Analysis

  • max time kernel
    140s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 05:50

General

  • Target

    LICENSES.chromium.html

  • Size

    6.3MB

  • MD5

    997768ae7eb8c036425bed10f766e823

  • SHA1

    2ec99026b977f6603a8a7890bc05594a9a4f13a1

  • SHA256

    ab30ee348b3257ec2f19fb5733e64278438be792f1280ce0f28eae0c9cb8943c

  • SHA512

    f408b817b68861cbad62425e0bb8726f876d36a2212186a8f948d5c825c95ed819dcc41284d8ad8ac11e7ab7ff6141588fededd01c287780f84269846515f639

  • SSDEEP

    24576:nP9t5W7WSLzrj41T4mfA6c606q6C6eBcHKcaRpG:gFO

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2416
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2416 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2700

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1477e53e0cce6475259170f5a72a7878

    SHA1

    3e176a6e2c97a2b8ac9d60de3fb60a60b28705d3

    SHA256

    adda29cdde909d7f56ad3dc8319d3f5f5faac9b642b9b89f6b591370704ff42c

    SHA512

    a22f808353d4c559aeff6ad76f50504153a8a7f7b2d2c017d662318623902652cd42e6f914e67f7f769bd0165ec171cb6c8bb36aaec984b7dbf2d9476e29480b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fc55c5c3b0ccbc111138bf260784dcb5

    SHA1

    7d97a40e93b5166d5f7a576fb9740b5e47d49c77

    SHA256

    f3bd1de0782c3f92e808d9bb4e6845f6c428333f4abbd0b0dc2c00870364f145

    SHA512

    cb1845f5fc2f33778a1da8da82e29b1428e07fbb5a4f0a93bca20a467750efe076872b574818c9493397696564e62568ad02d91cfbe44efc70e8f8ce8d394570

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c105093866c97cbf1f603dcf425bdb83

    SHA1

    ab7d8c3dd59796d9bf3e94be8762a02d37f7259a

    SHA256

    bd0033f5c6dcab37f3192207c9c3e4cbe43441f0fc8f080bcabbeac8d8c6829a

    SHA512

    127be6c134432d405d63182912741e3fc9842bff97e80bd9e7762c84d31a01042622d0b3ec4d9e31c737287aa51337a6fef65bc5930edbfc99ffd19c071440f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    880f049111383a71047f2d8ebfc10dc9

    SHA1

    5388ca5b1394e80de2f88fbf5ecb831e205dbc5f

    SHA256

    efd7c159c03955f7d8801f0920c51c18b53f6d9db938ef86ca64e88301253c51

    SHA512

    7ca6edf8abeed1c6a3bee459e8e048c8bb559df3a63ab961775097c5828bb0a19599fcaf2e5fa9a9fcc072fa124e6f4fea69614de7e9f4218be489b40935eba6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    962bc08e93b4929ec2811b427d7b493f

    SHA1

    6aaad56d2e41df8b65ad7f04cd97887ee3614788

    SHA256

    16f0a08597323a13beaf62d0fe779029ba8c31078d2fec0f32c7941015df2a5b

    SHA512

    9e390438288a0820c2baaa997a54c4cdaba9b62e4c8c6d7d6c4bbd4f3e0b4ce3fe841b47ce702bb7ddb3b995f4fcd1ba26060d4a679f57c9c4e334cd79f02939

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    788c1366a1d1c0bbd4e825fec302dc0b

    SHA1

    3923a9d932ba317cd0933ae10487c7e75551fe0e

    SHA256

    f5bf3841ffbe071d5f07ac902f7481bea3c69a6f7d431caab0e484711b5521f7

    SHA512

    8477afded8cfcb889109372e0f480fea6aedc02fc96c2d273bd9eee7ecc731a788165bcd62adf4c306470b96a9708316d970a0db08b372c2ab68f43a41fbfbb2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d622f7d5f73dd7678448a98c3097e3ca

    SHA1

    ec39f1b970baf47723bfd92597a3eed6a619325c

    SHA256

    5c8f00029e69e37cfd11f82e9c6e3f61c1979a8cff787edc4f0d9da0f62eff3d

    SHA512

    3de2c581a423bd7ae923d26b57d9f7e895613df2f97eb448b507f0cd426062666902340087aff77ff27662daed0c9c922a06a2ae608189ef023fffa98e8dd310

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    32cacfd0b1e231cf8cf1e0070774e671

    SHA1

    ad2b66527b76390abd74d0dc994f70f8428d004e

    SHA256

    1a9c600ec708e11e6737d2d2dca06aa099b2fff1df3ca4f216a79c66ed43c6ec

    SHA512

    b7b5bb10694e5e0ebee1767d3b0bc1e8c0614b7b76ceb629550fdbeaf010f636fbbd3c7abb8983bbeee16654d15d5190a6adf424adca00a57186002d82178d15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f587378113acdcec586ebf9852551898

    SHA1

    fc593209dfad0c264b761331c779b245d38498b0

    SHA256

    288f6b353833c24244c333667290a15b6103a5127622bb0235815704cea2ac8a

    SHA512

    1e79423a8a40389752434ce51d755da7ad22bd553d4f2b82afe2b354fb3a6c13ea89b06eb3fa83f6f1f4875ac1718e0293c2e1eac80cf4455915ce94e6ccecb1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b2a2f78b6c646764d56a20a68861a8cc

    SHA1

    a614c98862533d7b16d6346dd7485cc6983d8e81

    SHA256

    cd3f47c346ca715d0630bdccee8d22799ab64b4c712c5bb58265a80efd3424e4

    SHA512

    568c0128723fdb8e7d22f4767299670239997d44c1d2ed28524b42e987bbe53b60f91ef271fbb3ba51619446484bc31d8da467d8cabed96e2ca0db23054d25f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cf47bced06a63b4b4ea8da329b79797e

    SHA1

    576819c71d5069305f572222fdff6a473bb2770a

    SHA256

    2371f243c410fcc0e49cee62d953f295f68f85fcce9b46a2b6b00390406dca38

    SHA512

    0ea46bb08a28af085e6ecc26aa9e31cffcb21ae4b348a02ec0e67898c4faccdf98279e822e85b84e2d5e98290d433e69a18d1755b3504d9f83938b878c91cd02

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9e4fa68285342612656441c91e0a25ba

    SHA1

    3938a9401a4195386526fe1c4318dd0cee89bfcb

    SHA256

    51ea4194db53d5fdd22b3b017f44901e7ead460967e550d43f7d5adadb2340e4

    SHA512

    7c35a714934769ade22383867af9a038e2c4002aca8c5dd95a6ee9fc9b60e318692c1294013e306a0e3030e1f16c79250e78ee9a4d4a6e89079287ded0f50f15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    db52e154f824f86bebe98fa4dd7fcb1c

    SHA1

    22b99158c6cbb62040147eb9f4b8aaa6f975be1f

    SHA256

    e328f9127732be7403d936220be4887b514f7841edc5f2a7adbdd06e37a60c9e

    SHA512

    c12bb116d94bf1e46c2bc156983fa5ed6490a02b569e763de021ac44401d3a5d56bcd9df5d86b558a25a462e33bf86b6ab7182004500485e99d0415f2742ea7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    625a5c83e5799b147e81a36589a08598

    SHA1

    070bebb751344b0cbc2bb5be829b3563f474fe58

    SHA256

    0bc7d00c771684fa5b078a7300bafaac9ecae4cae101316f4ba4f36a0b12397c

    SHA512

    e328bacbb304f91306583be33a6df2ec4a2b290818bdfc7c25e8a7cfb0099d919f2805fed01470580a8721679a236779bf9b03ec112eddc42d823bdc5520192f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a8f7ed483825ebc92805d43100beee18

    SHA1

    ede2721837e546987a854df499d733a600521346

    SHA256

    b834fb2d16b7a8c9a7ad17deae3ee8bb96822225e90f71773e1943afbf1f7970

    SHA512

    c6d08aff690d63632cf65f4d493d7d8edb242b935e73bfe4fc44a4ec5f8d3f794615c5592cf411768f3b075ec6064eba3f957c0e594d80fcb4c3b5f08349b270

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    47277d662ad3b2e618c40c3cb605db52

    SHA1

    4cebefd63bf44909caea3d50963dbc81bb9aee4e

    SHA256

    c779b2991ac4519d1c2edb6af6bdfb95f2e6c56608ea3982d695e025a544fb98

    SHA512

    5c86d149af12e0b02ea612cd4a117d8dd819e16e2244562051d661513e475f88179d93467b150deadc94cd7acd636ee808bef5b1b475cb61836b93d19e09a938

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c86c5b00bc2ad4e9fe1511fe22ee4ca0

    SHA1

    54cac281ed2c8fb08ef7b4cb27021193860f1659

    SHA256

    0136017cd3d38d7de85d5e265ead52a75de7da10539886d4bf9a119b643fb97a

    SHA512

    115100f832471148f8c1858816516ed7cd0da9418b7037bafcb383e7d9cdf8ea64a041c11e0fc2f6a6e84043e7a2199f059871ff2a64937b783f2f85e253694f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    944e3857198b51c82437a4da4d397e7a

    SHA1

    ac84e643c71b7975b4dbde2e8e992f755c95e182

    SHA256

    9f2530502e4abe130b36813d9533bdd724dceb4f8b87195358a2d88b2e346db3

    SHA512

    6e624304e6e619beb68e576ef83224dc8813bdf27489155bbf77763aafe1b24f1b4a2a4e00ce08339b40c206b60d993ca1197804464a0ced2c5eb0f886448e18

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d44cba7554f51dbf7e2ea1af936800ae

    SHA1

    80afc39a64b2ce4b980c338b09d3905103be0e4c

    SHA256

    f4fcfe07232bb5094e48536d16255d703b32bca0bab0a06b6c76b7df788a04c7

    SHA512

    7177c365dd6414316388b7c74dbf040d10e9e50937baecf665d6bc2f2eb12cf8cc7d8771504de44722fc4e6ba703e357115b6f2f635e4c2579125fe10e6b5bcd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d6c3dbf2bc90af8f1b08649df314c048

    SHA1

    782a0e9dd0ac590083194a4e59e9b2ab4da95971

    SHA256

    7a2a163f59f6d7f194f038508968992eb7bbe4b2ac35bd8e73ccd513fe52b8b1

    SHA512

    519e3dbbc57fd6d9a3988cec78b026c20b5633f698d026617ef9ea7bf9de921c9e39073639fb5c62f28fd145c2ec891f7fab996d6fc42176a83e77318e9b001b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7aae3b3e4a505d440bb58f4c049a8d5f

    SHA1

    1841b016ce7aa86f8a7d61fc84abfa5e572ee74f

    SHA256

    7b8992fb289933890a668305e5851312af7421ce2bc4f24e0f7cd9a39d135b9e

    SHA512

    073f4d7f408e2571c6e74b3b8cfb026b6cb1129330ca037c80ddd6be85148eef30ab2ea6e456804e03d1140d9148724e6f53385dd46ac5a1fbcb09aa17e3a8d2

  • C:\Users\Admin\AppData\Local\Temp\CabAE69.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\TarAF0A.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b