Overview

overview

7

Static

static

3

b4ddc85691...1c.exe

windows7-x64

7

b4ddc85691...1c.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

3

djs-embeds.exe

windows7-x64

1

djs-embeds.exe

windows10-2004-x64

7

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

3

libGLESv2.dll

windows10-2004-x64

3

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

3

vk_swiftshader.dll

windows10-2004-x64

3

vulkan-1.dll

windows7-x64

3

vulkan-1.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 01:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    312446edf757f7e92aad311f625cef2a

  • SHA1

    91102d30d5abcfa7b6ec732e3682fb9c77279ba3

  • SHA256

    c2656201ac86438d062673771e33e44d6d5e97670c3160e0de1cb0bd5fbbae9b

  • SHA512

    dce01f2448a49a0e6f08bbde6570f76a87dcc81179bb51d5e2642ad033ee81ae3996800363826a65485ab79085572bbace51409ae7102ed1a12df65018676333

  • SSDEEP

    24576:dbTy6TU675kfWScRQfJw91SmfJB6i6e6R626X8HHdE/pG6:tygpj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2956
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2956 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    35042ce9610453905ffbfd7013485757

    SHA1

    50dd40de6c119f40c25271c30a3f0e8e58d27633

    SHA256

    dfe7f5d1cf4c051d2bc0ab8d61e55dd114ab4b34e845a4d73d7efd9ae4fabf70

    SHA512

    6b9165ba5352a3b5215f9f3e59dbf2e02903184ba172d0a57ff6c5df41cb9f3ba27173cc975186d57d822485200254eb27de2a6ce96dcb5b686ecb4431577d17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47bf7817e2572f6558fb2c856824dd7d

    SHA1

    b3b8db239f571cad5fd7c076a1e1590a00743761

    SHA256

    4f5a283dd354aea1b1e6ebb0f6405ab4f4fdadd7b8f32f3dbc66bfae5599cef1

    SHA512

    1b4ce219b7f328b9f9c81b62bfddeca2292742d6309bc64b3232bd03e9a98a9911d40c031cb04c5586bcf07420c63df68c7f99fdaf0c53b101d6b5b64443f369

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    345282ac7469f10e7b8ac8863b6e23bb

    SHA1

    e1d9d971e4f4546574ebebe164a01d4d1ab3866e

    SHA256

    ae9a55d768beb6a533a18113e710db08ec83eae78f584f1f87c49623826b0eb2

    SHA512

    b4f86d9c8549e3f2e2cc11007d43d9244837169b2b80b615ce322e089b2d6154c1e17d76048885e6aaa639b96bcfbb1a2a58a80b58236c5bedda4d5975ab451a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e63a58788a82277f5744f9cf1f33bc59

    SHA1

    6aaebc379a24a0b0f7c0b652d4ec159bfea52dc6

    SHA256

    4d5a1f4ad8977904d3d5ea1129d8f8eefc7a3b3dfd6bdf3d4105b3f9eabdf856

    SHA512

    ef2d99b1d1e6838cc5b9169671fa955e6db824ce646d1d98e5138e700b2a01036f1ba37ee783e360425d9cdc4d0a44ca81b0b47c430e1d14bc297cc09a149eb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0a351e3e5e77b14695096b21813aae41

    SHA1

    e80c716815123b48308dc021245ddb1c1e7633b4

    SHA256

    a4ac638256e6f3c4ce260bd698c93170b5182237e2f940af3ab87cd7021e99f0

    SHA512

    05ab058a935de6fa7dd8e80bb1a5998eeaa673f0c03c166abe049317d6d47226b6fe68e79e873f8a743dc41cbc1d8bb956865552761f6e8bb373b96ba3367bc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1ec51115c740e244680b6176607b18d6

    SHA1

    81b0b865c5f31bdd97057efe5c2af34fe6ae2f24

    SHA256

    1049d1e9a5858f4997f03226c2faaa53e175d898c8272c59d5e96485d4371877

    SHA512

    4649ddbe80c1c23ac427f40583116d3b56005a2515de6682bbe74fd8ab7ff5f591a2ea2e191931fba1c82b061f6acbc6afecba3b71831224b7e9179e3df73ba2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c55b8e81da910c57ec11ab59a850a011

    SHA1

    13acd098b7c065ee780b2189492d384bf3affb04

    SHA256

    410048b2ebfd413ac0c78b4713ee2f4e29171bca842f9c3f44ea8ecc0fb5017f

    SHA512

    b89180113ac0ca5b9291c058d013763c97358c285f68a72768f4d2820e0039ce259b4c88cb70fcf62a29b184e19af24de388c43e2aae5b66c5cc59ed9d79bb16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    476d41fefd2d1cb00a2c69a6dc5a4002

    SHA1

    f6912b0a7830024f90fd7e322818c7530e423329

    SHA256

    f5cd6f0ac0e7213fc9920eecc8bcbd3d264ec644386d13d0166ea5955c3ae401

    SHA512

    87beed51d602938f9371e046a0003dacee3ae93fea262ecbc589a806f6bd72a8b5a71f732c5c5d9258d5cb9ab71da82ef2eae42c7445ea5b5a0c7da9bab59b5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e47ad5480e9c3311694784b30509ecb

    SHA1

    1d5ad5e608d50a0612afe8533325a2266f260e5d

    SHA256

    a42edcc96d47242a8162ff98a4893c0b8f79502fa9baed993f89086edf8b3b78

    SHA512

    292024cede964c5af268841b137395916c0ee9fbd011bd58d2e368426bbf28f1040c08d396a7bf1a54b6fa42ca4b76b989d2c66d76a6ac43a2e7cea593fe68bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    412b888bad1902c2a7890756981cf039

    SHA1

    7c6c51b3db0bbca2340d7cc9ad3ff5b386f05a7b

    SHA256

    08fcacb1dcc4d83fe945c1ebe9f67d4cc6556b33d9d54fbcd95fdde164684a99

    SHA512

    a1b1a351b81ffe39f1a9f686e01a37517839e617365ced9dcde3442f25692a74f1f9222a91e1ba97d3a79ce199c127f30ffc5c5f79dba9bb7d8a04ce64928063

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f97790fb991a6502ef4ef09ecc1a9fc5

    SHA1

    efb169e9e8056bbd0b7812b77a7d1db09420c92d

    SHA256

    fd9bc29ea814968a7a6195d6a71577875fea43a149e8ba1b0e3f215aab48d619

    SHA512

    1ab8998b9823a0f0b5bdb3d233b6acb6e75e4188eb7a2b59fd03b6725cd64401d2bfc00f7fe58316c6640bb9bd93118013af14da31fcb670b2b87cf8fe48861b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    46d28fb22ad08b5a7b9011773e1fc2b9

    SHA1

    f714359c9fb36e308f878ba86ae03eb404f775a0

    SHA256

    a285fa9348d1e8f8315c17cfe786ea16b0c88c0068fc06bb4d892420c590b28e

    SHA512

    52a16cd27f5136fecf401f4cc5f2e68255125a1f9554e34c1cbee3a673da3117d03cfc0f4e3c62cf35f480e6de9aefbb8e1d82030c36bf9ae545793e2f452438

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aacb71fd8c5510afd000479343206d3c

    SHA1

    fd34fae258a60d4a85d616371c1596cbb3482187

    SHA256

    180eeec0de3debc52de0fca978be87f126fddfdf52084322a3ef9b6736280088

    SHA512

    4fee48e43b1684e4da7a216f6dba8a538624c299d8c19c9c7aad518d58de6b40a9592282c4003e51aa2bb42c2c56cacf0fd9212daff87ee6790be59719bfe8a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6e672a03cfbbe535dfba85b09951d583

    SHA1

    dd77114e7f3d53c58c893335fd935b18e29a35f4

    SHA256

    fc7aa51898e30e4c4608e814d3d192bbff8e250e397fc2c8056d27240d86e46c

    SHA512

    b3bb907be27b8765ad49cdcf8020e348f6d80490499869dfbd150e4d4a6324bef9392f05ac7d139142feb003635965e4aaa360ed81e750f2537b2904d64f1129

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    16ae77d508c7bd7ba195d2ca1118777a

    SHA1

    567cea0d3dc9f43345f42ab9bb5b93e5ccdb2427

    SHA256

    95a08608e0baa941f9c85c73d0fc183d5087244cc59e0010bebb058e98d2b06b

    SHA512

    561b7e043dffbb8ab3d2da5a0969511befa27a0c0955a6e795dfeec6500390d77192f7c3d6044a47df2560b70b98f2dcf890c371b7cceaa23e6a34b3f5065fe0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f245687f66b6ecd6d8a13e64a0f76050

    SHA1

    1cc0159f69436e74ef172a28aafb6540da78c6c4

    SHA256

    bf56d27f07828d75383f2c978b00512b39792a56050be61df0ec81c469465792

    SHA512

    ad2601cac9108e90511fe9fc1c70ace669c8700e9e21dfe0e874cbbbb97a30efa15f370f28da4b37d4bb310e20f75df661b0e8c410be54f7f5c67ff622f94ac6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    23abba6997978ee05b144e8d8f5f6e80

    SHA1

    95b7f9da32c4dab170098afc26b7461822d98120

    SHA256

    adc7a215e0f75399db11dd91e40cb9df9de155eff239485f7761f12dce2d3816

    SHA512

    86eaad3b703e742046cd54c0ac361f23e1dfa188ed4141b3aaf524bc3a059c1cdf3a4cea4a1cb87404b0184102665355a4e69bce7b46ca59b00ce44773030627

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f84b2b3a849f110f496a1d827843a16a

    SHA1

    3c02b4f66e82004b89ac4479ca31cf0c1bf51363

    SHA256

    bc4e57c7bfa9f161fcd2789380eab4efabca2fbfc6ce683de21c7209deb8fb6c

    SHA512

    a0baad09ca578bea8e6ee1923b886e88c1f59fb28ec2cb537ccf7d9e5aa4d40ebe5b9c065d34602566b8716dd7694bdcff5a9ec0bf930147c129f2d76b2827fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5f0a42f5f05cb74f168341f41f1fa672

    SHA1

    4be1c04c1bacfbf8f117efec415c95be77cb457a

    SHA256

    2491a7a4fec6c145ee01fe087e709176c96a5ef058c03219eae6e9c2ad18a484

    SHA512

    c49806a46f6c22757c88f1a4b57b429e0bd96eef2dc0fc71fd3d7399fb5942a9a3482b07c3433f3d40249ae040194176451f188d4b6ebfdcc2975e556da1ce31

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab48B6.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4988.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit