Overview

overview

10

Static

static

3

0577b7e8c6...49.exe

windows7-x64

7

0577b7e8c6...49.exe

windows10-2004-x64

9

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

EpsilonFruit.exe

windows7-x64

10

EpsilonFruit.exe

windows10-2004-x64

10

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/...dex.js

windows7-x64

1

resources/...dex.js

windows10-2004-x64

1

resources/....2.bat

windows7-x64

7

resources/....2.bat

windows10-2004-x64

7

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...7z.dll

windows7-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 07:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    5.2MB

  • MD5

    df37c89638c65db9a4518b88e79350be

  • SHA1

    6b9ba9fba54fb3aa1b938de218f549078924ac50

  • SHA256

    dbd18fe7c6e72eeb81680fabef9b6c0262d1d2d1aa679b3b221d9d9ced509463

  • SHA512

    93dd6df08fc0bfaf3e6a690943c090aefe66c5e9995392bebd510c5b6260533b1522dc529b8328dfe862192e1357e9e98d1cdd95117c08c76be3ab565c6eea67

  • SSDEEP

    12288:/7etnqnVnMnBnunQ9RBvjYJEi400/Q599b769B9UOE6MwMGucMEbHDuX0YnpWQZb:sPM95FCWStQj6ERs/mfMl6H0skDpS

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1668
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1668 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2148

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02377011da3a569b1edc7a73268a96db

    SHA1

    254aab491a61e84eaed4950250161e472a8d5fcf

    SHA256

    2317317c5718295b1eceb82d6a98d94a210bf831cbb8eeb4853742e37685acfb

    SHA512

    154e54a3ea05188cd885c658fcddec446af37ca4d719d7b565cc300f5ba7716f62fddf6dc7a9602ffc29b8b433b638bfbb02b6b9ff6d90eec27049b466e81293

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a763f645cceabec760cf18eaa200ec22

    SHA1

    69c1700cbe7f55adbdd83c198c85a474f0db7592

    SHA256

    a9d03e8f16ec3cdc0a65029a3864c7b9112230265cd345e7564469090caf9840

    SHA512

    0315f4bad62c2243f2699288e032c410496d29628d30ef8302a8a75070282318184fd5b0b47e133beaa621e5053f07139e3b8b6a8e2de07c4fc95340a3bdcf26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66c7b886d3b1d517562100f18b9ba597

    SHA1

    272cf5e07b66603d55c7d3eac181846285e5e4bd

    SHA256

    dc73ff8041b1b4a2a79072796e1531b02948297338ebb8949a26e5ffb5aa03f4

    SHA512

    896ef04b6e6e5353ff8b94bed59f6c31f1932fe8f198e248baa7af34d4a13b7d81a5bf87a80937d3e0e2a5e11b2c3425e0eac0d2f2647bd71134fb7c0aace131

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db3af982c1676f8f34ae5a04edf7a35c

    SHA1

    43d9d2594c11c825e66b861fda6db4da759e8a9d

    SHA256

    78dd60b334091aa12647eb05c966bc0164aa46bf6949be38e5c90aad8c855c81

    SHA512

    6e7c52346dc9dd072eee706c448a1d5356d11112807fe348e3d4ab9aad0163a4cd72c211e95f27b5e59f89452750d8bbd4833632d5c89a4f4a0d7e45c6c5b6f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15d23c4f47e147083cc23c092e059b1b

    SHA1

    8b3adc54764214af4d0ca59e9a9e2a920c57e510

    SHA256

    92899c6ea405835a074fb34fe9f9bbc4e59f825223823f308d2ac3ade2234685

    SHA512

    30fa831180f05aff428bae9053cf8140b44615318b884406f84d5ddbd6d4ae0fb69b12f59da5e51ae4b9a3797a0e68d1d0c64ced6f9080d60a7130f5bad22dd3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    07761de644b5ee8e0402abf92af7e1a1

    SHA1

    3cead653ce125b0a6de296d44b427835d04c11b6

    SHA256

    4350485f2d47ff8dd6e63e28a2d47c9922a52e914226f378d53292ee92d57858

    SHA512

    0ba00d955a1fb39c1beacfa31e100547aff8b3cae07f741897515cd7e02fdba284e3c8487ebb10fead7a24505f2c397b600cb53585c6ce9bdc2b4a12f5791515

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76dad8dab175d13f6f3f3fc74bc69f3c

    SHA1

    98e5e1b1bfceeea5d45274ad039a5c29cf07e2b7

    SHA256

    9c8aa164a23638067d234e14647f2b4d914187c8d5d322b3f63fb480524259d9

    SHA512

    30fb4dd19e906e4e0ee22b5f0059177102560b8779dde66c5dae8444348fdd6e3b42d312e90fbf810f1111022ff212a4f6ae977583ca567b12788ef71b1b25cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    49ab018daa8948c7b716304dee9187ee

    SHA1

    cdc843926fa4324862c3abfa006c9baa287ad025

    SHA256

    cf40fa744cb5179f2e8f2bb8d3a2561e019ac2586906f849faea5a1bdbe1f79f

    SHA512

    9e50986e329e2581626f0dcc5a5e430838fd9bd76ab9ff158ea7f9e9231a4f78ec59f7912d45633b2645506406ac3407215ac7e1ceaa6d650571196d7b61b77c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ec8ba7131ffab2a27568538a220bc1c3

    SHA1

    f6a1252046794d000877fabb3559d066eef56119

    SHA256

    6b1c4d791f56f0b12091d36b73b73dacda06113e1d805b8ec1ee2e8b51b2639b

    SHA512

    50bb61c77a9c6dec2b7dbb8d66ebf7fcee2eb767e41e65d9015b09d65efc765a87200813460e2a62737f8b0bf7399f6556b7bd1d80f8081a0e6e889c18ed017a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1fb9badb5c7eef3c52065ba0299dacd

    SHA1

    4dbc01083c9ab389944fb0bfe71f06b4d43a4f4a

    SHA256

    5f8e00659be13bde20c191cdbc14c0c759f21c55702bb1fab9ce8916eac9b913

    SHA512

    37eddc92e525fb7502892955d1818e08fd9cb42b289c178d3ddda9cc0f68278b388312a0f9292812c6eac9780b072370d2e3a6ab5008c9dacbe5d61f09a0d981

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ce4fabd0110b9dbe28e36c480116a8b2

    SHA1

    da7270f723d6998ce663c13638cfb59cd11d368c

    SHA256

    a7ec57ee863a7f4c8dd1fca9f7c2dd3daf6347145e5a6ab6c5f2ec9d664315e0

    SHA512

    25b39dd81015006caca205627b3e7899411a8914cb43419a15208fe33b5f071866bcb6629b3c9f074bc020a0667da347e36362fd8aa347b73b9dcb77a56e8745

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b12a612efdf268101c6283ce54eef8f7

    SHA1

    a0de3f465199407b307daaaeea90f0b6eecbe074

    SHA256

    dd49e23a7b35328a61a94e2cf7de95c9d264bf26e58c68f4dd61b5ceae24a7c2

    SHA512

    c8204dc8e5d2af42a0ee505462c90db0f4944bb4b6d9622768fbfe731aba3f974386a606f32f7a1c223ff859371813d51b1edde1a8255307f56d99197195ce8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b7f938803ba1b8802dc3416bd5ad25c2

    SHA1

    8a2b9223dc72b27f8acd76b91beb2483a16784fb

    SHA256

    4377e2326b547d99cdaa15e64b04c96d864902d6a0493c81f52f91d8574d0483

    SHA512

    5793fc3d5b9dd4c218a9b10734496ed9743b7cf50d9383817756c3ddea27a1a492d0e1578e7f1c16a9d5abcb0486199f16cfbe412f0625ec0bbc9e00f4ffee13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a02b6d10b925eb73b2ba9d0ef9bd50d8

    SHA1

    cd139ee7f8c04fafe11c1d44ccf944357302712f

    SHA256

    d2cc725573045e42a7a314deb3bcadfeb1f14013b89759cd5d57818151fd4f62

    SHA512

    4232266e4732e2edcda56cfc631450cafec338fb5d563d9b86bfd8da4217a0dcf134c62ee8f5846568ff67c3f509f6f20bf6dc626981715b96336cfc861afce2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    141a8bfe0df8ace695e60529b9f72f67

    SHA1

    6cdd80f521c0c6d4ae7f43dac6e82a0f7ed1159a

    SHA256

    d62c74ab5a27f25c487bfed32f81d215ac1db624ebb2f7dadc26dcc874025e10

    SHA512

    9233576990324d1fdd2a927392956b63fb4b5c90fce7b134ec7b0e2e970a53935115e844b3fc9116ea94eefae2cf443070bc28b117a8a6cba35a555571b565ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d92a22b9a181a6912331478a77fd2a8

    SHA1

    2284ee8852ec9eb08233cb63cab72caf73374c58

    SHA256

    fa7941d9d79117294079f2caeeec7bd5e7d9c62d5095f1b644fb46172a30e8d8

    SHA512

    013ba62489acedd1f050cd84e78c54d3f1c364a9cf7ee2e6aaf0d0cc280ebd69291cca00682285477d1d3d733035dea6e49d7a64738d6cd4018f75e7495c1d69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c9cf8ee2cb0769c7f88d682a1ff3dc25

    SHA1

    8f2c26589510da941ed9017b0b0ed485a5e645a8

    SHA256

    ca0555d45694c450c0bc63bd9592ce79a4daee8cebf7c064990b8224e3ccabf5

    SHA512

    9a88a897e9887d47874cb7b401a96a70651ac960e8f426195182c1a953dcc82dafa19f3330a48f475d21e4bd442bb1721cac1a98a18f534084e3b49e43827043

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAD03.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB333.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit