Overview

overview

10

Static

static

3

a5238e60cb...66.exe

windows7-x64

7

a5238e60cb...66.exe

windows10-2004-x64

10

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

genp.exe

windows7-x64

7

genp.exe

windows10-2004-x64

10

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/app.js

windows7-x64

3

resources/app.js

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    13-07-2024 14:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    4.5MB

  • MD5

    d4a79b5d46f0931b9eb7125fd40baff0

  • SHA1

    3a38fb263dde2251b9fe157b5fddec7acb07c53e

  • SHA256

    03f1d245e6a2facca9edbdaad108169e0765dd9101875bc2d123797994b9e80f

  • SHA512

    17cf94805f11d499ff12d8e42cb262ceecbeb265f56338e0837d291f6a7ed7f8135a025dbe99fdb2e2bb299f2267bed9365976ea51269aafd4c3220cffef9339

  • SSDEEP

    24576:thgBBmnLiLArZ62BrcrnKHq/kUkBAwi9QxruE:rYBmLAehN6KK+xV

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2152
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2152 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:764

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94c326b7f4942e38433199fa1bf8e882

    SHA1

    84e5867d6a9ebf3bd019bbbe6a40208aa54e0f3e

    SHA256

    ac0f1fa1607b039408204a7405ceb2088719b5ea41d17c77e720c58b798ce321

    SHA512

    bcc768a13ba5648a949b022bed91176cdf2c9b3007103f2a0b286da7f1181afb5cddb6775fbc3ae5eb55d6f2eada09b961ece6b26778e9773e78d92a5356cd16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7e3fb7510f4ffac9a96db4730c8b49b

    SHA1

    7278e4def1f1fff896ebf1ead56ea7ca78da06a6

    SHA256

    adcac23c2447dc14d5cbf1c24b3147d45b0ff0d9b315d6d5c44139c65b919ccf

    SHA512

    9563d90beb87eefee83623bfab8e5659f0d9fdab65b928747e6e6a9ad86987fd5d53f2ae71e50868432d0f14805cfeaf0b57e4383692a4a5cc81c34bcee6645b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b85bd7e15499e13ee41657d9efb3d70

    SHA1

    ae27bf1c73e2a76e4eedd11cd8b0923e9d57c5c0

    SHA256

    83ccc29ec717597705de47fee177a1da5563b5ceccd24944e77fbc46f801615a

    SHA512

    2eb0286e5542ca49e4be786ddf711d2626045a17f723bb53b4c77fdf353f2248ac30453b095d12282d40b71d3ad08764258bf2fd47bc6f9b86181e70d5bae8d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d762e1ee6e2fb616ddcf8ecb7029654d

    SHA1

    31f6561541caf17dbdce4227a3ddde0823e77175

    SHA256

    e630ae15d3104c3b4399c43d40626739727aeb51c2fb5b83c3db813f0a5846f6

    SHA512

    826489852885b055f1c4c9fd92ca802c799de68ddc9045b00d4670468c99f42b9ff240a13d6272b5eebde2dcfe375232f6daa8925ac30f2e2dc0f7d6455becb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4abde5d19e8173631c6267993328889

    SHA1

    c7c4f0826569ee6ed7377debaa5ecb31f5a37f11

    SHA256

    1f410c49d7063fe25720634d016c6b7963d6d1edaf663328ae8ea4ebdc098ead

    SHA512

    7b35f2169b24a559daf1dfb7b0d64d0649d454df64ec319ff2d5a4f51409313bf12ac3114fe694be489f476c3d24c4389b20cde724981b5c2a3d91ca1965e8c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba4dfc622edd064f3eec6511ac2fd8ca

    SHA1

    ef4b87a08d7b53f902eeeddc66c7eb915243a633

    SHA256

    3934dad85c410814c5a2922ae4967bc31483c666e51292f39aa373e086e7a5d7

    SHA512

    ba03613a5beb7e0c22b6a191069dbf291d0b34c76e8b90c9d0cbdd187f0cac24db35c0b2d050932d306ab6bf94abe2a09960b3b4cdf3cf3bc71d9c241c454f4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a0d860fa5ab106078bfb855cf9b29060

    SHA1

    98f36dd9e4735e8ba19331fb7072fa039bdfcf3a

    SHA256

    14a96812851a6d06d3a8721340ec37d3960fbfdd36f2893a46b69a3766590b89

    SHA512

    0eeb64cbaa84ea8650346a5419f61fef8c979e88233cdf4ec70ebfde7b1185512509d02958b36e193c0dca2f9a31fa54a086c45392c2fe1854931edcf282c188

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bec5a5c879397eb012817a5558d5d9b

    SHA1

    d33406f8f1ce533be9d7d4ec5413775316001e37

    SHA256

    47144c9d773b85d492594fa56140602efac4acaaeb2379726f68a31faa49da4e

    SHA512

    2c07b132976bdc8b324d05a1da7503841dbe9143301de7734ff51853dd64b97f7b004032621c91a732d80b2925b95b6af3c43a8718bf3af0b7c261e4c800fc48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59bae365f299dae399a0295ea539367a

    SHA1

    88a658a87bcd32b0b4829462e2429cc5490dd8c9

    SHA256

    6060938fe715392dc104009e64a7155e900560ca52d7aff7215c55c27a633621

    SHA512

    d1bd01338c5c1f7dcbfc2dfada93d776a04933bc4bb904257a48dbc8ea521409660bbc566fe3a925b126398d81a4dac47acd7254d686ba8ab3938b12f50a815a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4216817546601bedb127751e7d90c7b

    SHA1

    fe5eebfb5cad57ddba47a69bd79df0ef930a664c

    SHA256

    1c034112b5ec56e816f85bb7fe6d708661a94d76438167e7c45df56bde32423b

    SHA512

    c40f5712a20a774565d6cb0c68f36beb008ec15162b238ac048fc5a63974e90b960e491f7114229938488d4e2a866f6731ec58750e4f505752d7ab1f717d0177

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f5a99380175edd363498cdc89e2e44f

    SHA1

    181abb860be1321092bd723c2d4893a9694b0669

    SHA256

    92297aa025c599ecf4f2178abe21e6e63a47d16bb062db295c871494079b2bd8

    SHA512

    5dfd90648c61b786568b641f5a6f0e4dbaa0ab8734e1cdc898b2c7a59b272fb36b2f5f7ae9af2c8dbb4e9103f3d032564ac4a941ac6f078dfdd40803c9feb5cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4fc10bb438827f4f7bb94c239334e094

    SHA1

    5f123baa24ae44c1d24fe9e4b0d8d4e9b799cdcf

    SHA256

    e7b69d261a5304ecaa00981aaf5d4c4a184e3fe5ff5b7f77556fda3c3e924b87

    SHA512

    6ed31d89dc0b2e1a675f2dfcef79197fdd8b3f2bbb985769f425ceee6963e43c7e62c108191298173fdc48a175c15bf6973bc2e36c190bfbc78e033daaedfdd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b87fc9c7c69789b27959747cf9d48de4

    SHA1

    71f8a3afc2b4a81a82e51ee0611771c19910b332

    SHA256

    304cc537700748945320d42ceacb869f9d75a5371b9ba86f141b6d3887b721d1

    SHA512

    bf78c085c0ff0d9d9f34e583eabc172886482cec4d1e8c4b236db10c60df215b7f311dec2a2f6d9add566d7ade2354d307f7ef5112eb63247ef38f549d65e2bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77cc28b6dab1e5775b3ba0063fd73b3f

    SHA1

    127fb38ba8e68003e13bc74c247b04d2ddc52661

    SHA256

    6ca4f096c428a73e6fd24f0c6c1d0be088157b8a555dffd642ef6297bf77d7d4

    SHA512

    b2dd440840f77097e24dde72a5fbfb894f34f4162f6e6e875dea23fc182a764a7a96d510124c526898be9b4ec5bb5aece7ebf3c38fb41c9dc1d8dd3ca81a02e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb6196d2d53d9bfc2d8992a0f728e297

    SHA1

    212a7462fe6db1177f54300878fa4e3aa86fb547

    SHA256

    db395d901fd3625e01f7419dac7dd57249424c97f0850c4386bf455e4005b3e6

    SHA512

    32cdbc8e39565083d3f676b880def87cca88cbbe9449a9c3df00d57defb603e0f4beb7d8859b9df4eb8627d4d1c1df01cccfde9f6284c8aac8118e646006796c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    08c89a320f61b98fdd428be5b1a04062

    SHA1

    07a7aa264545f68577ce0353f1d1bc3c9a8fa741

    SHA256

    2a329eea0e1fb37456c38d452d63281deb972b298732ee5de3d57812a44136cf

    SHA512

    1016a581a47c281d5493e66f89baeda4daa65ecde453d6f6aa0ee85e6835bea6354c7ace7b44ca592366ac647edfd7f0a8cda6e8137621d22328afe9d84d3106

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3489f9fc4fdb817d6a3bb5ce6d015ef8

    SHA1

    5dee2669cbba2083424d775f31dc040e2421f737

    SHA256

    c0d0089852a523746189d262e31f72fb43674ddef4dbcad6b2772a3780d4fabc

    SHA512

    1f6c88aa560c846674bf69b8ae80e234e9ed2028617ed1d97569ee85ab21279832267b5ad3a22de8ba64824b13549c8f12dee34af481e02a9cd38c66c2a3f9c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84a108495dba1681ecf5644a2e4673d2

    SHA1

    fc5affd59b879402ab1be05118bad48db703722d

    SHA256

    3f72d42d8654765af44839a8b15c3032d9cb1260135491007d883217f441d693

    SHA512

    536908347ddbd9ce2f5926bb5d9f9702ab9692871fcff8dba8ebe60cf51b52096989096cd429524bff627949b9c2dc3ffbfe74d23829dae9cee282ebb1a7cae9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEA80.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEBDB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit