Overview

overview

7

Static

static

3

DisneyClie....5.exe

windows7-x64

7

DisneyClie....5.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Adobe.exe

windows7-x64

1

Adobe.exe

windows10-2004-x64

1

DisneyClient.exe

windows7-x64

7

DisneyClient.exe

windows10-2004-x64

7

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

3

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

3

libGLESv2.dll

windows10-2004-x64

3

resources/app.js

windows7-x64

3

resources/app.js

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

3

vulkan-1.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows7-x64

3

Resubmissions

28-05-2024 10:29

240528-mjl2nafe8z 7

Analysis

  • max time kernel
    120s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-05-2024 10:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    5.1MB

  • MD5

    6b84319ee8a0a0af690273d3d2dcbaf4

  • SHA1

    857ca353e0582d100dcbc6cb6761bb4430d0cb90

  • SHA256

    fc2a256467fb4d4ff72be6c423e5961e98b418554deeec296aded0e757b9a585

  • SHA512

    26f9842bfdb429ef132cc1a930da9187071a339927eda402e8d54b5eb9e03067612cdadc3a2dad3d0977f8e6af18c05eab6ac91720221c6a0104f96638f85a8a

  • SSDEEP

    24576:yd97B+mnLiLsrDy2VrErjKCqzkU98wwg3QeXuh:0P+mLAqHBCuRoeS

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2888
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2888 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2932

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dad44e3e515864dda8fce129e2422aae

    SHA1

    fdc3efe64c386da828f1af61738a224435f8231f

    SHA256

    901b85a4a08e2f3794770505cdccef31e28fe80e8a75e6f1aad1948275e26008

    SHA512

    7fb229a10eb90d12530ef53c3fa681aaacace7c340eea177636e7fb724d8f999c1f54e9338db454424d10a2ea68b0c8260c22fe6741ba5702b85794b1e5a6921

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    73551e4b6309fb81cadfd1bce07f7fbb

    SHA1

    aa3bd20a3b42c00f4927a5865aed2aaea10862bc

    SHA256

    5b740c5b1b91ee4611d0b9262ba66a876a36a6ef622a4b8c8353e7fb8bd65994

    SHA512

    c58cfeffcbe1ea2f708d025592f8b3cafe295a07dc9e3e46fa2679149cfe69e26d42c87e74db00afa9ff1df3b6e9802e400fb3efdbb614f34850917339c886b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ffd6a372b08151f38ae64967dcf3e9af

    SHA1

    9a9bcc1df0257f3ee04864c2b2a8439df875b496

    SHA256

    0817df017eadd17adac39612b1881104b3f8e97342113f23bb4552ca2595e644

    SHA512

    d86d45a8b0684f6cc597caf7c2541c5e7b321dd7800ccc392c81ad8e44ef3f4afd125099037d90052e8a6217a984f4d0b5186e986fb601174304c2338c2222fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09ef4813a35e4889a1b060005b73cab8

    SHA1

    f2058b821e70458c0e2636687752a557d0f9f744

    SHA256

    fd06dcb0fc4193f8e2685a2c8044e2a64d93ac4a6c16d28684bbdce2f9662ba4

    SHA512

    a0ca17e4ac0a173517791a73763c39e3abc620f2be7de8b775c850e34dd747b99131f6032d95028f491cb1779215e734eeb171fda6aaf00f9ef62a96829e8e5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0643c1f08080da5b5a993c322eed2c41

    SHA1

    7e663de7546dd81732c319ebd680023ba2849c59

    SHA256

    36c05dd0394d663ce5b6f1877e65021960ef128882199bed6b6cdcd8f2a046ac

    SHA512

    e49e3936716bc247cef97c2e10085c8fdd5e5c3a6348c53c5f939307ca74aff3449989387b44e90fd3af25347f04cdaa050b237b3715ab58b5b5e74c22c8d87f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc2a0be15426a900187b34d2f7df9db4

    SHA1

    8d14195a0d439f0f6e672818b0029537e10de91d

    SHA256

    a1633a62971bbab8192938fa72855eb2b7010f671d3a1397ee79b2ffabe027ae

    SHA512

    c5c4892595b3ff820f0e3591cfb0af8d648f4f420491a62dc41b954ab61fb5c5c4d08348f616f502a6308ccbf82a9558d65ba2c4f6cc7e373c954d92db803694

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5f7424317d65268b724b9be27edd4073

    SHA1

    a352ca8d3b0b50fe629178466e11ce1bf10aa56e

    SHA256

    bbf935bf36566d8948fb9f7fed9b6f7d53e4a61c22163b52384a172eedf0db90

    SHA512

    7058b038527434c27f8a217028c6e6bec741cf9d07cb48b4a2f70e851df46a6690e473cdbd289cfa570fbb4c920d82efafe05a6021761403de4c142c13167b56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e289ff044893a08358e69ceefdcde66d

    SHA1

    27f1ec1e843f42429127a745d1ef103744f04dd4

    SHA256

    fd7fcb69a2b41f8c9a41e1d629b6af7e3ae41ad24cafdddbf545bf07db0d5649

    SHA512

    cf1ac77832caa91f08dc40fcb72e595fe0ce97240cdc86612a14deca49eabc29e803fc1f0a92e3aa02b0092b216503f6d4be2713e9fe1b0e5e42efda100125de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bef314691851ba5d69c5cf0a5fbdbcca

    SHA1

    7b17871f5a08226d5fc4152b3f5837aa81f05863

    SHA256

    b3dfcc201aead4c22256c972322889197dfe6db27f5a7b4fea539beb10d96dae

    SHA512

    25e5dec50ac3571630ca145d7e67aec7752ff52cd5c3cad33ebb9bbe2db3d761f095d72bbeb624b1b97128910c7888aa08738cb2142040f869e4341fc896b71d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cdd37450161a8c8ebb9165f2e932a0a

    SHA1

    61d9bfc746feac3055b8a6076c4c0066eec76ce4

    SHA256

    f553524a2e0da54fd370a4c50007789312f5bf66d43b90c6ea028cf3191653d9

    SHA512

    69a2249f707c142181c71b7035200f8882dc5cca50410e647c72fb296cfc6ad4252fd07257d8afeda28f40db958edd7a2263a7b104daffd3d08e2c0f16387de7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    768146b66ecbb6e213376116f490aa9f

    SHA1

    9a1de75406d6bad35c8cadbf2f8007dd43420a72

    SHA256

    0169ef8e22a3af2b117a94bce9dac2c27999bb62d8d3434b671e9f463345ea8b

    SHA512

    a0693a5057545949a694b550d8d35f070fd7851e500423584f020a8401cb92f26524faefc64adb6c3c580bae0ac7d3500f1f09cc389cdde16e7680d2e2b303d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c280193b154773506b1d9d20ea715ba9

    SHA1

    3a5d2e9c4b3890e122c047ae3c77057736b9a3ac

    SHA256

    0fac28a6bfdb6612c64e03e3c62ae6f274f381bb03c1c5d82259962a52458e2d

    SHA512

    7c2f0208fb4cc7b239350eb3ed22a42f185b3490155f96fd8d380b98373335ece39e5b2289e5ef04e2d48ddc5d8a1f7ca4c24417e3d1b184dbfaea23e343e663

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc6634ef951e38b7bde60b8c48456dbf

    SHA1

    88b625b45e7e30cd9340f09fd21b56e35b7e4699

    SHA256

    09dcf84a1d61691efd959b15dae445c2e24c43eb3192c52978d5ee5123b51ed6

    SHA512

    722fc84d59707feb90f9d644302ea49081f8927f868879bdda7bd599f2fd6f0e4e4369da1ddc8d39d565efe49b1ce93cf9dd26096e6512356e1ad9f22d8e3840

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6d28804b61b4bc56ab0a0863c65aa87c

    SHA1

    c74875d490ace8eccd6a1c5e580c24450edfc267

    SHA256

    7b3af965284d6d140509f9598baa30c593e76ed4bef7459fe46fd908749634ac

    SHA512

    f97124b7a3a0aa87ce34f92b132f690e31d34e6865d9750b472e32453aa519891578365d11a4a12f9a33cb1d56d01bb8d39c26fe93a7362045cf68b168ad7d6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba022e6b6f346f36540764c935ba5a82

    SHA1

    cd880e55e7d79c6c81714b08a478cbcd2a4f07cf

    SHA256

    b9ca0e0f9fcabb957e4f1fa931cd779f70160c8aad7b55c0949ec4b6d5148c8a

    SHA512

    f9ddd36bc2c4879e639995a619efa7800a14617873827a3c355368fa046749ff5114d84fb144ac383007d1d264fe267178e8dce02f79861cc140a945192a47cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    681e32cb8ed939ffa59ee94d540b0bba

    SHA1

    55b9e3e4e80a7bec2b8a18d39afa0689673c2c88

    SHA256

    1dc0913e391e6f7581c75472ab8317d9ba036527df12055a5147521c78781f7a

    SHA512

    f19a584cff84f79311233107dc3d2dd648f32306e38344af07d9a39cc3add67ede24bd491d07dac7887f25325235fc948dabccfb1a533299e9358fe6cb37d513

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    485960c1ec48921a1bc3135e74d9d4fc

    SHA1

    ba2b1882ec49af960dd890bb8d1ecd8a3518156a

    SHA256

    c658f25288ca6de7a62b4ba7b3086e246d08b5f94e98f0ee4f2625be2b5cbf05

    SHA512

    718cb38e33819fe73401e2d5fe7e2626c54c6ddb9ea48dcfd2f45cee0da1f7ccc212ab22117362372686dd5db188348f2cc2d6c35012f7989e398b886be1ded2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    50fd6b4e0807d8ed11bcfafdf6123b26

    SHA1

    6e2546ccce63fa6611aca7a94ccfdeb0ae9e3a1d

    SHA256

    e4327dcdc91d353363729eab4d17a8a4367607370922e9fca2842b2af8869374

    SHA512

    78ac8067fc0c286d7705f6c688dc60b6f246c582436c4a7b7df9bb7fa6c49f00c8dbf28d28196ab176fdf4c42e31036d35ebf5357c1037995de3bebc90e2f0f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e7d50008db9ff16b307a113c76f3f34

    SHA1

    029d2482640929c25218a3dedfc06c0379b41f77

    SHA256

    c8df2442d0b94ecfb4811e794addd5c1d2ff1561c77f84a0bf9e3a0b6f2421ad

    SHA512

    275e5c39de9992acc06ef7042f7723587d653107d7a9a6c65030b047f8c2abc860b472786fbc6e7de90204192297f4b324989abe13526cb5f5c94b88adb5038d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    016173a64aa753899e10c51ca42a3593

    SHA1

    6ef2e847d8753fe477f0ad82cc10f6901f8283ea

    SHA256

    9e1c35e25d4995782db71cccad146ec2613fe4a81dfca7d9616237db5a5af6d4

    SHA512

    90c8279502cc0959fdfea83f927e9aaa9c219d5f440a6c21aafe56d64b10ddb774db518c4b018124df0107e099b9cd519c6a48cb4a9227cd682c40723f1011b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCCB2.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCDD4.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit