Overview

overview

7

Static

static

3

c0010bd39b...f5.exe

windows7-x64

7

c0010bd39b...f5.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

ShadowFury.exe

windows7-x64

1

ShadowFury.exe

windows10-2004-x64

7

d3dcompiler_47.dll

windows10-2004-x64

3

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

3

libGLESv2.dll

windows10-2004-x64

3

locales/af.ps1

windows7-x64

1

locales/af.ps1

windows10-2004-x64

1

locales/uk.ps1

windows7-x64

1

locales/uk.ps1

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

3

vk_swiftshader.dll

windows10-2004-x64

3

vulkan-1.dll

windows7-x64

3

vulkan-1.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    23/04/2024, 07:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    312446edf757f7e92aad311f625cef2a

  • SHA1

    91102d30d5abcfa7b6ec732e3682fb9c77279ba3

  • SHA256

    c2656201ac86438d062673771e33e44d6d5e97670c3160e0de1cb0bd5fbbae9b

  • SHA512

    dce01f2448a49a0e6f08bbde6570f76a87dcc81179bb51d5e2642ad033ee81ae3996800363826a65485ab79085572bbace51409ae7102ed1a12df65018676333

  • SSDEEP

    24576:dbTy6TU675kfWScRQfJw91SmfJB6i6e6R626X8HHdE/pG6:tygpj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2896
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2896 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3012

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    e99cc1a7c765352f5c64eabe5539ee5e

    SHA1

    474ffadcaaa17d2ba06ddb6210995d815356d6a9

    SHA256

    1a20e73f307c5e3f32a54d1dd1476a702d6224abc06dde53117867a34e1d9d29

    SHA512

    b43fade0c65942776f3713015983835f3625de5e66976fe83aa9601a18facab9c54d9317315cd306a7c14ab9477dc0e9fe42fd2550893d0b46d30163bc109565

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    351e7a04b72e5a2426a77ebf6d20fe34

    SHA1

    52a199ccd5b1faf0ff500345824aa0c7354c21ed

    SHA256

    efbcd5b7f88ebbfdfc474e74827e7c98cbdcc248e936678f4a8d8f8cf44275d5

    SHA512

    78c91de6b0674bfef07970851fc298cab66bb1c015f7c87fbe01f96a849fd6ee811117feb624a49ebd6282c5fe82ff56a3a7dcecdbd30bff8619d7d9d4558ff0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b20047551d80cf25806717d867b3e617

    SHA1

    8bfad8821017fc80cdcd29a349dd50c9aa52d901

    SHA256

    4e28ae8c36cd9f93761089fa3d9362dd2e482c9ec60403ba27878a44879281fc

    SHA512

    8fc5a70538d3d64969ca4ad4bde18aa6d24c546b5c63821b5981a06ae2689dcceb7b31a45358b96390ab8b63a574ad04ba0229f28d9151bb438aaaf64661115f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    21336a0c75cb5143b2ee23e7a118c9c2

    SHA1

    7b36edc4c2623642d98ebd3e675f39efccb44cb5

    SHA256

    86a41048eec05c0f98b897b46afd9d26830812ae2cababc49624a5afd9479a25

    SHA512

    196fa48c5ce90f39217b7e87f13119a581496e9cc1c1c4613fa3ce05f2ab4767499d96b93107c0edf316a7d29322931952edca3921e18963edfe6adf1e280b89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f326b4ce711838d3584ff5378bc1b33

    SHA1

    30fec33782588da6f850655ce4f1be701073cdee

    SHA256

    9289fa45f6bff7d83197c591eb112b0d07ca88f22cadb01d0603778741a0f84d

    SHA512

    4a7e339dec06db31b6b4fe536c74793dbee3e5348492465780af1bcf4c8207c956203530147d53bb52b5e7a7d4223833ed9d4b0efeb4798f66cfa110dd4c6046

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8ba0c5be2f2f2929f7cb55f1984def49

    SHA1

    7ee65e8dba3a521c6085e1204b2f226a765d3015

    SHA256

    3c3d537fb55e767c63c59ea78cb2b14cdca63db7a10f4885310cf5edba7e01cd

    SHA512

    68839580adfc7e8aff8ca7d5a6f1d0d6337ba797914332a09a0ff471fe76405e5e54014f759f40605a61019069117ed91042cb95f8ec1444023c785ebcb77bac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c2cbfd24d1a07ff4777a1842a67df03

    SHA1

    a6b16053475d23cf16d19ae84bf63d6d12bb6223

    SHA256

    b56370c6f339e31f10a97045553ea00e6dbf6f2805ade894333a4828b652ca1f

    SHA512

    67235a4d68692a04995f8a116c08f336fe6ab89240e8ba2a645ae58af7f55a7f6369862be30571ec0031c59637f4af847e9522d4e60ac21910606edf088efaef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e54b237a4a5cb5ab4fafad562de9762a

    SHA1

    e71abb10f81bc564ac6d786dbf22c971b0f4775c

    SHA256

    bba4844982eaa179c2fb0163395d6b3b641ad71f16f7aec85b6358e5134757cd

    SHA512

    b14fe18fc3bf9994c9ad73f7e64de2a0e4b3e0068e8a06ffdf97c4b6263377ae3dcbf477ec91b5f675cd821bc8b85064f35c94bb05423f64febe6ba2d79916d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f60f96026ecb273252193f17a9315dd

    SHA1

    13a0b267cc096325d5bd2a4d462fd5e3fd603d1e

    SHA256

    49a551c459b4951ca0c04d39bedfa5548fe2bf11f9ed69f8527c6504263c7bbe

    SHA512

    febb73c8cb325cbd3c0d268a8f6571fb32ed55807e49c9060a2b88924787f650bdf112362513f68a2d3088389275d457506002a503258366d7fa59eb16462bda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54b668838c4bc73ab8e34777b2185ec8

    SHA1

    a1905834da25a589752f96d919376eb15ee51369

    SHA256

    7224d4838460747e4cfa1a57f8317261ae6ff425f259d06f0d7b1d42881e077a

    SHA512

    f01e66b2b0bb28477a99a4ff6091c5d48815efa488bf07055ef86dbd8064673283e959fe6bf3962d1acd586c8636e9844a9f6338fd53057c88ec6771d0265c16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e5de876462ea04d0eaf690e94b3b403

    SHA1

    397a12848a1b508a884a7de34999a3c073738805

    SHA256

    f74deff7a3357e588e44b2e16856a065f6d516cf9c11f6f4d6c7f50733f86cfe

    SHA512

    5fefa7e647db7fed3fdbb78e6abb315511bc5172d94453a9697bb0b39eb8cc0049329709c929a6ca4fa909cfff0a004774d52505ca8d45e764e52dc79deac450

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e0a57943a8a0611c9f74c139b23700db

    SHA1

    2b0476a2c6d570492cff335b94314cd922102975

    SHA256

    8525c889b4b0389f72a77aa3728c9578aef5695aac16d52d02068b2f4c673712

    SHA512

    50e2c46c49cb0616b0dbdce3e7c830f39b8121ecefa3987f10f5e257f8643c773adeac2bb427f83fdee8bd015ec0f86a967ca50baabc085415a342a1f63de23b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5be63803e34924737cab0e15732677ab

    SHA1

    5af6568c4f63d1607f257c26df447920bc7c87cf

    SHA256

    0c87538e620fc5790e9d9edcec8882383cab2c7b0ce57df0e1b28c5abd58c001

    SHA512

    a338ee68e3451f0be5394d4ef3ea2bc989c865916c503686fcb3bfb65edf5e35245566d414cbb7b61be397066663cd8be397500b71f6018838b6e9b948ed31a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d09b39d53f7f7fe939ec6da9bc49a6f4

    SHA1

    6798b2946667da873527e3175753119e1bfc2912

    SHA256

    86023834b8ad355fc85deddfd3805e6cf32b111ebb0bc661d0f7fad4a09fb8de

    SHA512

    9936117745a32847ccf1c76a394204c7d77b47f4408754b6fb52689f65df2346412d1921b438be4ca49b4c6f16a4b209f24ad593830d17c257307466f3e0322e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa15616f68f9f9d131b49bc2fd0a3bd7

    SHA1

    50293a2a931e94b856445492cc945103766a1fc6

    SHA256

    28001e8f8cfb32c33e61c5121e2b32c768f8b94ee8dfd29a2cdace6e9fe2fb5c

    SHA512

    5c523e84215b105449f30ddf2a6db86ceca1e68659c3b53972e8ef356e4fd42377b4df56cb75156314ba3be204828252ce7cf465ae668b2171daefaf39f78601

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    233815a386ef13d18695b0cd494f74fe

    SHA1

    6f5a798e613aecff24a3e3edfa53613ee1004b52

    SHA256

    0f7a5537dc0879c120150ab969e64aae35a0d2cc30576697d579dbd042319db6

    SHA512

    ea82a2c937c716b1f2b1dc4a3016501ab5fc89d6d1f0461dc7c0b4f8e2740f5d446802a19802fde278a4e1c1ca411eb49475c80e199c7e50c28260e9e383da45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a38c2a96216facfcf5ce6a1522be0c6

    SHA1

    f4157b1c83fcfeae60417e8e529ea9d6d3ac360a

    SHA256

    c4bdc418dca8aa96162dd17d2b56ad99f2fe7d04447a92d1df51fe1411728186

    SHA512

    9cf8a51cd7ac6cff8f89cf10c6332fe9942d3fbe1d9cfb41f4e4c87f29d28f2c1203f3fd7220d7361312c5d006e24970d61980af97d04ef16a667202c296bfb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f5ffe748858d43d9dfa81fde6604272

    SHA1

    ed1109df1588bf37a13f8e95fb168b3db9eb9419

    SHA256

    c5f8e23bca57b00fdf0690ae62bb564ce3a62b0b3dd772593b5b6e5914996054

    SHA512

    b0bc2594a7c58c3df193107b07a039632392ccddb2f1a75d2e9e52d06cdb8835ffccb59d157dc274d4e95a0caebf6fd6fe3e8e0631ee40438a80fce7ef557f54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    323e32ac34687da26d26955af964fb44

    SHA1

    21f05a6a3f5a6b8d68179da8eb7e6a284f76dd1a

    SHA256

    0b83e689b3789f232dcdec445a0b985486d6c044f7729b33cb37b8d8ef3bf564

    SHA512

    848151e7b3f5da68cb39085f7a9bf323cfb5036b5a88cbe1c74fc2bf408cd39f72f696c726e41c41291b670c43acb7351098cfcdd42c3c293d709724f8712aa2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    29b27ee23bfe29eb525b3f3103c1a852

    SHA1

    102b3644a3b54e7f7e6e9108746f3ce610399fa9

    SHA256

    1fcd49e2cb611c63d0067d2fc1d58861b7739f16242f497c4d8c66ec153491c7

    SHA512

    d418af982afacabb69ac152f7531bdfd13231252c7fe606b815dbe21a94617f86934d8f9d32147354da672a9b2cb1f692bcf61fc98ddd17c66b9f9e446696936

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    bfec39626a9d354c560b52215b382ffb

    SHA1

    48bebf14b294362aa3b10d2f40645603c5cff2dd

    SHA256

    f0a3b66ced23325e23c5a217d8867179119b6a973cb089cc68c5b2ca58f7454f

    SHA512

    1a72d222b5bdc661b99e26826fba42e4318743cd6dde1e47ee93786dea5320957a640f4dd4d63208927ba346d00a744afccc6dce5ea6b30047ae8c0db060486f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar36C0.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit