Overview

overview

8

Static

static

3

MeetOne.exe

windows7-x64

7

MeetOne.exe

windows10-2004-x64

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

MeetOne.exe

windows10-2004-x64

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

$R0/Uninst...ne.exe

windows7-x64

7

$R0/Uninst...ne.exe

windows10-2004-x64

7

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

Analysis

  • max time kernel
    1559s
  • max time network
    1563s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 14:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    9.8MB

  • MD5

    b620990ddbd932d6475152e5a833860e

  • SHA1

    70de0b3d7ffa77900f685c1788b32997a61ec386

  • SHA256

    921452a09f92f10da4cfef0521acd6ee6c689c630661ed35189e793de2c99fc5

  • SHA512

    ba84b5e6281dd64d5da41d0db35942b6c0b1ee6b47d24dedd5006be40b2d22d90f58dc653e17893347900fb1bfcd37b0f2fff5b532175ccacc3b63d98fe42ac7

  • SSDEEP

    24576:K+QQM6Ms6x5d1n+wRhXe1BmfEl6k6T6W6b6f6V6GeGj/3BIpx:LUcBeGdY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1752
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1752 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3032

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    5ffa66236468ef94790fd22d8c04c26b

    SHA1

    d4e04c22c43d76e000ba1af10ea90d8ea77a69b6

    SHA256

    c5b46facee661ddbf4fc48858fcbe5230b4352655ae65f9b873e3a6732ba4cfa

    SHA512

    3995a674c32f529e18c9be6d8ba2515d3604a0fad95b7bc67bdebe27ff9b7e597094f1b069ff040e78c8c4c8ea79c6f7cc939e5bf9435596a1167f066e341185

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78768ad1107b917f00227fb306cdccfc

    SHA1

    e9f73d685851f9281026709fe34eea92985ffafe

    SHA256

    de58c24aad30c618171ca9c4a8c2f666239d99e7c41aa95edee8b39ba0a2eef7

    SHA512

    13f6434acf9aea17bdb0c528e3591f57e2ef3ef8c9e081dd8ad0dab3f2e1648200ac79aeb68cd9b155a976efbe8d8b2b1b325945eee389037c0b9b0aa207a710

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6b5aa7a443bbb732ab4ea3d96b4e96cb

    SHA1

    3f52b05e8ff7c4c9e469f3ba02e660dad52ef28e

    SHA256

    1c6542bffd53964856ed3e5920a16e512350055dde2cdd54fc85e3ecfdfd5d8e

    SHA512

    6824d1fe9356c19ed46212eaa0d4932ea4b0597897b001c121ad09f347e8d386f01ee4780d9a187f7899f80a14ca0fb0075888c9033c89ded2660e2b8acec21f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a7b2f4bf574d4685f7471233dfcf3703

    SHA1

    ee39d52ba55a22990abe7efbda182048548909fd

    SHA256

    6bfa3db860af409230bf0a3dcdb98b7e4abb02510a6e95f79c1da8e2d51efc27

    SHA512

    8367f1a576240c35824229bc7387e61cbe35770055dccaa78bee763d51ee61d413a6882cd319104711ffe0e07a34de53611e9f00af93163697c101f90a6a2de6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2c4ba608ef4ce45b006992f0af8fc72

    SHA1

    11b0f226e29ab1f09543c8888e11ce2a3c01021f

    SHA256

    ecb78eb4d8e670fb35d02ca155c2d4f15097752b6b042fbedf1f965eaa1c648d

    SHA512

    eac9e3988539cda595fba61874a84d9657475171d05310d2800df057a097f5e4b7b75330a113f9d6f1f0f36e28a0386473648ab278c0034b5d86e03015886082

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    479f3203bb0a3ac6830394548cd59d45

    SHA1

    bb9d051678b00268562b34e13abdee375be3cd46

    SHA256

    c0d09331aba0b6f10c5faf355776069b676876291da6c74d5798442db0714000

    SHA512

    9eae8a0eb77c0613e44aa2e945d2946f582b5a3962f4baf1979a09268c767524584b776980c7dd96c1001f6622c7d1fc58f7ede5c7292dd7760ffae0a2f9a224

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c25a48afb46f5a703f866e7ebc7e8a70

    SHA1

    e929cfaa93f20faaffa6da73f15056eb6795ee51

    SHA256

    00faad20d59e80d37e48d91d9368ed1cad94689d1db1a54297c6cec1c1727dbb

    SHA512

    99e3fe28263cd6e837c0f21c0644bd105fa4ae5812fa5a9bdcf523e89b79768984a27496a2585b6d8243168e84ca0ceda7d15f5e1b193e08f01cf6817e041b5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d35e252d0f2cd20f7467ee3a328d881

    SHA1

    88103f59465ecc70b6b4476688e1967c9209de5c

    SHA256

    a4c44f27e163e80cc0d5d5ae9c5ee0164e8008b7f43cb005a9cafe00cf7981af

    SHA512

    2f2d8f42dd73788215e173832f46777a355253dade3d4223512b0b36650ed5192d738bab6d29eac15f971983fd7160910b78542e30c04103916a02c5419511dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a4f54a65c636c10b75729d8dff707950

    SHA1

    1314b031ec086ee8491099193e60d24fae463ed8

    SHA256

    ef5af17409b6542caad8d0332666f936dc5ea1c53e88202f5285dfc3804be0ad

    SHA512

    bcd0a530279c924990c7629a11d889d2254fbd10851c135d7d2afa2fbe4c370848395c02d32ca28e75e1077432e5e539dc72e2207f0deb2238cf506de0d72ce8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    158e50eaf175e0c6cd9394d31e4bc7be

    SHA1

    928605d1aabcbdac6b213f7f054bf23ae5d060f2

    SHA256

    cd222608c1e608bee7c79d335be1524da2f7535f8dcc15f0ae39ac4f793deff8

    SHA512

    7b299e4260d5705719640c7c8635a58b6c7dd2daebe699e06af807167d7185775beeb3b2228a7aeab724c89a967b210fbe629fad5fc12e90f320cd13a8feae4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9053a14b84eb442092d7f671a2349795

    SHA1

    a82bf7cea4ca2f04900d15199c9f0a3993e98890

    SHA256

    14c453d0e0a6e0448fe2118f9580dd679b149e938389e1ef6764ea4b7df224ce

    SHA512

    49cf7d96a3fbee3e0fbd71286ecb637af8f74e9bcb159b7adeb2ac3188e625a69eebc874eef8a6d75bca7f375e5140bd7e0f65e40f7dfcc00352dd0909392cff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1d852f57d2565b88232c50c809e9de7

    SHA1

    c5e8878ab91b3069cc7e8be7f6a0eacc5f12bd51

    SHA256

    feeb7fdaaf57bc14258791b657bba1f4cfc08a57efd4db4b25d2f78de12f49af

    SHA512

    e69cdd53bab98b9526bbb40aa6b4b6f11c8a3f48e8ace325b8aa67f9e105a9c29577fe860eb7227ea6582d875dab8a98d11ecbf971b7b9d29b7294da037912a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fcbf89dffd5c4952d4f105148deda942

    SHA1

    df6c444fc7c859f4733b52f5ea2ca1c410633264

    SHA256

    059fb8b386bbef8ab187c7c72f00f66264e29cc219d2d6679c8d45de24e2fdb5

    SHA512

    b19306956f83b82da21f05351ef7c2094c2979a55314c5f39e38d833d54fdcc53884ea80c049618da4969c74f59204000a7c904d6686621b048770de59bfe3f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f3e32461ff70974f39d6aa293668385e

    SHA1

    9353a36402c018628f111f52a9cbc1e98a77de31

    SHA256

    a80af04ac3ed07aa34479c55a5a734cfca5d8a3d2998b9d3b9779fdc1dfdc53e

    SHA512

    309b8284cfd30c86d2b9e3b49e001351fec8938a8fdf0de64c35c397057d46f292994d8b1e9bfe7f9c665c0780daa52b24aca06be7acc30b27381a5a3560ff9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b85a6cc7f84e55223492d8f44ff5726

    SHA1

    b19cf92487eda1f82c8596a0c0407661fb09021f

    SHA256

    4198e9099da69be9e3e587f8e0a0a28d77b8efc9183f2ba146efbf56d58da900

    SHA512

    97b3ef4dbbf9c1af6b1d86908096b02de1ea62477d02d8723a73a1fcd9d4bb900d40789ee72aa257a1fae27f03a3a8eed6e29e46e07986af820143decf23bc7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    25696e28be348e67bb5bfc2ab0478d65

    SHA1

    defb60939d4c3a52515163a51bca616c0ff387f0

    SHA256

    208eaf2512c15006ca69940cce8d9f16d89fae8c91aef244aa5ea65e72f63bb1

    SHA512

    483ebe5b65223d91b77d12ce6f9bc0cec3b5eae01907af99f0056bef27e7462005b3154737a9270126b1ef36548996cf33858f4860d5582e0142728526a07f1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab42AC.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4408.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit