Overview

overview

10

Static

static

3

TidyMe.exe

windows7-x64

7

TidyMe.exe

windows10-2004-x64

10

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/app-64.7z

windows7-x64

3

$PLUGINSDIR/app-64.7z

windows10-2004-x64

3

LICENSE.electron.txt

windows7-x64

1

LICENSE.electron.txt

windows10-2004-x64

1

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

TidyMe.exe

windows7-x64

7

TidyMe.exe

windows10-2004-x64

7

chrome_100...nt.pak

windows7-x64

3

chrome_100...nt.pak

windows10-2004-x64

3

chrome_200...nt.pak

windows7-x64

3

chrome_200...nt.pak

windows10-2004-x64

3

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

icudtl.dat

windows7-x64

3

icudtl.dat

windows10-2004-x64

3

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.pak

windows7-x64

3

locales/af.pak

windows10-2004-x64

3

locales/am.pak

windows7-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    08-07-2024 11:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    6.5MB

  • MD5

    796505037e030807d9ddd01c93eb353b

  • SHA1

    79a1eac3b505e6d94a6206d4a5198d3cc11ab038

  • SHA256

    9f3f2b4d9bbd3113486839eca85de119fab766450cdca08a4574b80748885708

  • SHA512

    9435273a4541a579a427a295be47af8b81133896f50c97bab1d8ab391089f90186a7fd057b53e8b74829e4747e98428d8b4d242eb6854b1304a94a2891c2fd11

  • SSDEEP

    24576:8Pjy5WjWSpgDrAV8gmfwN6i6w6C6g6T+gH3BMbp0W:oJDN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2240
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2240 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d0ed107ea1bac109ccbc774460543d8

    SHA1

    6895088f3524fce9902d600d297df37031444bd1

    SHA256

    0bc9bc1ac672b63d2efa877e8034b35992ef2880cb5fea43e6952d3d85e5944d

    SHA512

    65265201e8a1e20a7af70207ea84aec13c85f2b4966f1f650936d01c301840d5c76bba7554a5599ba495def93e11eadec6847899ad41e6fa63fadbf127f3d80a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07d26b4b626a0d0f0c972fabccf27df1

    SHA1

    4aa23ae5a45b430ddfd90ebbc3ff8dc369fe11a6

    SHA256

    229f8a6aefd00e1debe732501b0082facf50b38aa7c03757300dd094216bc17b

    SHA512

    d5ae5ab6569d759454a7038e09386668423dda48c63d70c81f38001cce3b33a011bbaad579a067bc00e0cd3c5e0d0d77041273f20cf006b5c94a088c06d0ab7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3800d61469b8ca25d7c5012192aac904

    SHA1

    f87f03d7a01db1775a74837a77611e8c5e907ee3

    SHA256

    e6d3cdc582a13989814ea10d0c3903f70bf7eef0f5da80ebb2b7334869dd9a1e

    SHA512

    8e5db276f729d729eae6832735bae094303cc983f1fbd47e57afa3d6e6388ead6d2fb73f9f5f773422190ac4569cb5208df399f4fa734cd0e79ea183a1b92e16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    265468a23a015d742fc936290b3056ef

    SHA1

    143d32f2090bf6ae0ce71a9993c58ef48d23d787

    SHA256

    62f6da83cbb9a762158bb0f4490e1852b25a3c8d5b14f4abaa339af773fedc8d

    SHA512

    2d7e105b6fe69eaa9f66dfd4fda9a5b9a5dc0a40ef86cfde87f038f95c2e2aa397aa8363ed38932e33bac5b3db97276b9013c7aac1b364f34fe66459db241d1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc0170968fc3eb0f359e2f55f6a72b5a

    SHA1

    77f787aa5efd9de621d72458efcfc7bac2c9ae5c

    SHA256

    6eb750e04967a6826a308849108187311cf84a861735473880cb275bddaedbdf

    SHA512

    ea400129af2398de15dc0efad744681c775d28fecd0b41b1f43bb747b71043dea0f564ab30c9623506727383e349ffdf415cf58eea054c7462c5a24c94ae10ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b373df86b3fbeec38bc6e81dd31c4f11

    SHA1

    826fb870417d732012f87de27022c9731c9fe0f1

    SHA256

    036e14904563328d3b193855bee8735692709e85bebdf637b8711deafae784b2

    SHA512

    659c15b5975338df45e99265d6cb8f9358f1023806e630a0be79fa21ca1ad3eecc6132f8ef9714d05998269cd15b71ee543457d9c47019b052d4fc5a22b4a48a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1783a6fd935f85ad7ab491066fe7f21

    SHA1

    f945f540a45692de893616c50e051940378dbb75

    SHA256

    b60c4ef12232967a85037fe3058bb47656093eb49bd1e242844342c00a8c382d

    SHA512

    e16fcfb4e9828d2e9ed5e1ff2984bfc08683d418c6c9a8eb3e62692f98b10650cf2b0a8190b7e7e3aa39caf1e4e8dbecc86f012e515c1b07bb8ade2f03ee0f60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77924bf6272171b3f4d335bb08537a4f

    SHA1

    561346b10050e8382a2751ef6e2b721b8dd649b0

    SHA256

    cc7167da64cc2926845e725e3aa61b86202c41f77ca8bc2878515f1aa48a87e6

    SHA512

    e6c61c175a66e0636ddd0e136368212c9028ee7755a3dbaad2ab7845b50bb4bdc226ac51d8ac1c3bcecce675aaa34667b538e9bb572eb67e7e3bf65c42b28869

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    447b13ab43db1ab81105d49487a94629

    SHA1

    55e405ee9d718eddcbac4e0469d181dde0b05926

    SHA256

    b5e6ac50071a77c4d8fa91345e977df8cc1c9364d304cd3d8a9fadbfcd4257fd

    SHA512

    b36113e30cbffa062d11bb25b7b58f00d604667a5966b0207a9510e3724b340222841181457b190d995104586477b297664a1c4d4ace522b53e249505cb8c48e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f5c4b4a85fd33b5bc5fa27ea834361e

    SHA1

    a0251b59a198c9360006eaaa51765ef2e2666a7e

    SHA256

    abced0ad8765233f3745bd80f0ed1dc323ae2ddc3799a9230c42ab79622bdafd

    SHA512

    eea764e31f265f1de7f1a4640b4c2df72a7c90b17fb8a24f5c4b39379210c6bedd2f6c8ae3ce9001c483880ad769e8bed7139a72339df6d1ddc93be40c15e5fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad91ba1b2db862411c8946df8155389b

    SHA1

    50c856bc8079612283e80b7aec82adc714508e1f

    SHA256

    5609a8e610dc824cf205a0b5c60d749f794a8c1e51d44037a677e27991b56386

    SHA512

    dc5f77196b50485b77d8f32d0e8881eebdd4793f346f77e0678a8a789382be73a2cb287b3ffa451556a99b71a6133c9ca246f18de673a53cdf20f218ffc25b5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26a18e8b588246f2a6463b5bba0effd9

    SHA1

    58c5b1f54d1159893193ac17d4e991f808976197

    SHA256

    94fb140f025a386c2f4138827e0dd14cb4ead63cee21c6e6d2d2c99f8cb3135c

    SHA512

    03fd0e0fef8a6404f1372934a16270366a5f19201a9ad05d62189d5275e30ce9948735275b11384b25c5244e228cd5d4424ddc71bc0093214119a08eadfb5a8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec709a6a9489772da50ef57c89853443

    SHA1

    6116e6709bbc28f441e2244bdb715f9d2c61418c

    SHA256

    b14556dbf97a9fa04835b724bbbd9334f50f263264c597d43a4e3f145f4c758d

    SHA512

    064fbec086bb8c13b957b193bd7c15673b2442fb314b8677795a809fd38b888f09de39e113a45fbc62f4c5ab2961f9bddbec161d81a38965a84c04bf767a0ab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0098371517132e8d15e81d5378d93882

    SHA1

    32e7aa2a2c6b0db22eca8158cd634968e40ee1b2

    SHA256

    41bb448965537b4934fe6848629b4128e0984df62b6504b8cbc262f047cecc19

    SHA512

    3b03a19a9f5a9a4b05f9d4abd72d39ef8ec4e2d29b71d8e91e674280dbfbf746a4f60b563717508782d22fa52159767da42a292a49e5b604f7c9af33530f5273

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80d14591602c7efaaea68d438a7ad312

    SHA1

    dbc4bc33c3be76fe7278bd4f5cf0235d03abb353

    SHA256

    4e59e775bf332f1378586ed84ed44c34b005efcc46cbd83c5e650336e934cd09

    SHA512

    aea3033eac20c4d5891f488e167043021a1099accdbe8987c9abbd8b30e8052649519afa55da5f4f93a6cf5f9fcfb8fddd36f8876277c6459790f6bae5d5c4f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb71ab3669d87106fb07d2b653b65e34

    SHA1

    954596c9fe859c34c8dadaf2c3439677f77bdc22

    SHA256

    dbbc268f3c5bacf036992fb9ac4d303efcf9cde14cd6ccf33077a16dcb843bfe

    SHA512

    d74f0f0513abbdafd7231457693f07ef42cd9a79fd95339119db73fe305c0e5978c5c59e99e78b156631b9377e3ec7ce9791c9d68df445e086854c4f0a17fa46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85eaa2fe1cfc3553df21dbb4307a5ffb

    SHA1

    d4804b5546c0d3ecf073f6ea965ce6edb09f4f08

    SHA256

    3edc5890e3666d29a63246fc7c14f5ba6f00a6e8fde6619aba0cb21eb7bb93a7

    SHA512

    35b37a47f6b9ac8097feb894a9f92ef03caa831eff14d7ea3df9966e640efff71c6439a7a13fc0d3efd1356d9eadca3186ee530eef20515ad52452be01124e8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1977f1a81747da0a28c9cc7324ec923a

    SHA1

    4b95819413edb2067108e7515434aee1b229f8f4

    SHA256

    8a0171a2367a859b3772d0fbba46a37aa227f4e7d6970e12c8619f20096ccfa4

    SHA512

    22c148db819e0bac6110a209e93b5e31e221f3943591e27d60522e8d1bbe521b77d6400861626b5507fe71c30ac036a4c80f2355a123ca681f19db97da4877ae

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab283.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar303.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit