3ac59a27c06db

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ae673436dd9555ceff8316e121d7a845

          SHA1

          f3e4dd2e6606e4469b0ac2324b37121aa25a2515

          SHA256

          18b91f5014705b7f4534ab8fed2d156e21fd54e4313b9a2535947f38715270bb

          SHA512

          7e90d611ad6e45ddbf67bbed573a39754f0e5c8609beb9583c285bebbb70ac842f8f84814c8225a0f53099af62f22cf274c5e07da513f47f310918403acd29da

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          55c3f73029a20041e2cedb333cd6cb54

          SHA1

          778deb8740bc950957dcdce9e9650fcca04136ae

          SHA256

          3902f341613199b1a5ca12fe11cdd3a2698a16dd785a7df9794cbbe2ff3281e2

          SHA512

          a654287598bd3d649557c7ad849b4e141f477a618b1c4238f8889a704aded186803e6d9df3fd6b6c750242fad032734468e442593e5481548e222fd9661aa525

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fd460be4943b4438d08b035213ffc6c0

          SHA1

          29ab023c192febc8256d5686403b3b098039ab28

          SHA256

          0dc72afd1a0d63e90540ecc561779118a2619e93e94e6782138f81e4acf4925d

          SHA512

          6ab4e20b5d78b7e099c79f9d3474bbc1b4ed47977da4ffae86f336fa559a0c82b984486db2b42edab41a380a102369c4d0321bb0aa8d13e867a79903838742c6

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab22B0.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar240E.tmp
          Filesize

          175KB

          MD5

          dd73cead4b93366cf3465c8cd32e2796

          SHA1

          74546226dfe9ceb8184651e920d1dbfb432b314e

          SHA256

          a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

          SHA512

          ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

          Download Submit