Analysis

  • max time kernel
    117s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12-06-2024 13:24

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    8303b3a19888f41062a614cd95b2e2d2

  • SHA1

    a112ee5559c27b01e3114cf10050531cab3d98a6

  • SHA256

    9c088caac76cf5be69e0397d76fe9397017585cffdba327692ff1b3a6c00d68f

  • SHA512

    281b2ecc99502a050ee69e31256dec135e8cb877d1a6ba9f1c975fcfb11c062980ee6061d2368b62f91e392953ae6235dd726a9d98e6efc1302f7ed713099179

  • SSDEEP

    24576:dbTq6T06T5kJWSIRWnBIl70mfT76y6E65606F/HXpErpem:t4scj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2208
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2208 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2996

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5acc588077242f9b6a30d699ecf46cab

    SHA1

    cea10e0010f6a3635ed5ff569d1e8ae0de59f9fc

    SHA256

    ece1fcb2908919b3afb63f90b53ad572dc4f763cafff73b68c6e2b90ff700c7e

    SHA512

    fd9bf29588b60245e4dce7bd9ca8b8f68369230bef75996ebbc45933bf8b401e17363b576e07fc01bd3cdfac89d99d7e20f12e2416e3ef7df2d2dd39c2d4e917

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2fa0e56e5e1d029b47678d98e660f145

    SHA1

    14b51950058502a41dae52421f5dfcfb3a616cb1

    SHA256

    e987e6a872ed92bc989ece59703c115519f462b21f5543cff983ee16cc20f71d

    SHA512

    b436bed68fb1baabfc4fad52e18b32848b50cb5365e12645e679e825ffdab8c876a3fecd5a8eebd5bce3c6a9e3cc2697635d14df59bef1f6ff9112196b153029

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8aed87d192ae57baab18e4060d9ce420

    SHA1

    bdb3a7dbbe8b86681d35158e858a3beb1e8a9c5f

    SHA256

    e8d7d3e021809b505c655fbbf276aa184e8456e888a1996432ca9a2d5872c022

    SHA512

    90573631edad51d8ce2ae5f443824870f1693a07187d7140278980287b6fcbf8f33c55994ccd3227943061ec806054fd3c9fec729de3ad318e12be7392f35e5f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    95e01f0accd0b140f49d44309a45ca00

    SHA1

    7a3700a210f2fc7f8bdb9411ae2c41a35bf6f88a

    SHA256

    f30fee7be0bd1e82522004805c2c7cdbec2aae07de14c9390ea085d56631384e

    SHA512

    893cd11f0dd67dfb944d6da51146b76e8c5f4e6c4b3cc82170f8f234e44a7e17d8c981781051174c98c4314c65cc88970089091a2ea68772f8fe047f23504152

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5afb8e340877bb700d95b2cfb04c3a6e

    SHA1

    b91d281b0e3d41226bdef39f8a9fbc73d196131f

    SHA256

    3db06755067514d9e23d6e51b1fae333b8ff76186cfeef285632a36e6db3cbd8

    SHA512

    14e2ab823c4a400c6927c334217e5add69712b671899014ec9c15b08b2568a36effd0965a6e9145a0ce23ad8f392caa4f03d47020547637883b42cb81475eb88

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    226cec969f6e80d7ad50c2b520949415

    SHA1

    036e06d320aa4189bbc1b792c44bf8a4c5293a9d

    SHA256

    d7e9d069b1d45a83f88e023c72438d14cc3c67c6f38713950e93ef7c978f9f28

    SHA512

    e8ca7461c86902620b57f0b1bb7041c4c65514e94d81261a2e452c79eb597503fd65c12b504db598acad6825ad60dbf0ae121918d5a7288cdcb858a229464134

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    eb91c27e28bf4403acb147341eb50aef

    SHA1

    d3915ee72d5c208b695335e84729b4f6e639d39a

    SHA256

    9900a467469667f38d4d8a1bcc8f76d18f3d58c0d58cb14b2aa313947436edf3

    SHA512

    9da9b8fb8f02c22551d6f287c2280c679c8a3503e128df80f578b88fb7b7e9dfd6159ac532172443f091a1a268bd83d918e822708b134957d44a6607dd6343e3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4dea70db775d7122c03c7e283ccffd20

    SHA1

    b0d909d62df7aa3448d9f1b33bf5c0641db774c4

    SHA256

    cc9f08856bbb943c6416c4210ac0d8a0ee9861701114f48744bba2da84138e9e

    SHA512

    e536f51e181a48d1ae0e2e2cfba7730bd2e741b06f56183fbb8e4f833d6a3740ffd73be644f423a6121ac7f2e5f5a552d0ef0b11cc87b2ca980aa068280795d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5cc22788d9200ac008ef27550fa01b36

    SHA1

    d162903fc8f1eef0bb8647f33a0978cb4891a0cd

    SHA256

    8e8251911b9513882428b6cab687ba93e8f5e1cde5ceb0a79e46c9c34ab786bc

    SHA512

    140d8ed46d8632373cc4d0af1315908a0dda4d8abc7001016af3f7030738564f1747030c16857b5451941274055a98c54f7bbabee0b017dcc061b8b88a8fb2b2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8a3ba30964da6e091864324d12772e0c

    SHA1

    1659215e38b14b61e305b732772cc4d2a870d668

    SHA256

    8510c8b93be6ebbd0a4989e3637837b8e46257e8b41cc1dee22d5c5136f6ca0b

    SHA512

    28664831546ef51bdaebba1ff294253c0a488566e6c13b04a0a9b9ccea76265e0403ea6caf264dbc53a2f73bee685db8b752cfff092d2339b9e546f0548346ee

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d4679899f0ad426af80309fb76c7b613

    SHA1

    ba967d02142a5109ad072e19b236ce710f541eb0

    SHA256

    ce95896dcc2de2cda9fa116cabfd2da8887998e40bbe3dbf85879b2f4b19ab69

    SHA512

    c486dc2a226788ab2da4331cbd4a42bcef653126c9c9994278705c3a5f51858575aada4fabef7cb21bb3ef08f1afd994bab1a3b696098f0088dc0f2ec05b5ee4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1c72414cf17eb9f9a571a222c3f7a1bd

    SHA1

    f935f73b9ab8eda9ef8aa68abef29821652af8d4

    SHA256

    1868e9b51c99e17a074a2065a7c4989bd4300a48a78ba2681208b224459b36c8

    SHA512

    f8c065e93b40ac4ede1ce1be5f6ffb118e7a044d3043d6bea8f2ae785de0fa1a0bc801080926e540b7669b4ca49a884308a232c2d9bcf890ff1b178d38fcdb81

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6671e4b93c9694a80c1dd819104d2a07

    SHA1

    33a45282b6275802ac49864d7014b49b6173e77f

    SHA256

    2844e0221e5f470bd37612b8dcd3a48768f9a7d15c531e12528f6c18fce25227

    SHA512

    19c2aeb1ba0878a1495209441d142bd8cda4c73a6e55a44d28506eeb6dea821640807e12866d75ff7f01c80fde8bc29e433ebda42acfadb2de2bc9810d2aedc6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5637e4351b8a6f192c687cd17bac847e

    SHA1

    56342a82c91b4b32800763fd8880144b68f773ba

    SHA256

    50d6beac75bfa738a0f3b847fa348e382b19835bcf9c20245865171c11a22993

    SHA512

    203a5d4a1f2c585ea2ac953dfe878568890a84b0a7a20ec29e78021e559ca8cb082863fdf31f3d53bc2822b1e2943366a06f4a27dfc4ffbf31455dcf8cd65c7b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5a6cf809ceb268ebc3259b6db03f974c

    SHA1

    12dc9293a265a99a5c2057e99523aff8346ea481

    SHA256

    e60dc5aeb1f843a2f8f43e0f1625ee46f6d7e0eebf388da907f3c936bc1d3cbe

    SHA512

    cc2273471f8d4947dce9cafc96d63b6085c69a8e975eb724e1e13a539ad849e53b0f1982592fa405f70ee2cfcdbfb2f2ae57dc65aba2aa5a1b017a77f19407b8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8616d9687c2cdd7d88bd39b248731829

    SHA1

    b5a00ff0c20576193a74e1344028c025392d8d50

    SHA256

    09a5e7edfc53a3944b65904f03a46da3a6bb8422334a371deaf94e7fa70885b3

    SHA512

    b5aeaf7cbfb6de0fc528930882d1b05bf50f4e07536f5a36e21f2bfc64fe342611cf7162bf0abd8662d89ae6cd8f0c33526219d0e3a62ced966c1f91627386d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    131aec3cca4fcbb45a7a223db44e3540

    SHA1

    f06d35100a588e77147323509f840623d4050a2f

    SHA256

    6ad8936ad8979397d461d9943708cb7e24339123befe8f766a94b28c32fddad5

    SHA512

    3ed878e7e1ff72aef5f69bad1b09d2d179486aa7224d7c960647d072d10911cea7821b438f69c9c0a116e614c9df2a94ee7aee790ddf71abef580b77fd942105

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1721c4a94ac7b1dd281d3e944ef1ab4a

    SHA1

    12db43be0bdea20b8a4b55944182b86ddfd4811d

    SHA256

    fddfe622230c8fc818163183465f8dda99c54d2e2d896e1b2654141829b4b23a

    SHA512

    432df2ca2dd7e3e0dc35c575c33dd18919271834a042c6a954effdc517eff6df50f9f8d3b11e8a8b48ca9d11203e396a3ecce9a0871dd4812c56aa7e5628d47a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    91487be5939624c2e53b0c7bb02bdee8

    SHA1

    22c7adf0cc6add75ba01c04bb6525e913b769dcb

    SHA256

    4afd32de49c1de04aaefac044137d122ba554a2792a1b4c296d07070ee775d27

    SHA512

    936ba89ab8e2ab7dda4c1036c86cf8b3498706a3e95b2d5756240ff7a51fa01503a92be95f0e84a4507e0eb806a2ca330d19882eff71fe76d45529f94153293c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8b719ed27f89506e6fed11bba8e353da

    SHA1

    77d4bbc145e7b6a9de9c769c09b8c5b80e7b988e

    SHA256

    85ffee0edf89da48aecf213c688ae043fb6a121fbdc5b92b262e7b317e3d0629

    SHA512

    d5d20994f828c619b5e932cfe56ebebfd4434e66eed7558666adba2d471dc367f2d465884f5ed789083d1f35ac0bfab04c17b2f4a290f8c1fb4da62e186bc148

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5052016d43840147cb77e511a38cdb54

    SHA1

    72f01f8340d63d5b3769220bd4e2ead801a15526

    SHA256

    6950ae3d84f4046f8eaa3b0964e083fabc7c7778c10d9e43feefbd14f201a7c8

    SHA512

    8279f8243d26f3f073f14fd2e4c5b490db706146f306c2391a931c9b1fea62acfd29e99f1f5a5681fb8fca555fdacd5b52aae31ab7e5ad023d638f288372bac3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d15c9f2c28a603d258bad339fac19468

    SHA1

    060e43a7982cae0ebb6535d3af3edb8821cb58c6

    SHA256

    4cf012c4848e43ec5d9fb4d34a36df099fe356b8d7d892351334c22cac74fcc2

    SHA512

    63e68f988ec5607e73ef9b42d12e931d0badfd67fcc6d59499f6271f262c72a08c3ae3792592708747031d88d3d5c1fedce0d7881e2ff57990d44a6e5fa43158

  • C:\Users\Admin\AppData\Local\Temp\CabA6BD.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\TarA7CA.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b