Overview

overview

7

Static

static

3

Synthesia.exe

windows7-x64

7

Synthesia.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...al.ini

windows7-x64

1

$PLUGINSDI...al.ini

windows10-2004-x64

1

$PLUGINSDI...rd.bmp

windows7-x64

3

$PLUGINSDI...rd.bmp

windows10-2004-x64

7

Synthesia.exe

windows7-x64

3

Synthesia.exe

windows10-2004-x64

3

bass.dll

windows7-x64

1

bass.dll

windows10-2004-x64

1

bassmidi.dll

windows7-x64

1

bassmidi.dll

windows10-2004-x64

1

msvcp140.dll

windows7-x64

1

msvcp140.dll

windows10-2004-x64

1

readme.html

windows7-x64

1

readme.html

windows10-2004-x64

1

vccorlib140.dll

windows7-x64

1

vccorlib140.dll

windows10-2004-x64

1

vcruntime140.dll

windows7-x64

1

vcruntime140.dll

windows10-2004-x64

1

vcruntime140_1.dll

windows7-x64

1

vcruntime140_1.dll

windows10-2004-x64

1

win10-midi.dll

windows7-x64

1

win10-midi.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    25/06/2024, 14:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    readme.html

  • Size

    185KB

  • MD5

    bac0494cc76c3b5c68463120ca6fdc85

  • SHA1

    f31b43ccefe66adcf3866db98192ff29b598abf7

  • SHA256

    88ab06b939db445d16b56686fc0d1a77a08d68183dd1a3bfae1bfba9276e9eaf

  • SHA512

    85b771f6333d589df7ff69e78b5e4a136d817c7eb2ba2039b3656cc2004d5780c1cee7f581ef892129c8472a90f1e76769d8bb65fb65107061360db2930efbf2

  • SSDEEP

    3072:9r/x4iHiSPUFQXuteZDbqkTyGzvNsKqiOIb0fhGbdg/eFqLWlLHMZXfDDU3PQwMJ:9WAacZdTZTNsKqcfb1UH

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\readme.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2188
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2188 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2612

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52c720ce06f5c556f918fb433025e036

    SHA1

    ac1564b409d12ff58a1d78c1739882de7b60f2c0

    SHA256

    57525a235566c362622dac86d9b5a391950f07ae1e3ac472f8821855a44b55b0

    SHA512

    46e24ce364d37a43031f69c97732f891e0c6158e6b238f55ca8896680df500645b05b3aecdc08f292f53f3bc50a8649fd6c90db9ee63b032d65bdf07254656a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c35d59904500391c14e71edcd74d00dd

    SHA1

    0b2263b1ab8e4aae9bdd9c600baecfc966999ac7

    SHA256

    304f4567f62cfe8fd52915ec7f9e663f7fac03c0b017a76394942047cbf435ab

    SHA512

    dba98b10f84cef0bd8ce60f957e508b4e86b3adbeced6e7e9c78d2e566d246692b50e76d0c0517b4087e2475b541ed9e6353f63e6aad0e3238226239e5e6e86c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f22b8eb8393b4ecb1688ced32299540

    SHA1

    7cd9de7524858eb0d1afb61bc23a291f57a13f82

    SHA256

    e86d7fea16d4ee7ca7c11d6af6b180ca55db183ce44942de5d54413c33a86b05

    SHA512

    b2d89ac507c5ad23d3f2afd8371c7cddc64f875ecd8b67ed19d93d1416ca1ba1e1fb85340798ab13f268b3634acb8e0f7f20b1fbf98780fe7cd8dcd2ba50ac18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af7e28683cbbc807feb1b4314ca85c1c

    SHA1

    91130758b200c6b8187b9042e6a8890df477871c

    SHA256

    faf29e3285b43e9f3b3d020858152ebbd6f84a55ed5b6f52acafec2cddead719

    SHA512

    d3926c41f4f7b95c41d022e65dfe6beb3c2f2714175d7fcca5dbd85e21c222aae9adf29b1b28e4eb5f354f9eb6470431408e2701940ee6ea8121e221b31d8578

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a6b4e6714392071cb0a89cb4293c762

    SHA1

    5528350af50c8b3d5f9c7c2e3e3b3facc82e55bb

    SHA256

    ae84f061c5b840dc46b47d443f4e29aba18b3cd04ad20e819e327580aca73c3f

    SHA512

    8076907fb3458b1ed81a23f2e93d2723aa34abc35b89f9a5f596133ae8d2db636700a19c486497f12d526e8a55d42b61e0b1b93e7a726ea015cbd3131ffdb801

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cfd0f7b25f6801fcbc60d255054f0c0e

    SHA1

    0966faa5c302b8c2afd3d8e21046dd8eb87a97a6

    SHA256

    9ad64ace4b027fdb286155a8a98a35c4dcadd692f185aa0f18dbe65995614020

    SHA512

    ac7254205bef96aa24f6775b5878600ff9a7510c9d25103cf32dc6f828b61e0c8a86030b4ca38c51860da3b7f3670c5d93820bd200a1787c5df3ddd21e002909

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81b85f1a1e7667162c87cd520f2959a3

    SHA1

    d331f3ac3e5e29231edecdc73ffd30ac8ccc6e64

    SHA256

    9a307ed2eb1e5fa5e3b7ad3c31191b734b6d0cb10b08f7fc9a053c7786d7b9ae

    SHA512

    ff3c29c0015c0abe5c470353441691691a4a69e3f8c33ec577e61f6248bb0610b88168daf3b71dffa91a65bf5bfdd6640ad13c51e3027803af84d339732756b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4981fd96b0eb71ec90f23b85b026036f

    SHA1

    73c50733282fc77ae23e704a6c4ecc4453d3de7a

    SHA256

    2aa0535ed1ca3d54176d43e97af10d6757b39b8cbea9d486554751f1f24e956c

    SHA512

    01f39cf19eb7655fdbf90c96b521e49da533238d6509cc492306d0b9149caa85f7a888088fee7e100980da951bb91d7d40de80397cfd90494f2461861e2e354b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    381aa991074cc3e79f78af6ba078f626

    SHA1

    1eaaa4452b5b86f056da070473f38d965e682a80

    SHA256

    1c5baaaaf28125679ab6eecaa99a0eee322c2f0de1931b0e14fc16e8a362fd85

    SHA512

    8688698d383be42db67f8881dbb6eb2de5a9b203c9be8e67fb3d89cf81597f01709baeb9e325c9ed40aecd6ba70b221f0ab89d7a9623738338c542cead4b2772

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93f99a58150f010de1204fd902d0f6c1

    SHA1

    4bc42d4cf9b7ff1f827a4bd7dd5fe8f12fa9527d

    SHA256

    77456a47c98b2a57735154f432d619e18ef046d0640226f2efab5a836ed53017

    SHA512

    45ae82ba0ad34a7709d8b28423febde38b59fcf0f2d7a9131abb01194c2737e166a04626f7ae89a94d247c4372ebb65e04f8c9a6c750dff8d1e2f2274a86f7e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22e1d5a94582973b039263f6ccf901c5

    SHA1

    6e36dc5bba94c270e00925968ce863a532767c63

    SHA256

    dcd5ad3ef04345e008de42fa4fa1d64d7ff54c0f61d229749f148e64c3e2babf

    SHA512

    379d511542836b0fb38ac514dde019ec70c4c780f33a696b47e5fb3c8eab00f2b3b972e281712f44fdb5356777345cb0eb21559d9019fdc3ad5257970996410d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32002d49a62b37f0c344c3050c421610

    SHA1

    98567b2c613dde4b140d400993a57974a92f4236

    SHA256

    90ed1c411403d0bca0cf284b446bd53d7159fa3a15e7818df8525b2200673e2b

    SHA512

    7a84f653df750547f5a8cb862a6a1162226be95fa7b4b80832b0f4d4e51ea56791497627a3acce5839648b954f8b9fe1f5063089e0d92717d28d9ac9c94ac4c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c0e769a51b43b2b535a0b37da4f7d16

    SHA1

    93254cdd70d3ba469d769dbd2c943596db10f04c

    SHA256

    af4a26e9e821498a2e91a612998e666ed1fa5febaaabf513b00a822fa519334d

    SHA512

    af65944120802d2c460f62edc6f5c0b24668faeca7a3b7f3b1497edd6b9f84ff893546913ff9065ae0928384eaedb154476198b19533e757c5dfbfbe56414bf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47f47215aebab27386ce09a746e6e6f4

    SHA1

    15d379423423ca32349dc5c0dc5eb9903db919af

    SHA256

    f6c4d9a553ea12a0808df1995818769a489b1d1b81150e5aa3148ac9fa7c9fef

    SHA512

    d3e63ce7ccb2616a60a9558658d1ebdd83fac3725f2e5b399b3e175cedcb182cd29263a25ae355d2aa1c436a85d6a76a56baf3150f5eba37dd7caea7e0cba9c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f8ca50cc4df6ce05b16215760a6f026

    SHA1

    3f1166205c7eb48f03e4094f837262aa77ee105e

    SHA256

    969f6819902c7fe903c6a9704ebdab00c7cbce7d4468fd9bd954ff2f2434ff49

    SHA512

    35d948f2c2e4301edcd02e3b8e55dd4ca94e82d6ad36dd6f883ababf41f1e2e3c8e7b0b06fd68930c101eaf4f8ae2c892481ddb3e0e82c1039bd23f196b74310

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c3f6dcf70ec3b78c443944a21b0beab

    SHA1

    755a345dab655bbbeca1522750b8fd4d990c22a2

    SHA256

    decfd52b69f0ebd2f2109a3c40aee4ee19b981a7fce8c2987fcd61d6086928a0

    SHA512

    ad545fb89e8b102446f8ec4ebfd608d158aa71a6fdc2f0abd831cb7b859435d063c1e8c112ece747c8c19a0282e1caae4f84c1589d2addcdf44bd30ab05c8365

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eda4438400e055cf078c1092e125ba7e

    SHA1

    88e85c75a7693902821829f656c0d88b9972f095

    SHA256

    7d24245e9e9e235b201ea5516a039d5cb58f3395fcb8210d40ecc70b553ebaac

    SHA512

    46f3e2600106629cc4788f1ccdcb97909d24b0d88e6cc7684d36021431b5a74c693d5a3e59b9c96614d68f6db08197734b658a714d5dad982ef962da77da6a2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd850373259799819454b63712fad9e9

    SHA1

    6f501e56d9e5e8f63fd04d5a509e2ef6dbb7e820

    SHA256

    0d68ccbefa5a60320bc3897bb1ab8787ebc7bdc1e885ff308eeaa96c20d2c536

    SHA512

    f2f412f98c56a12756f08387b13164103964951c4f730a56e15427e1a5157e408d4e9a7de435c2899ec0beb41a2d20b0a8eff4f9248a7328b00f039a98bba712

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8ca6804ebbfe182e44d084fceb22792

    SHA1

    596b0ddbd3ecfc9c771d585a3ef8232ca410755c

    SHA256

    d6424ed9d28259308160aa5a910c70c225de67a97a4d2565bfa3b98af431bbed

    SHA512

    ad02a8f8c51e98a268e6bf07fb118bb490e8d35b506d48c9a43ad773a9c2eb86fa0fc4541e9f210f9e92275b46f65c77e4385ccd1b24fb0a29ad2327c576f7ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5697ff511495def6b5351c315d72d1fc

    SHA1

    a6f0e0a54db6b3c9b04a112e517ba7d454db00ac

    SHA256

    e192569c8d6b3aaec6f293044b896087803500a164d4f61c1747e58ea55d3631

    SHA512

    37d379acd52d6dc7056bebd517b6dcf95f0ff7ffbc092af7510565b90a206953837bd933731315c66bcc852a4d04ed323e758371e2d63d778646ec9d13769352

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9205.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar92D3.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit