Overview

overview

7

Static

static

3

Encrypwave...64.exe

windows7-x64

7

Encrypwave...64.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

encryp.exe

windows7-x64

1

encryp.exe

windows10-2004-x64

7

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2024, 23:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    312446edf757f7e92aad311f625cef2a

  • SHA1

    91102d30d5abcfa7b6ec732e3682fb9c77279ba3

  • SHA256

    c2656201ac86438d062673771e33e44d6d5e97670c3160e0de1cb0bd5fbbae9b

  • SHA512

    dce01f2448a49a0e6f08bbde6570f76a87dcc81179bb51d5e2642ad033ee81ae3996800363826a65485ab79085572bbace51409ae7102ed1a12df65018676333

  • SSDEEP

    24576:dbTy6TU675kfWScRQfJw91SmfJB6i6e6R626X8HHdE/pG6:tygpj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2184 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2612

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc9632277e54f1b5cf46ace1612b8154

    SHA1

    5d012f5e4fe79b3ae325b1ddace337176a223d06

    SHA256

    60aa4d3e2a46b258f8fc94595bd7216b42142f7ff8f3843903e6983305a29b7e

    SHA512

    f5001ef2ad72df38b365ce9862acf93d9423df572161ce62403cf7ea8ee896199e850b1777b404ec999af77c05c9e57712624504e3f519e40516ef76450f5036

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca0ff25f09ee45011b443eb981fff1f2

    SHA1

    1445d920a38d71c0da4122230da18e3552096fdf

    SHA256

    2d9e503ec9b3078a587a9d5abdf550f4067091651dd0b2dd813dd3b6ff851ee5

    SHA512

    7412d58d6d5c6b6ac4796ca947a8ec0aa86ed094a2d74c8385c944505326eca1efb39e88e222a1821da88ebf8b2a61da9b6dbcd22cb934e44b8c60f7f98ade50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f1f85c5b8ea635b1f7fd078dc8ab6459

    SHA1

    c093e2c315e023deddd4217f97391b5d4d338287

    SHA256

    449513a6aee565cf52f50b7b0390f8ab7e2795182dab1cd4adba99dc100879ed

    SHA512

    73257a616051bbcfd9a63dc3e4a6c0f4c2f8e63d3c7d1806664997102ac47bf4aa0ee47b435e7e572911bc8f74526e6167a8422fd934c1caebe53ee7bce75046

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a7ce1f8694a0e02642abfc0efe0f324

    SHA1

    ccb96d6485b7c3f021f3c1fb90de4f6ce523ebe8

    SHA256

    0ab8ad8dcdb675ca45e5b18bc681fe688741d1ad3cac4998843c2ebdbd5ca956

    SHA512

    5bf3b4a52d545b76132291d8c748bc6111bfa226334bfb42ae0ca393394bba41a684f80e0791301cafbaddd71d177215c564a2561875064284179f186c8be633

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9358261118fb503a8b2f72badd95a7e3

    SHA1

    a3c6c6f427d96a697bf4aedd81a3dfca335ef659

    SHA256

    61e9e6d949dd57ad7b932ca4e186aa9ac94cd6638ee27e0414f7c59196c212e6

    SHA512

    93c46b3d6c493c6724fd234b549fb543cdfc5f5bee12c4d1acf8329aa7c376c9aff0a79e04ec7487d82b2a7c9a4c22277ec38c6c488726af8e28b9485c21be43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b61950b8a496b09297369c7a67e110b5

    SHA1

    87e4849ea0f9b80be478b589bcb09cb27973e415

    SHA256

    3153daa83c1e4e6c250a1a9a86bb94aeb601974903bcf0766ac9df73abbe2783

    SHA512

    c712f55fb4f1d3a4275e9d984854f58bbccb5ce965ea81314dc6d6648200c6a8f984598ca04f48f1b5c99b6d3e35ceb42e09f19fba02a663b172bc2b51c06d28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba6af382f5d36a3d5f7c0a3bb4fd295f

    SHA1

    48a2c648d9e9aaa17d2eaedb26e2e9626337c1ff

    SHA256

    62efff5cdc2f2fe623a3bc41fc502ed77760cc1ce9ffeb3f3e7a16bb33f0c3c2

    SHA512

    74797aae3adefe92ddfb50db85edbc5664e2317e1c3afde6f4c5583d0868f94c9eae6affac1168d3afba5aca8f177ffeeb31101f996321c051386f704ffcb5ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e557f69a12187454f6efa6d46438ba79

    SHA1

    99832ca00b53cb8fb497ded319df74416027c694

    SHA256

    4e0853f6749b7cdf77aab80b227afc1ceb03bbc1c7c3b8eae94680ce0ca207ca

    SHA512

    97bdc145f07eebdaa16b8d061d4059c652023d236bbe17d573efd0612d760ed695d5feae39c117c99629a26dce2e964de45e1c9592fa2e1b773ebf189914ca2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6ce4250609b6d750c9be858d5ed9996b

    SHA1

    8427910f28ec6312798b033313924d746b1d7561

    SHA256

    c57ac3eba5b27fc6c9e62f788dbd0c354934bc3427bde65013620283edac0dcb

    SHA512

    61049f65153114e74be0f0248fcd227e17fb7168610f4b864e41b24f52079d898614bda2c939a6c2f96fc92d266cac24ef8a6f741f6530617dcb4d6e4d80b0eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa375b7b14289cd00472d363856aa206

    SHA1

    622de7b9fde1e6513150fc80548573420d89d8e8

    SHA256

    b658cb55de1751275314f79aaa057aed87fa05322a6379604edbb70022443838

    SHA512

    1f518eeae9fefce58ba955aab54af7432c73161b8a28a45c4bb1719707d992c87c1d8d95f13b3b255aec94aaf81064fbc6c3dc5d9207b50c549a9382de0bab98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c82b6a6d8a5930e9f929cb5f374a3a2

    SHA1

    a828c2b577335816ea4d935127c76bb158a35fee

    SHA256

    f56de20920708af23001c3b0d36ee2139cde57519732cd8e23dc663e05613c9e

    SHA512

    6bd74b2fed2ea84d7c331dc506f0e45634a675f528b92aa5a9981c09c7a7e0183be8a2601ccd8cc2d1f180dd3e8b1b809935e6a6c4660416846ca31cc8c43da6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45876bf418057ea9d09bbb6ef2d79cc0

    SHA1

    d087397cda0510a2ba717c21fbfc5e6c6442202f

    SHA256

    931e9bfe12c6b0b5ed7fc2f9ca46dad44f59ba6923d8f42217cc2f97a5ac1e88

    SHA512

    c272885b705a7a49c8f393497af8daf336f9b90d63716fba3b6a856bcadae61875286cbcb4477df1daa0d5ad4dd7a5a0dfbe63d872e6829241723c3e18ad35ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0a138e8c4434e7970c5e18b7fe31e419

    SHA1

    a08980390555c5a0548ecebe9b0759327d19add7

    SHA256

    10ffa235a3fcd2520856616a57fdbbbf106573ca17351a8651fafe883cccbf7f

    SHA512

    17131b02fd103538d5b5a29aa3d92bf0540e09da9d31d07ad93e97c4438f29d0248766d11f4af0bffc902b4fe93c904e3ad9fead82ab6559b44f9f982d78b546

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22bd59a756525f5f0af0ff8957a6c296

    SHA1

    8c62fb890c1ed22bf95bf143d9745f9e2b5eae7a

    SHA256

    e65d2719052373c7444cff90adbaf67cbc1d793c091f839b10e629cb2881d7a4

    SHA512

    5d7899da13a204e53e4ecbc1fd0ea3d5fc06579a72d7bb8b55457b0b38a86b827bc88e6dc0bd168ea0fef623aaf0322c0ff7e5826a9547c622397478fc1c81a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24cdf04679bd1b5c5e19db24a6a22722

    SHA1

    4d3509ee3af6ea9b7e59b1487fad13694bd96519

    SHA256

    f28362951934e5eec5242d09c083890f5622e8efeac3787016741c628564866f

    SHA512

    6e861c9f6d10257b531e57c113a82e66a5a83e424ce50be3a7064ff0f32e16ff7b3db00229b5e78adb08ecc70cab53dac3cdd408a81e6ba167f195e57d0c0aab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f1816759001f064562cdb2db5064e269

    SHA1

    815c1a0a40c1e35b066d31d5de5c5690b65a025c

    SHA256

    30b76eb2c9523418bd60890a11e4d50c88aec937fcb40d04e86ef61315352c7a

    SHA512

    e4be6c07648388d197b28824d5f1f0e6c19ab205a677a0559cf3c8d22f96f3de9603c4c9de1a839064fdec21d6f023145503590ba9fa0dcb49d2ee35317101a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab99107afcbab7e888d77f2e25a13b52

    SHA1

    01aa234553a0bbc5426e47a2b79dc6a102c2bf8b

    SHA256

    de272b4436db79c58c46937cf8d6226e82dee339c77373afe57c4e446e63005e

    SHA512

    1b8708893a234eee4a2faa3320ab6330cd4584acc0e10d265f258cdb94a9f7d5b10e4b9521702c22d003a1990d0fa2098b377058679c7fd05591aad6bbde7c23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4cf33f0e187e9064b6a59b337e126a24

    SHA1

    b422ea1c05a2895d71e90b947dd82ca46070ad7b

    SHA256

    7e44a5e2fc242fec56d8e72f3ab2ffd2ccbf8cc6057d9ef82b1fb40c34834df6

    SHA512

    85fb3cc9f5047b72335e4e2ce8d240936194cd6ecb99234d916562d341a25ea1ae5f44af2b6284708631760ad814a32aafe9b31f347bdfe7e326c30c20cbc238

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a80a6711fa3ab279f3b29fb7463483a5

    SHA1

    fadddb128f6a93e64dd7c5d1fc91c3c272991963

    SHA256

    fd70cd78b941351062df6cadee650bda338b297868171be35094c3885a6c1e8f

    SHA512

    f836f6ae596e8a6b948027b0fc73e6cce015d75000cdc77d29f745ea5f8e093ab0b015ea1e1b842b0e1a76f5b0ff051dad2ec2327214a0eaa0c454171663e111

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5209.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar525A.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit