Overview

overview

7

Static

static

3

wild_installer.exe

windows7-x64

7

wild_installer.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

ret.exe

windows7-x64

1

ret.exe

windows10-2004-x64

7

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

$R0/Uninstall ret.exe

windows7-x64

7

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 10:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    8.7MB

  • MD5

    bd0ced1bc275f592b03bafac4b301a93

  • SHA1

    68776b7d9139588c71fbc51fe15243c9835acb67

  • SHA256

    ad35e72893910d6f6ed20f4916457417af05b94ab5204c435c35f66a058d156b

  • SHA512

    5052ae32dae0705cc29ea170bcc5210b48e4af91d4ecec380cb4a57ce1c56bc1d834fc2d96e2a0f5f640fcac8cafe4a4fdd0542f26ca430d76aa8b9212ba77aa

  • SSDEEP

    24576:KPQQ/6MP6P5d1n+wRcXe1Lmfpm6k626D6b6+eGnkywBIpv:Cy8OeG8k

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2252
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2252 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2168

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f7c8c8715dc95e0c601d72e487bba138

    SHA1

    534ff0bf30c0cc48103e977096ec7c924d7d7f0f

    SHA256

    51a849a8cfd8d0f48692c0f53b0da545f181516425050ecca98e3452fe934d79

    SHA512

    f40d23b0bcaf45cfb586c4bf0a92fe7009d56cd80cbd02f75dacfc45102e196dbb919dcfc545c87166b51035536554e7c941fe6ed09fa49e5dd9d7905416c721

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c4180f831dbfa0296f0856e488edc700

    SHA1

    c2a28ebb3ef9ea31d7d825e42c9ad18f12f8df17

    SHA256

    8eaaf60e182302462ff7669835d9c23235e1407a50d83b97a9d5560e717b1bfe

    SHA512

    1abd86148ecbe739da11f4dd63b488260a30ac6fbdd75141454645d5e59692d31c40490a40313fc3a88797b6487178b6d75c9fc5a3dd5903839d8b63099e0a12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    914769dabc5b0ead63b5be0eac03d4c9

    SHA1

    d4e03411c65a672585e45bb81cf561d64e9bf561

    SHA256

    32a67a593cd325d29cf04d7fdc03af2e3e46a93b43f757056dd5c7587e7c2237

    SHA512

    bffe93a261d4840f911a7dfc662f04ee0774f9c051106403616b215d1fe16e2647b7e810b2b95e7e114daa5a00c53653464cdfb020709233473e50d04e90feb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2af5596b217179103fb34aabc9ae6fe2

    SHA1

    918214e13e393561282aaa57ebb4e3f8242cf8ea

    SHA256

    6be3e766c8f3751cda383c6c6093fef493bb62389e92662ab4a45d5ba6d56f06

    SHA512

    69e39f28a550bf04c03e13c94331d4dafa32b41150f61979ed46b32521008fa3ab3d33635bb52651941dd9960ef0309508b4e473b1f204969d8a37a21e94390c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff0c66010c56f852f2d8e7a32eacc9b1

    SHA1

    297244baac41f8339f0ab2a9148ab950c369c4c3

    SHA256

    1b269887cbe68c8a0b711597f64a39d672736dfb279c42485660ae6713f3b85a

    SHA512

    a8b238231acf5b226f889c5daf80161120201c44712d435d4fd5559970cd8acf238e44116a55a6505e16a419702170c63c7d31f5ddf9b3dc234abc47b4bc2f9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e16fc5d42ca3e00727d11f4f1e32874c

    SHA1

    6af8401b7cbbeecc21f7f79bd4b39fe1dd9fa755

    SHA256

    d76f8925c256d5aae7395aeb2cf18709665970359819206c630d691c841b214e

    SHA512

    79fb74c36d073cc68797a1ff3fe0b90389f20077f85edd6805c7e7ba98f016970202fa357ab0e37cb1c58ede0a8902500e490c47de2973b359fde48a381bdd65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e1e8cf31a9c79afd4fb921f62dc785b

    SHA1

    8d9ae98a49425489a9e726585bda6144797bd35d

    SHA256

    2848ee8509585622a0d19a78d174d2c8af47e72a82c3a326865446133ad8003f

    SHA512

    4edd9d51cc6ba04a62f5fe4b1f1c5de8d46a319feab42bcb10ab764a441275e1d4fbb3ca442abd4d49bda6c029f3579fde832522efdc1ce9e578d51a59e50d6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af4012de7e0c79651656baedaf6babaa

    SHA1

    7f65ae7bc7df236d40813d8e26c053cb171319cf

    SHA256

    d1ea4e2321f2ac88a884f9ed5e03ec2feb3d6dd2ff6d5489d8596637e052d551

    SHA512

    99cb955d48767ede4654aebfc3b6fe855f15656edb351e92bbb895f5a7290fdc15cd2ee4645d813db8c8740ffc085d662fef74608b3e0b6f5bb1fc9b801e6d90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34e36f739692ea3207e7650bcb601814

    SHA1

    0ef692926388e61cb960150bd2b4d038cb4f06c7

    SHA256

    77c7f2f2d0543059fba5c9e4dbc688265c3e13a47a350f3caae888fae45e7147

    SHA512

    f74a9726c328ac802391872ba717d1c1ed5755c3dd8c87e2520f0f89e26386ab72840f484ce3d9cbec4a4089b764cc901a6a096eb9254b87582f013fc6838a6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9499014a77f90fc924024bd3f18557bd

    SHA1

    0ab9aafdd08e75881e12e008c832f5521a60c1aa

    SHA256

    6e3a793a68cfcde45ee66f3a0424c46e411e5f5c09c6a544a6a6f2f64cc50bb9

    SHA512

    cc0d962575b90f01875709c300f2dddf21e2a83f829f3b7017b98b1b622c7ffd26fdb5930241eade69b098ef78ceb4e18507038e5e5fb93a85323d5f88e09b1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    884720b0c618f1a737ba221ba045854a

    SHA1

    977e0a069f1805db8b79918a40e312be0dcc438a

    SHA256

    30aa21380d76bce69c1de6a390e41a118ff6529016bf4c5f483803d17f2ddfac

    SHA512

    c987b8c9af8655bcef67fc03e059a6bcc8439d0b33a7845842da52f7e87482d78420a4c045223fc8673bd61f06364753c214a2c417521d35e609cf672f5d5b0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    632545bdf9417383d8aef759705759e1

    SHA1

    8be5f9767b08a795861deb8e650718b36eeab8a2

    SHA256

    c537e296b8beb8b7c1d2df468d6dd5607724cc7f3e8c8bd8ddf4b5cb29d1ef21

    SHA512

    850fd947c8ff85dd554713edfb789dbdd31778cd1919504aa000740ae664e0c33f90e9217e59a5cf8611e4842b4a44b0674b968d0759746cab67e6acd6f83fb1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78d7cb9b17610011a3c3d0b24068bdfa

    SHA1

    4510d930cbed170273c06c7fe9853f0de8976a01

    SHA256

    74787a3804e10e4672eccfb90d09c2f71d73d7e411f14ee401c02536b8c8be5f

    SHA512

    2514b70ec7b27016e1302b63e8b5e137686edfbaed750a4370b8515fd401d980ba9b304712a8a51672879de7557502923cb3952c15075e815abeef6b45b9cc9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    356653d4b88fb767b7a8593c5e7a43c5

    SHA1

    322772976c0e41f7eb915097c3907a348fdb55b1

    SHA256

    f01327f885e2fd7f4d01d4369a3fa4390568bc0df92a8094e1a3371bf567fb15

    SHA512

    fdc2d9e03e3b16eb55bc342696b63111267af9ed1c83b72d151125f0dc6ae586f16258b67586983779e3d68b4cdc31a964191c5609e86dba4dfd105ca1b3ad60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20f7f69d3ec08df0c1557576cf04869a

    SHA1

    61637a65341416fc960e4da11535b24b212e9380

    SHA256

    b9891fd100e553a05ea7a0b139d15a4c75e791257ce432e8f6361cced0475c6f

    SHA512

    135fef30f640d30426723dbbbda5ab07ab6df27878f1af9c38147c49f06efdae24730a8a280b88ab31c6ad731a815bae5dcb007ac7a17447ae4e2896e7cab975

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e95d91ecc89d388ce0ba12b9182d8559

    SHA1

    1d4ae280cc32c4cb898009bec298119a11fd3e52

    SHA256

    c222ec12511a7d833d86fe507eea9b24ac2ccdd5f85c16215ff332df5c78ded6

    SHA512

    02e07ba33ae3049b13490f4a3f02c0077925b99cc3edf1e4e6ca8efcf1261dd8e4ac97fbdcdc9f49abbc0c39af32d346960929250bc4e78c3456aab4e8ac4080

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c8c702cc1f85080bff656baa27934e0

    SHA1

    0a89039f991610980cd47b3239b234ed7660c2b2

    SHA256

    f304ad26345397db362e19c57b0c73b0045713d4cad5491dd75fb91f3f33fc7b

    SHA512

    c880985bd1ee125777c6545982c13a7e23f538ede7a1ee3b6e088525011d5e08d6d8d32e387cc67ee2f219e043b041eb2baebb7d8297651211d79e9e118d4464

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff0a138b32736db670d302c0fca62c1b

    SHA1

    a842161d9f0258d1bd0902090be7f8c7cc6a542f

    SHA256

    e2a3634692348857c9b0d87068d63895e0c77682db91345accf1271f08ebdac9

    SHA512

    25b1183781c38701dcf650e05d656cf637d34902368c2fb0ef7dd4674cdfe2f5a51b48929f72538a7e4cb893d6e7fc130b278c02137c49651f11e58ad8334801

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4F3C.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4FBC.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit