Overview

overview

1

Static

static

1

libgradien...l.html

windows7-x64

1

libgradien...l.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 00:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libgradient_plugin.dll.html

  • Size

    15KB

  • MD5

    2db3e33e86d365e32b3fb2623fa498de

  • SHA1

    f3df2048bfc915225ef322b487fe5718b2316328

  • SHA256

    c5c097d64140e843159337a01da7f8aa837be94719387d68cc2299ca23e3ce19

  • SHA512

    7831e8c296af84bf94551f8d96d237d9be5273ae683ab925722d436586fb51d115b9a6db0217528870e8f81ea4f66aedb760562af7e0f87ae10243ce31de244e

  • SSDEEP

    384:DEFPMcMHyAcaRSOVDcvXkvDZ3eL+6LLJzl+Cq124kbrBZFE8uI:D+PMcMHyAcaRSOVDcvUvDZ3eL+6LLtFN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libgradient_plugin.dll.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1268

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a7f5c45dc4a67f20854adde52e19478e

    SHA1

    ce8cd3092a573c39e146ac9c61ee67979bc8963d

    SHA256

    f78beb380ccdad0c00a156c3354cbb18602dee2948249de06315d1a9f9580b5b

    SHA512

    6ceb1030b44b4f1cdf6a4e53bdbab4db53ec2e5a44d76e53c70b05b02f4060aafc692789ee0841ef2b5a35b83aed1df2e6181dfefe7d23c53cfeb022d74c4195

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    41a3ddfa3edbf5f121157558d8571600

    SHA1

    2584a4dfcca91afb3f7df3b9cb864ff1b7bc396f

    SHA256

    538f33f148f195d4b26c2b5f6631984130ec2ebdc740b938ec23fee123886a06

    SHA512

    6e516e9d7f62a9e7ffdf2e9ab5fc3161a39e3202576f9cac508f5aec5a05472cc832c7b6c041316bde1e5a0b900fd6b963dd36e08da5d92d3fa8b3e9f28ba139

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c1f40734d00e1c38003ced53678c6df1

    SHA1

    5e93ca8c8c84a053b5dd5705493bc68d701886bc

    SHA256

    4ef45db4bf9b2d72da4bfede09f1e84c6a61ba57fdb4771dd93ff9601ddd88ca

    SHA512

    15d6189f7c12a4af463399cd668228a937a3688c3e59052562c8950abc2d607896b63b027e4aa940eafb0c4436e4f0ee07962e29678b1cef48abd934980e3f1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    41e1ce66ab607437e9527ad9f743415d

    SHA1

    27f9f6e81293094c4fdc20b54cebba265bb6978e

    SHA256

    65be7e921f7d6257e8a0857000a346bbc8a9fd9f1686b5cb711c614208c3fe84

    SHA512

    d122337410af9810d1ae83e01524d1add0a634e043282d8059afbe3640bb32311e9e7df25daeae433dd79b93d4280038213a0cfa09dfaef16f29ae4491471969

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea70186bcc7cadc582a4fd15d7b57129

    SHA1

    0be7ee11925be21e518217809567ccbff8248088

    SHA256

    31bd56b75df094b15ce138c95572d0f9e8285d2528a8c717fde6e0d7b9fb5f31

    SHA512

    68f5aee570b9aaf123c24225b11e3106f95246ef1b149635fbfe26279ccb5b75363429dd7223873bd872ddad52d6602cd000e6afa0393ff7784aa336c4c718fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c7faf9aca7b433e3101379c5e15ae63

    SHA1

    f54b6517ab6bc1f6a5fbad2da8df3a0534593651

    SHA256

    840db2dc1531a111913d8c65ca1fa7e391e187105be70d7ca0ba605ca845f5cc

    SHA512

    f725f679439a52b555bd3acd060373488714dd743bed2787e2ada20bf1f8625bdaff34e51b684e0450a3d8a4ddd4b603df8e57bdad5ef4de569bfae396d9e519

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c718f6d15d8e68cf1ce6650c22ec5d4d

    SHA1

    a7c9fc5c2874122768d36633f2d4f6e8185865c2

    SHA256

    f0389e98b85e2154d6906cdbb9d4faffcc8f6271d0251d67c790b2d0c02aacec

    SHA512

    085dfbdb759cafa5784ae409e0d9add5cb31df662932eb8cbf7daada31acaffaf9cbebb6360443f8de493bc7e6883d9129d5ccb298787b9446c85601e8a26902

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4c140ddb1c1c9f41a55dbd4c0f4ce366

    SHA1

    88f6eb24a917e6bde60912cc3a032aa3ea8c59d9

    SHA256

    34fe56e728572952ae137de9b88cf8346cb92a570a12ec12f3bfd99896cefc65

    SHA512

    0240628b61b23c93eeb45b7b61fb06f5e1bd4d2903ee3265c4db36f997443cf505658a27a5f5ee170013734563b82ce0b03f81275f75ecbc466d2a5c00de705b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f09286b820bd7ec5259435a351b8f6da

    SHA1

    5e5b814da5490248d74c419c740c995bcc35b4e8

    SHA256

    536f82a153d1f1fdb2df26f7fc1b362198b883ebcfd936b7929fd7e107ebe5fb

    SHA512

    3903e89fe1a1337d72eb371d7f892497d9c43c9dcb0ac0b3f49d1397a830566f6d44ce5a818f97c4a66287aab2152ea6f486e8020e13a4c8d1380b04fab85f28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5704e460ea1e8d7bca37e39fb8f2b721

    SHA1

    f3e7ee60c219e798901bd1831f72ea192c479bf6

    SHA256

    851dbcbb103f60de8dcb639659f81813aa2d5da9883e1d067386bc0ccd77d167

    SHA512

    6393ba81d74bc6f5616c04624dcddfc7a238fa33effbfa03639d82291870b442f4d9d8fcaedddc7c4ed553628888545109e23e5cf75b3b3f71933ed7d636992f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4adaf83c6c0b278b9b0d583e45128a4e

    SHA1

    1400b71d995b657f29f192039ec78ce8d6631db0

    SHA256

    e6fcff354146072536e365a01ddceaaaab98e3ed5bbb0fb02e1c540ad9fa6734

    SHA512

    eee7d82e1a30fb25528910f944d6c009ab7e92a8b38f93bb347dbdc57bd223f12daaac4444bc122cf40531069a9627406557ef0b832211644564e7a915e6ef80

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7bb7e7b8fa040499afac9e290e89de2c

    SHA1

    4270593c3c87294c024cea65e4480f5d1938a83f

    SHA256

    8946f912c3710c5d17627049a3f17951d3f84c147a6a0d20e9cbefabf78d1a58

    SHA512

    0621324eb81d2b1373258009009183e977e92d7ba83cc557e52147cc99d13f82f20fada93e8f78b57a1f0cb4d7e618e5ee8e36dbf1b9a11e8351964ce06f4411

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    263d5a9f0016a533caf43c33a89944a8

    SHA1

    18e8b5d411543d35982f1b404661f339bb122a0b

    SHA256

    f829de69ba7c9e34393c35e290b80b59172f8924856809400645407aa6abd09a

    SHA512

    d9a19fbd63bb3c64f961b636854320c2e754165633880192cb615f1697d7a85bb53f6fe097eaa9263f1ab106cb9a83e3f7766c90aeb3a3fc81670873b4c38892

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc07b5b877a0187b5541c1890a5d8020

    SHA1

    5d6cbc0c4342d3e2fc2743594288a87b27228640

    SHA256

    48f8fe9321a16ecc72cb139efca4c7cfd8ada4786777d90e6ed370dfec9bf7c2

    SHA512

    c5798aa450d4099466e6e8e54e5499dbd3e31faf372507a17816e66b84e1cfc27774324426bbe54de996f420930032f23e8ce2d5ebd91d1580cc4ac09d4d9d08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    078f22f2d249ee2b3a6b566023509d40

    SHA1

    3f8baa47e8224678d9c70d2d52714c7076a8fa96

    SHA256

    bfc6e1b4afc03bf1352a427f33d2d5f86b8df8b183f515b8e00d6c631c740009

    SHA512

    f3f8b93ecae6468fd2ddd851c5a06f1fb47ae0a7b8a9621ac20aac4b18e7103197c8cfc1235f42ff9a7387b10910b715ca194776e5fbe5285756db9e7d73658d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c3431bfd53e1e67cefd8dc0177b52a25

    SHA1

    3d7d249925a7fd524a6474109dcc1d09f5636343

    SHA256

    e6e0a70214fa58a89588c6caaa89a884fad416dd22697c04683148f0706286c5

    SHA512

    0af53ff2e1e710c22466efd8b2b56bf640985589f6337123011136df2face1609d3958efcd8bab1f854648471fd12649fe509c10fa878cb920e02ebfe68b0636

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9c48f3938e82709808f34930dd49b07

    SHA1

    958ed6f1bd001bf88b597f83a39a55ab3ac6afb6

    SHA256

    f37ef78ef9063a0444f6c625f30e9842bea927110624445a916c665b2572c3ec

    SHA512

    b676190d817fc1cee7b814347a0ea9d9f4599130d3507521de06949b6a64663faacc24ba8c23c9f57f4198fd4a39fdac674387fb4ff2682b1a3d4e0c3495da2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6b313f70414bb1ff0d904237f11bbac9

    SHA1

    efb58c7b21f9aabc09bd8e945c984c96c721e50a

    SHA256

    19ecdd8df2134ee7ddc639ebc08249b0134ddc9afb80ca7bcdedf83e1cde03d9

    SHA512

    e6be7fea429a30bba55033f0ff07094ef8b33f212b432bba20b9ab4a1b8a7e19b3cccef90ac4d96932d5dc380d788f7c7fe4d0c5025c33d3a7a43c37976ba6e3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF02A.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF216.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit