Overview

overview

10

Static

static

3

b58456e3c4...4c.exe

windows7-x64

10

b58456e3c4...4c.exe

windows10-2004-x64

10

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

azkzkzz.exe

windows7-x64

10

azkzkzz.exe

windows10-2004-x64

10

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/...dex.js

windows7-x64

1

resources/...dex.js

windows10-2004-x64

1

resources/....2.bat

windows7-x64

7

resources/....2.bat

windows10-2004-x64

7

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...7z.dll

windows7-x64

3

Analysis

  • max time kernel
    157s
  • max time network
    162s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25-03-2024 03:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    5.2MB

  • MD5

    27206d29e7a2d80ee16f7f02ee89fb0f

  • SHA1

    3cf857751158907166f87ed03f74b40621e883ef

  • SHA256

    2282bc8fe1798971d5726d2138eda308244fa713f0061534b8d9fbe9453d59ab

  • SHA512

    390c490f7ff6337ee701bd7fc866354ef1b821d490c54648459c382ba63c1e8c92229e1b089a3bd0b701042b7fa9c6d2431079fd263e2d6754523fce200840e2

  • SSDEEP

    12288:/7etnqnVnMnBnunQ9RBvjYJEi400/Q599b769B9UOE6MwMGucMEbHDuX0YnpWQZO:sFEc5FeWSPZza8yUMmfSHCHWJ4pps

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3028
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3028 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2524

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0610ab6027b778a2d2f3f6bb503f79e

    SHA1

    85b90f4eb18a83e0f4390e6b86b207066bd03615

    SHA256

    e40ced2f43af6132ae7af0c84d299207c89fb32ae1b6570ef52fa1bfd60e5698

    SHA512

    dac420864487c26039b5e27e1491c572ea9f7ed123fa1b8f39a8b110e839d23c3de72e9d86bd385f4afba619c2aa979010e3f24d2456eb089728415658d5cf63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5dcd6c61a32ba77e2b7b7300cf0f01ae

    SHA1

    a57e582f5b795ded80221a700af82bd16cb0e3fc

    SHA256

    49bcf916e067b34d1affc1bda179e2498d9e9a7a49a09250eb3d5b8c7440ebf8

    SHA512

    203ff576365aefd7f11ceec578e692eeec51583f0d130586e0239e6005bb3b45c93d216415192fedde2eb12e7d0eeeb0745f5a6741dbd1a68cd4dcc2af15b377

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ec4d2b57962c22f37380bc9cc21b8d03

    SHA1

    6927b21c6c0b0b53d9e76dd1bb6ba26161b1753a

    SHA256

    5ec31cdca9fa91340c0c773b561e1027bde377062c23cd45067bdca56ddac394

    SHA512

    2b46d9654d30e048d2e87acb58d224b6db326c181d8587f0975295d24fd5a25b2f3da792ca02e9876843c26af08f03e5d7da9524e0779764605163f50c2adf3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20ab20e07b5246a17006ab12322d521f

    SHA1

    e5b6a505536ca27b53e74fa6195a927c3248a9ce

    SHA256

    64fc4a74dc296fba5d233af1fcd10609b74c20816b07154a9480f7f26d4bf788

    SHA512

    a7c9abe07069bb84f3ee79521383c6cd2cb29745d40629d0c2c202bff453fa052b4fa3715cad91c38c9bec9f93b8aa21d7cdef9b060b7c24a7407e4a3a56eee9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab21735cf3cfe3450da60ca42d278257

    SHA1

    2474ad0ae819ff8181111418b86a04b4932fe853

    SHA256

    6e5c984610a93a9256bd6007dffc573f772204fd1d1133e0c063db690e54baf6

    SHA512

    678f9549e7d4f46c0db5076791467a27fe5d435943854c550dea21c417373cbe78b87c80f7dd62dc97add2522e9d6b41b5ede97f7568a4017dac5cb4d6d88865

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83e939113fd633602ae2cfc8c255e6eb

    SHA1

    8d2386bfda88ed2db0a5cd80c274cefa1209fd3c

    SHA256

    06a7a335120fe8006d4da8d61f254a317cd66a455953b0aa6d2826cc9e25a3de

    SHA512

    0f2dbedbd0db85385c3ece0fe2bfa1044a4bb87213f485dffab4c99ddaa3b64bc4f131c69be951fa56df89d859eb25be314eb6be2484d2f5b0a4ff54edf2fe00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e0d0abf919c2d1729ed1e77fa4558387

    SHA1

    3f3d8823502561b30ca029ee3fc0f5285f28cf5e

    SHA256

    d53e00d6d5a243b392535391073885334e20f8990ce847757f281758bfa285ea

    SHA512

    64c5d70ce86ba0e2a7343dfe7141b82aaed74f297f2f70114917845370304170e6cf34e6fbc394e2d56c3b41cff5d543d8bd896f7d71f3acfc8974b18068b3a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe62f7dccfeb194a9c7c078c758d6fdc

    SHA1

    e20a23a411cb3be0b9378c583cb375b50b48741c

    SHA256

    0fe9289854d55830a3c8f253112a81235c60591ca93870a43cebc7caa7199d2d

    SHA512

    ea784d0941f6ded3b9b8b60dcc8f19d3e3ab8ae493de67b9d9bd6cb06d27143a4514a8c82947f821d7748a2f4a7b109f9d1bda213c01af7a1a745f28daacb730

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    48581531f1fe2e34dd5f63a9014711e0

    SHA1

    0ca075b5a44f536c9c4ec07f23229670ce16836d

    SHA256

    ab1baedf2373d07e731ef6bd172d784e9a8a1ce1431429486b6329fbb22635af

    SHA512

    e094f740a9241fd0222a0ac853f617f549cbe94dc87562dd3039b2f9a7802b1c0cacfdeb54095d6c0576f56fa256eb172cbd2ff09b964dd3c24f20e44d42d2c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f77290a04de498ae02ba6697a2bdc3b

    SHA1

    5fec6c321a58b1dbef1a1ca81ad42c5a6b549689

    SHA256

    f376fdd764b3caed6319a3ba3d5a6410375a4fa31d29d886456810b655cb5e77

    SHA512

    3b9b4575fb41b91bf10ff1e7d4cbec7bc074f3d5821c0320e177444944afdbc05cb0e4d96170bfd33b8b9fe9718ab4f9b909ebd89ffd8ec67833fa8e41024013

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55934531f6b9273800e3e87cd0a3801d

    SHA1

    788e12ca2b468d1b980559893117781f86afc49e

    SHA256

    569b51ecf34373c7242e92f105fb76d33855e26488f7de77555e75bbdb884cd1

    SHA512

    e6ab22c6ae86651d806edfc5a6488bf96fd1dc87946a02e8fdb5a75f322b481b99604b992d02d0e49cbf70542b71d5240a833c06d194922326374e2dcb4beba0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca4e975e5ea190448652a66fddff2c45

    SHA1

    f8dec8ef8f3af11be6ad98d3fb13f82a99608666

    SHA256

    6a76f071affa785990938c78e4b82808016d0697e6a5411a96e347d0a739d60e

    SHA512

    d1779c08569ab74c262cfa491958601df366dc532473f721ddb07b8d4cc6bfd0865e46fc31038a0c99c243e6e96c783f2838a1ef9a684df62958a515775f44e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    81819e56673aeb517a7191dfca75dc2a

    SHA1

    ca622be32ea003ee74e414625b48d3036ba3d77d

    SHA256

    2656c87ab3aa360152e5d8885ca528532b18f78baa7d7a105d586e530ce993c5

    SHA512

    a3a9ccb75a79139b31883e59c5d7436fa90159a1fd87bb2f89ccec0ba8c52d8bc2f494f4b7344d2274533bdaba3111c2567b5ce97e49f5459b01deb266f7db7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ddf16cbf48e477c5ec22257c3635fd47

    SHA1

    ac04417582e0de9627c7ae47f6c7c1d154a50d25

    SHA256

    e2fb42d49c0c03cade90ed07f164feb9f25e5c5e3f9c5926400cb0222f5bb556

    SHA512

    35f5fe58c5ae7c4b53701efa8b18f984a40c3eb693564fc88fd1e6aff5759e073c48caac67744ff019d698890ab48ac3571d9afc35774a4eeb24146949be39d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    12bdab650e8878a67bfbb9e188ed0bf6

    SHA1

    24534b62d09a15b48e115bc8dbdb1b0857092a7d

    SHA256

    c2ca08ca1568082f979db241abb004f666675fdcab7d624f949a493870fe7c51

    SHA512

    e8b65b3bed12385b8fa774ff0dc8f37ed7ec1d1a2c39d1d2e0d4fc43246fadbc77f8f60812486742af5d46001ecbfa7a0e90baceca19a55d91bf2358e355b67b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    562a776231d77ff6b1f0a8aac7fd5b15

    SHA1

    dd41e3230cfe411f3379af11fc8498193dba0228

    SHA256

    0aa33059ef8cc92f61f1862e1dee727eb5b91988c4b2c4f1074789e9df8ae931

    SHA512

    f4ceb4318a6a9cf582a6a0f4153c5dfa4567b2014c68c85eb971f05e1ca64fb77357f63e2ad665c7b77ef84ad117d643238e55673b5a99f5d221c998fe8f28cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f34a9608762fa59f82ff9e69644c362

    SHA1

    3fe8e95501d4788d8d0a84659db29ac068679582

    SHA256

    872fbbca701cb4aa92e478eb2d7038e8d24eac396c9706989f814fcb4011db9c

    SHA512

    518fa22d514df55f7d0f642e574b1e655f13e5076d0708b1fafc04d59b29ed52c9f5ea5fa6fba8154ce2f5a1dcca5a94116f0a3f4a2f2a25d2ca6a732a8b494a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b84777fe67864a3f3eb4af6ac61153e

    SHA1

    e3ea8a6b591f549d77b5ae826b5a6df5ec15711a

    SHA256

    da5543b6fa89f183531cb366b7596335fe1014f084f77470e960e38268370d0b

    SHA512

    435d1124f99e64f2f914b227450fc3a01708fc084b4e20e253d4e1a625e50c3fea12b41737b566e45f274facf115edda7cba2ef35bb81921cbcecdf254277ff1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    815a154305eac7ab5947327a66e40e28

    SHA1

    ff7e17e52ac6cb02d8a3b3739850be6cbe4800ad

    SHA256

    df98ebdac51e5c9600f8492017e2f3923c4e7c53a7948d5cc548bb982ae79757

    SHA512

    5525865d91c79237e7d528e0acfc918db8fc2f4d2b14e5670de29ffae4d9da3adf726b5405e897175ae3663c52a990675f2bdc92a595b470e76a21e514bb771a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE341.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE49F.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit