Overview

overview

7

Static

static

3

Silent Cli....1.exe

windows7-x64

7

Silent Cli....1.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

Silent Client.exe

windows7-x64

1

Silent Client.exe

windows10-2004-x64

7

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/app.js

windows7-x64

1

resources/app.js

windows10-2004-x64

1

resources/...r.html

windows7-x64

1

resources/...r.html

windows10-2004-x64

1

resources/...ter.js

windows7-x64

1

resources/...ter.js

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

Analysis

  • max time kernel
    1564s
  • max time network
    1577s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/04/2024, 01:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    6.5MB

  • MD5

    180f8acc70405077badc751453d13625

  • SHA1

    35dc54acad60a98aeec47c7ade3e6a8c81f06883

  • SHA256

    0bfa9a636e722107b6192ff35c365d963a54e1de8a09c8157680e8d0fbbfba1c

  • SHA512

    40d3358b35eb0445127c70deb0cb87ec1313eca285307cda168605a4fd3d558b4be9eb24a59568eca9ee1f761e578c39b2def63ad48e40d31958db82f128e0ec

  • SSDEEP

    24576:d7rs5kjWSnB3lWNeUmf0f6W6M6q6A6r/HXpErpem:rovj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2244

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d8cbf1be82b313794e9af321117fc98

    SHA1

    24a4bdb4ec70d006328c59f889e4ef6a50a1d824

    SHA256

    5b4f2d10c6be3c19812600f7c14fe1cd34e0c57591b7885153e90d3b9d5bfb5c

    SHA512

    eb77803216105e89dee6c0f422b94faa050dbb9dd46df6a06adea6ae5bbd24881327504193590af8011476f72ff88e21511bb647d4127bd2af8ba5254aeb07dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93c19a5e4ceeff2ed7b612c1d55738d6

    SHA1

    b8f36529a4f24b93fa38bd9165493fd88428e701

    SHA256

    4bb0a673aad80ac5c2b4903e7bd4b4228086be10ef3b1e138587031632c6a9b0

    SHA512

    3bb0c1f31d87df3b20d930ad0c03319bfad7bf09f4745a355ab192e3b4ecc1e0fe18192bc66a8049ef8b1c4c968188f12c1e96d46cc49d09eb0a6c92ea004ec4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    37e0fe1c2f8cdcd00871cb607a2033e6

    SHA1

    b25b7f2fa5c6321be5c595bf0d39cc839da25ce1

    SHA256

    c3037bf1c628383c127350cfdb02ebd29b436e9df14fd4429247ef6cd13ec983

    SHA512

    6749b1f06712bc1df5226e5a5cf28e9551e4e8a144cc82228523849dad36926d2761bb35137c6b54db27068258acae39b6f5d81d30e84d208b86d036338b7c18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    74a4451fe4d1eaa15d3db71d2a31bd1d

    SHA1

    79c9120214ec0c940627beaf22cc5a002b12010b

    SHA256

    cabfaf00b46790a1eed43c438ca756ccf580e296d112018ca322c9333e3ed58b

    SHA512

    ce54b35e7625e3123a878c65af6a9db5659ce3209572e36396d1e58c688f595c6aa581380e4f36a9bb43fe7c49f43cfc9ca3a74d93a085b2deeba96bc15e0ab3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc7acee41b16e6759562528da1aafa3c

    SHA1

    3325bd0756edbe66d58a9ac08d89d27669178325

    SHA256

    a887b9b1ea39c5d457b53c3e854e263e4e78586bd0ab7fbbca68fa6abdd37a19

    SHA512

    697c9e722b16670f52232d0e126f5d1966cf05e9bc2d41a2741e32a4ade6b9327bed8fb6602c89cbedf8494c59ec49ddce9b9251ebe3c8d5d81e168aee9c802a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    52f9bd8ce9aafefe79ed0cb6e3a8799b

    SHA1

    9151077d2650a18eaa201c58d166729555bc1b1c

    SHA256

    062209a4220ac9a33750900a518aacf97f786d21aa3447cf8073de150429183d

    SHA512

    2619ea724cd63fa82d98bbcf0c2a38fc752012d1481d0470803810a0731d15643abf07dbe07c3362f1d2ee3436ad0f52105e7cda48837acdbdfeb287c987e5fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d80a714d71f9d4609ad39027d7cd9780

    SHA1

    ca49a148b52cd6e60614067dea916c7b4d885fa9

    SHA256

    8f6da7ccef1878ac54dedcb4445f86029e8080e9aef291a8e913fb30fbac6d63

    SHA512

    a3c7b7f0dbe8b33d30d0aa29b59879f892c931b79bf4c71de8cddd7b002eb5835bd8397aa20f23fbbd39b83aa7bbc75e2e2d30bf6de83bb1b0b0a0a5c4f72feb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5db49199551bdb4edc4ab433232e3862

    SHA1

    f3db094e9396c13b4190604ba06b7b8348c23fef

    SHA256

    6deafa8c9dc3fe41c86685473f203b9b4971cc1f88883d7e0ffb56088482f6c0

    SHA512

    b07c65b2b401d2596247c89778dbff3a59da60be4c99b521b31f46a9d1be38d8c8b30873ed0c073c359ce87ab3fff2bfbf8b183940fe1be15d7d53a33cf9b31b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    426bbc4eaca6db0b70a13f9a9d769a45

    SHA1

    e9f2ecefad70ab582c7b2f6201ccd3524ff3c902

    SHA256

    dc1395c64febbea20c59762fd5af4ca4910163d0b11da827ebcf08823ed3f04b

    SHA512

    2e9ca4d258804f937ed7a172b89a1bc88dc612844906fa5e0f09a85b5d00f6336de066ada88c5e0aa35c069da1ef678f1acea15237fca9c949c0c51853c8049d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a3b7ee119e746bf2e2a9522368bf0601

    SHA1

    245cbce5af922ef5dec1680f34cc007d6c81ac41

    SHA256

    1f7418542097ec9cb854ff07c8d7b9f9e825af58669bdb6c77fc566384885813

    SHA512

    f19e48dfdf73372536af439c1caa9466773241e205c5bff33b9557cef2eeddf66427d8da440dfa6753a8d901037400ee36b15d93637a75dc3650e1b80039c874

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    afce7576e2b9e50f5a8fc48f26b4a9c5

    SHA1

    e97aadecfcbb27b7f786bb38ef3efe60dfc7bd00

    SHA256

    de637b89e48ef8a18d3af834004c7a3336b616ed315cc7b19c5c5ecaea893536

    SHA512

    38004e0936ded700c7297e468fcb8dd37b6bafba863aad4419981f4849192c04b8fe6f91ebfea02b2cf5819463e7690fcbd462931f1c92fced56354361739251

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    adc772f2fc461224eb86feadffc0f527

    SHA1

    bba26ff5b67e922e8ab5edbf85fe1c4ccb68ba82

    SHA256

    1bcc08718dc1dd7924ba43d591321f674df64168279957dfb1c6032895380520

    SHA512

    5476b39e614ae5bf0f5680b345dbf39d3e06debf53b2c945c9a825da3df55ecf88c5df5a5169bb19395cac2e52ca549305da85289e97b920da9a9de8ad0f7d8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f121dbbc6190cad591b66da72825e01

    SHA1

    a8a02785526748f700cb9643278bbe7c754abb8c

    SHA256

    270b2d3a5caa3e47708c280468956f757f6e9acb518ce9de838e1d7498e4cda0

    SHA512

    fe4acbd7d7a0842a85e6942a8bca2af0b28b0bb9abf0134a32e72c3f2582d362ed187a737561bde5fdec98958a3f079e00605254a393c98e27b7d724b15cbb69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6da5e20d6420afa0068b9b30f373188

    SHA1

    2e261c664dd498755c6f9fef1e5919d772b4ca49

    SHA256

    511dc61f713ddb009c88d4c4f19e0edb35a0cb050621e56b78d4eb8c6f136e68

    SHA512

    c40f3344909878e84c5ad0071e17256295e824a86b34cd938090923cbf93016aab81aa82cca3fb8f3f8d53f24b6d69bf6c172da4c87519d88ad8ae72ee5a5b4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6283bae18b81184252f9120234cc6c46

    SHA1

    a272d3d4694ef56bb51160d2f78ef01dd6451ae3

    SHA256

    5347564862f70748e960c21bd73a13ecf70e5f092293fffda8ad0fc2035180cc

    SHA512

    ec3bf3137b9b0a797f1aa413a355d346c29f17fc1d85b0dfe7901bc855b41b60c79e6f775e1527bff07ff7a5914358df9e765285dd54639669590ee5e03dd630

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    425b56f66807af27558f9b5466695950

    SHA1

    d53824cb05759367b83e7a70edd625969f8322e5

    SHA256

    e5a70e051257b4547c55fa0e7c97984f37a1856ea21d7b6c570c10623f7298a1

    SHA512

    6b764f971ac5804b1f3524cf48ff59e88f580400ced71d5244ae4c2fe3f3b377178639f9cc45c713fbdcf4726fe9013a62b3f94554c19d29414e45c34788ff9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fecdbc6d62ea44b103e9993da004bc48

    SHA1

    b1f58a33178c45d4ca4d494a664f97d2939fd6c8

    SHA256

    4635921b155fa13a51e58b4a27b0cf158c2555d841d80e88cb29b80a8f878f38

    SHA512

    981d90078201bdadb93b08a49c78989382e0beeef64985aae287021b5397b8733d0e5aff19192acfc7bee3a2b6233027d0a221ec204a60d95417725dab4ef6f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b819fb43184047b3df3678888419be65

    SHA1

    e4b0bf44139038a88151e21ecaf8a287f36f98ef

    SHA256

    36000d714241ef05307080a95fd915e5fc651b04b01c6639972d724b874a52b6

    SHA512

    4002beaaef7dcf96d64d8578d3d78e54b48a2bcc963bd1633c91bd25a165d00c9eb03408ee7c1302d05ad8e543558d548e9f432adecb7d080d02fe6c956c8aec

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab92A2.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9393.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit