Overview

overview

10

Static

static

10

f3beb34cc0...f7.exe

windows7-x64

4

f3beb34cc0...f7.exe

windows10-2004-x64

5

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

Bearly.exe

windows7-x64

1

Bearly.exe

windows10-2004-x64

5

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/...d.html

windows7-x64

1

resources/...d.html

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-05-2024 00:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    312446edf757f7e92aad311f625cef2a

  • SHA1

    91102d30d5abcfa7b6ec732e3682fb9c77279ba3

  • SHA256

    c2656201ac86438d062673771e33e44d6d5e97670c3160e0de1cb0bd5fbbae9b

  • SHA512

    dce01f2448a49a0e6f08bbde6570f76a87dcc81179bb51d5e2642ad033ee81ae3996800363826a65485ab79085572bbace51409ae7102ed1a12df65018676333

  • SSDEEP

    24576:dbTy6TU675kfWScRQfJw91SmfJB6i6e6R626X8HHdE/pG6:tygpj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2304
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2304 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    38291622701cce212b4a486fe70e026f

    SHA1

    d503cc1c9e7c251c22bcfa4e524748ee7d94133a

    SHA256

    0584efef3e889efdd5318696a8302e562237a66f109beb6e6b84a2a3038177df

    SHA512

    d191817910d2680d4681d0e7b3067c899ce9482ef593640e0e52cff6788a8c15b778b19f7879a7ba78760a03d911c1ad6ecffc201d9d068141c551208b093fd4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e0a84eee2437865509373c05e3e21911

    SHA1

    4888dbd23a409449214227c9690107e1bf2195cd

    SHA256

    166d4d98f3160790f499dde7c5a2fe55871603e169195ad515078742872c27d3

    SHA512

    8e8b0a2a4260d1b199106ee58003600536c38f2d58c610c0ba9c80cadef8694d9837adc955c99f113579ed1a2ae495eec19032e1cfeebb766fe62c2bf3b260b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc75d426afab9e1930aacad17d8ca047

    SHA1

    ed49c8b56dfcc365b98cc270c50e8e98b9105784

    SHA256

    f020b39fee5a29519b0d3f2561231227613ed0d1c87860c3e96dd3197cc90978

    SHA512

    e3ad9a020c4b7a8070e2aa4687bd65974c3e85e1c96eb1052fd67821bfdcf10cd43d4162fd5e69a8aeab4d4831ec6b7ca0b68a87f6e04b0732d3bff700181b5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    544a9b85603a6f83e2d71dc7554d3082

    SHA1

    5e289844e1d531788f830b772767cfa05796bd99

    SHA256

    bfe89ac71b1fad76e1af2026932bf20b213fefb4526871c99249696efa073b10

    SHA512

    2fd69a640c44d5f806c1f4086e4208675dffeebae0bff33c6974f8e9614ef83c9c6eeacfc4c02c5c2d17439df265080137f98dc55bb959f03d07d09664ef8efd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5151e613fae42c0a9e201d01b6ebc5e6

    SHA1

    ad2472974e1db4cbc59ae2379120c8e5d98e80b0

    SHA256

    a3b3ee3f24c2bee836e5fc27a364222b515c9ca8bb480d97c798e0e5b65f469f

    SHA512

    465833b75f329e72b4a19836670de1d332e3a0e006304d3a4049dd1a63a180f9f94d32bb3e72763c8f7f43ac9c3acdc4ace6f5193681bc39bc8d0e1ae7276791

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa08cf77d1456ae243d4c763ded03e7a

    SHA1

    ae955491aa5ebc091aca08c76e9180015955cf67

    SHA256

    2627e1d91251af239eba22e67a44e38591b57bea0b764d78a29dfddd6baf3089

    SHA512

    717af9d661f3ec3c7e795ad49d3dc9aa5f05c2085e7abd510ee6af082bc0cd373589d912ecaadd8a6b08e90adcab2175b4fb1ccb79b9f02d3e1fab7a415a3266

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    01529bf99e50e494c8eaab7acd5d6a67

    SHA1

    2f5cafc2fad23bfecf61d01ead11a6c73a2de4c5

    SHA256

    12a7cc05fd2ca7ec84e72987c746bfd5e7f855e59414c33a46cd7734bf10411b

    SHA512

    9384154677d72074758151d8b97ad58610966230cc4e066a1069bebd891ec82617538edc2bc724592b2e18052ebe3f6395b71b52d46b0791a4c03a895a52c4ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1e777ccdcdc38fba88e6a49c686e247

    SHA1

    9802d29710abe569570fff206b1e7e2bfcb68c72

    SHA256

    61024d8e598624d6b3f640313cd03abc3307bef3c84419f502b9b000fb3558ac

    SHA512

    90530fc7da488fce385cbec652462c43f80af510dac2229f931b65c6717a029ea6019d0505a68ef22c8326f203d3f0229e82f6de520644ac180955bfff9d25e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f03f0fcbfc9195fc00eda9782dd5fbc2

    SHA1

    8f5978e4d1d05ac7f35065e6d4b60ed796413826

    SHA256

    0d8d0a8fd4f99d133969caecdb344b9f5e18abdb4c1db39db40396e95c066486

    SHA512

    7f09c420693b72d32c502e25b544d0a698545383c84284c45b970e3bd34c9d82c10a897070fff96d4b755482fc16dc392b85dccb4e65e813837669037950dd9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ecd65755d92d8dc96785c44a01c58b3d

    SHA1

    fcac8071062f1f64df6f59790f0d22e0870fc59e

    SHA256

    045ec11b3114e902bd4f013e34a975d6edb8045d5d91b4cfe263682ce2083e70

    SHA512

    4c13cc0c635ee3755d8606d458253d8774ce6dc02247625bf23b6f799c1fe09c270df53937cb2a4068b2948b0a7c7f1dd14a58e9a4eacd86cfaaf097f96dab04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    749779134a389d0c26011e30a29ee42b

    SHA1

    866c36455233a7b90f5d964fe87e00f068caf692

    SHA256

    ae861b77ca45b1abd2e28027d6c88f7821181779151072b5f0feb0fec3c7e822

    SHA512

    472435bc2e3235bbaac143ab562affd6303404c5964383ad0a4dd1d2acfc1cdef972a29d67382d355ee13bcac193b09732c6868ab86a60e242b46ae533c6ada8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a062887c8451ba3def61c6a4162908b

    SHA1

    aa4f4c21f6943f3f2a9da75ec2efa1773bd2f653

    SHA256

    7f5bd585ea90887eeb59f812886ff329477e1820cab308d778d86b692f0303ad

    SHA512

    e691b38b0b00a6a0205aa8c7be5b7eafb9e6fd2d6bac792b2464a3f8ec2805caae23e050f56ae11f1904b5d5af3e0977bf36cb14a328a2670822ce57132e3bb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a496166e966e5e5774ffde37eb8aeb7

    SHA1

    0a4aa987a9b5ff1d6e4194174ff2a3b4fd6b44f3

    SHA256

    5a96d30ecc03d916e0ea172367b44ff4bd34732ea817dafa4891fbb94899bd8c

    SHA512

    4954b2766cc16b9b5229576fcffca1d868a7b18e45d8432f38a1916f9cea719f2d1eeea2d82d052e59d42497181803e10026f4085bf4a5384999e68a7075fd5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c8f23d28e9ac3fd41c9665d0c10dc65

    SHA1

    5459d30cf5b7575d234c935217c7a77836c4d8c8

    SHA256

    c5f01cb663f17db179e619cba31e82a19eb32bc1f28ccb2bb19137aeae137475

    SHA512

    6d57ef554103f07d8fa476e47668c9123dc6ccdd16653b40c1b4fcf5ef664038f61210871c068025a6b22cb5c3ebee9d3205fbc9ad9a05a1c1aceb5b6a517aad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    307008966dcc94c72fcee727dd1b28d2

    SHA1

    4368e8b8fd40946a150d4720ccfe9629d1f1c195

    SHA256

    5911cb93ef1702446cc2ca3ea92f2d40f9e1db95dca595041abc9f99a344a853

    SHA512

    25cae825aa8b91f6db63a058deab87d0dd4bc56ccc99d97347a818bdc2b1bef306291b598d38b8ef31aad5aa2dfe97b4c7bc6e5aeaa9422f2583992496028820

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea191cbff4823fe77d278e49c159a7cf

    SHA1

    4458cea4ca97b753f2b2cd54ea346ea434f9fc5f

    SHA256

    2d86e46d656ae0035071b6b53d6f4397d3fc3c1f4a625f8e116e73e9b6fbb2df

    SHA512

    c153cefaddf7766812b96c726cd452ad260fadeacc94b87cf27050a02e62ee344a137ef46f9b6ca7f117bddc9466d12247cf36f79e7a42728919c20ddb910495

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3B8C.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3CBC.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit