Overview

overview

7

Static

static

3

Encrypwave...64.exe

windows7-x64

7

Encrypwave...64.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

encryp.exe

windows7-x64

1

encryp.exe

windows10-2004-x64

7

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2024, 23:37

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    312446edf757f7e92aad311f625cef2a

  • SHA1

    91102d30d5abcfa7b6ec732e3682fb9c77279ba3

  • SHA256

    c2656201ac86438d062673771e33e44d6d5e97670c3160e0de1cb0bd5fbbae9b

  • SHA512

    dce01f2448a49a0e6f08bbde6570f76a87dcc81179bb51d5e2642ad033ee81ae3996800363826a65485ab79085572bbace51409ae7102ed1a12df65018676333

  • SSDEEP

    24576:dbTy6TU675kfWScRQfJw91SmfJB6i6e6R626X8HHdE/pG6:tygpj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2184 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2612

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          dc9632277e54f1b5cf46ace1612b8154

          SHA1

          5d012f5e4fe79b3ae325b1ddace337176a223d06

          SHA256

          60aa4d3e2a46b258f8fc94595bd7216b42142f7ff8f3843903e6983305a29b7e

          SHA512

          f5001ef2ad72df38b365ce9862acf93d9423df572161ce62403cf7ea8ee896199e850b1777b404ec999af77c05c9e57712624504e3f519e40516ef76450f5036

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ca0ff25f09ee45011b443eb981fff1f2

          SHA1

          1445d920a38d71c0da4122230da18e3552096fdf

          SHA256

          2d9e503ec9b3078a587a9d5abdf550f4067091651dd0b2dd813dd3b6ff851ee5

          SHA512

          7412d58d6d5c6b6ac4796ca947a8ec0aa86ed094a2d74c8385c944505326eca1efb39e88e222a1821da88ebf8b2a61da9b6dbcd22cb934e44b8c60f7f98ade50

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f1f85c5b8ea635b1f7fd078dc8ab6459

          SHA1

          c093e2c315e023deddd4217f97391b5d4d338287

          SHA256

          449513a6aee565cf52f50b7b0390f8ab7e2795182dab1cd4adba99dc100879ed

          SHA512

          73257a616051bbcfd9a63dc3e4a6c0f4c2f8e63d3c7d1806664997102ac47bf4aa0ee47b435e7e572911bc8f74526e6167a8422fd934c1caebe53ee7bce75046

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3a7ce1f8694a0e02642abfc0efe0f324

          SHA1

          ccb96d6485b7c3f021f3c1fb90de4f6ce523ebe8

          SHA256

          0ab8ad8dcdb675ca45e5b18bc681fe688741d1ad3cac4998843c2ebdbd5ca956

          SHA512

          5bf3b4a52d545b76132291d8c748bc6111bfa226334bfb42ae0ca393394bba41a684f80e0791301cafbaddd71d177215c564a2561875064284179f186c8be633

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9358261118fb503a8b2f72badd95a7e3

          SHA1

          a3c6c6f427d96a697bf4aedd81a3dfca335ef659

          SHA256

          61e9e6d949dd57ad7b932ca4e186aa9ac94cd6638ee27e0414f7c59196c212e6

          SHA512

          93c46b3d6c493c6724fd234b549fb543cdfc5f5bee12c4d1acf8329aa7c376c9aff0a79e04ec7487d82b2a7c9a4c22277ec38c6c488726af8e28b9485c21be43

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b61950b8a496b09297369c7a67e110b5

          SHA1

          87e4849ea0f9b80be478b589bcb09cb27973e415

          SHA256

          3153daa83c1e4e6c250a1a9a86bb94aeb601974903bcf0766ac9df73abbe2783

          SHA512

          c712f55fb4f1d3a4275e9d984854f58bbccb5ce965ea81314dc6d6648200c6a8f984598ca04f48f1b5c99b6d3e35ceb42e09f19fba02a663b172bc2b51c06d28

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ba6af382f5d36a3d5f7c0a3bb4fd295f

          SHA1

          48a2c648d9e9aaa17d2eaedb26e2e9626337c1ff

          SHA256

          62efff5cdc2f2fe623a3bc41fc502ed77760cc1ce9ffeb3f3e7a16bb33f0c3c2

          SHA512

          74797aae3adefe92ddfb50db85edbc5664e2317e1c3afde6f4c5583d0868f94c9eae6affac1168d3afba5aca8f177ffeeb31101f996321c051386f704ffcb5ce

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e557f69a12187454f6efa6d46438ba79

          SHA1

          99832ca00b53cb8fb497ded319df74416027c694

          SHA256

          4e0853f6749b7cdf77aab80b227afc1ceb03bbc1c7c3b8eae94680ce0ca207ca

          SHA512

          97bdc145f07eebdaa16b8d061d4059c652023d236bbe17d573efd0612d760ed695d5feae39c117c99629a26dce2e964de45e1c9592fa2e1b773ebf189914ca2d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6ce4250609b6d750c9be858d5ed9996b

          SHA1

          8427910f28ec6312798b033313924d746b1d7561

          SHA256

          c57ac3eba5b27fc6c9e62f788dbd0c354934bc3427bde65013620283edac0dcb

          SHA512

          61049f65153114e74be0f0248fcd227e17fb7168610f4b864e41b24f52079d898614bda2c939a6c2f96fc92d266cac24ef8a6f741f6530617dcb4d6e4d80b0eb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          aa375b7b14289cd00472d363856aa206

          SHA1

          622de7b9fde1e6513150fc80548573420d89d8e8

          SHA256

          b658cb55de1751275314f79aaa057aed87fa05322a6379604edbb70022443838

          SHA512

          1f518eeae9fefce58ba955aab54af7432c73161b8a28a45c4bb1719707d992c87c1d8d95f13b3b255aec94aaf81064fbc6c3dc5d9207b50c549a9382de0bab98

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9c82b6a6d8a5930e9f929cb5f374a3a2

          SHA1

          a828c2b577335816ea4d935127c76bb158a35fee

          SHA256

          f56de20920708af23001c3b0d36ee2139cde57519732cd8e23dc663e05613c9e

          SHA512

          6bd74b2fed2ea84d7c331dc506f0e45634a675f528b92aa5a9981c09c7a7e0183be8a2601ccd8cc2d1f180dd3e8b1b809935e6a6c4660416846ca31cc8c43da6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          45876bf418057ea9d09bbb6ef2d79cc0

          SHA1

          d087397cda0510a2ba717c21fbfc5e6c6442202f

          SHA256

          931e9bfe12c6b0b5ed7fc2f9ca46dad44f59ba6923d8f42217cc2f97a5ac1e88

          SHA512

          c272885b705a7a49c8f393497af8daf336f9b90d63716fba3b6a856bcadae61875286cbcb4477df1daa0d5ad4dd7a5a0dfbe63d872e6829241723c3e18ad35ac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0a138e8c4434e7970c5e18b7fe31e419

          SHA1

          a08980390555c5a0548ecebe9b0759327d19add7

          SHA256

          10ffa235a3fcd2520856616a57fdbbbf106573ca17351a8651fafe883cccbf7f

          SHA512

          17131b02fd103538d5b5a29aa3d92bf0540e09da9d31d07ad93e97c4438f29d0248766d11f4af0bffc902b4fe93c904e3ad9fead82ab6559b44f9f982d78b546

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          22bd59a756525f5f0af0ff8957a6c296

          SHA1

          8c62fb890c1ed22bf95bf143d9745f9e2b5eae7a

          SHA256

          e65d2719052373c7444cff90adbaf67cbc1d793c091f839b10e629cb2881d7a4

          SHA512

          5d7899da13a204e53e4ecbc1fd0ea3d5fc06579a72d7bb8b55457b0b38a86b827bc88e6dc0bd168ea0fef623aaf0322c0ff7e5826a9547c622397478fc1c81a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          24cdf04679bd1b5c5e19db24a6a22722

          SHA1

          4d3509ee3af6ea9b7e59b1487fad13694bd96519

          SHA256

          f28362951934e5eec5242d09c083890f5622e8efeac3787016741c628564866f

          SHA512

          6e861c9f6d10257b531e57c113a82e66a5a83e424ce50be3a7064ff0f32e16ff7b3db00229b5e78adb08ecc70cab53dac3cdd408a81e6ba167f195e57d0c0aab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f1816759001f064562cdb2db5064e269

          SHA1

          815c1a0a40c1e35b066d31d5de5c5690b65a025c

          SHA256

          30b76eb2c9523418bd60890a11e4d50c88aec937fcb40d04e86ef61315352c7a

          SHA512

          e4be6c07648388d197b28824d5f1f0e6c19ab205a677a0559cf3c8d22f96f3de9603c4c9de1a839064fdec21d6f023145503590ba9fa0dcb49d2ee35317101a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ab99107afcbab7e888d77f2e25a13b52

          SHA1

          01aa234553a0bbc5426e47a2b79dc6a102c2bf8b

          SHA256

          de272b4436db79c58c46937cf8d6226e82dee339c77373afe57c4e446e63005e

          SHA512

          1b8708893a234eee4a2faa3320ab6330cd4584acc0e10d265f258cdb94a9f7d5b10e4b9521702c22d003a1990d0fa2098b377058679c7fd05591aad6bbde7c23

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4cf33f0e187e9064b6a59b337e126a24

          SHA1

          b422ea1c05a2895d71e90b947dd82ca46070ad7b

          SHA256

          7e44a5e2fc242fec56d8e72f3ab2ffd2ccbf8cc6057d9ef82b1fb40c34834df6

          SHA512

          85fb3cc9f5047b72335e4e2ce8d240936194cd6ecb99234d916562d341a25ea1ae5f44af2b6284708631760ad814a32aafe9b31f347bdfe7e326c30c20cbc238

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a80a6711fa3ab279f3b29fb7463483a5

          SHA1

          fadddb128f6a93e64dd7c5d1fc91c3c272991963

          SHA256

          fd70cd78b941351062df6cadee650bda338b297868171be35094c3885a6c1e8f

          SHA512

          f836f6ae596e8a6b948027b0fc73e6cce015d75000cdc77d29f745ea5f8e093ab0b015ea1e1b842b0e1a76f5b0ff051dad2ec2327214a0eaa0c454171663e111

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab5209.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar525A.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit