Overview

overview

10

Static

static

3

a5238e60cb...66.exe

windows7-x64

7

a5238e60cb...66.exe

windows10-2004-x64

10

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

genp.exe

windows7-x64

7

genp.exe

windows10-2004-x64

10

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/app.js

windows7-x64

3

resources/app.js

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

swiftshade...GL.dll

windows10-2004-x64

1

swiftshade...v2.dll

windows7-x64

1

swiftshade...v2.dll

windows10-2004-x64

1

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    14-07-2024 09:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    4.5MB

  • MD5

    d4a79b5d46f0931b9eb7125fd40baff0

  • SHA1

    3a38fb263dde2251b9fe157b5fddec7acb07c53e

  • SHA256

    03f1d245e6a2facca9edbdaad108169e0765dd9101875bc2d123797994b9e80f

  • SHA512

    17cf94805f11d499ff12d8e42cb262ceecbeb265f56338e0837d291f6a7ed7f8135a025dbe99fdb2e2bb299f2267bed9365976ea51269aafd4c3220cffef9339

  • SSDEEP

    24576:thgBBmnLiLArZ62BrcrnKHq/kUkBAwi9QxruE:rYBmLAehN6KK+xV

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2664
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2664 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2948

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    884c234dd911acc740bf51f82455d1c3

    SHA1

    523d5a74ad4e4fe4274b4c7e055f96d1d1f09a75

    SHA256

    fc2f9193562dc15579e9bcd3ffead28440b5c573a335aaf8d72f763af059447e

    SHA512

    705c2d56036702b8005fd073e7326da71506e8c3c87424534cc6aad1315cb8783ee49951e38b62d3f9f7892c650439bdba38c85ac3a2909e0cfbb7388e4ce6d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    54c6d25db8a8f6a003bb10ea71daa2fa

    SHA1

    8b2218dafc9659d55e34d091035af916f9793841

    SHA256

    66242ad336034f55f8e59c71c8ccbbac932301a453248047faaf17c1477778da

    SHA512

    0f0890e8ebe779faf8399bea7dbf16ae2407e8935da4be57d95c460a11ff4050167a38b8f473383e92cc3de169d30b29ea0a42a2703148389ed7cb9c4ad98628

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8c44e12b65f19dbde117a5c2a835e578

    SHA1

    7f20de6bb5aa283207d17cbf9e656f87dbd4badf

    SHA256

    92447e8655431a9591f861fd30b9f50c545848b4e5531a62329edbf66707b9b4

    SHA512

    f1203f58323b5663cf20300c6a72432bd81c3b505cadb36bf0bd6361e8be38556abc1f77203b02c58075f5324ad1b4396720246e671f4d5d44869b350938e499

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d6787f6054dec6a172339d882bbba24a

    SHA1

    c0bcf8f5398ee5e37d655ed7c4bf2950f1862560

    SHA256

    9b285976ba38749cc0ed372561403d78c65485bb6aef24fdccdcd21fdd1cb3f1

    SHA512

    b7783023984ec9c697af29512778258e83d935d09a8ac0b03655bc9d3748e4128b28c898305a683df3f80a248db6ba55ca9a6cc548d533bab6fad34057407032

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    63827b7e4b6639ac158b1f99b925ef79

    SHA1

    43d21e49901966f233d024bb00192194856a4a07

    SHA256

    fc3ca84a252a7bd36c4ba95b2639ddb43c13e0e2fb431427d97b54ca44fb1b27

    SHA512

    373ebb25a87bff305779c15ec8cbb1ba3186c1ea5a3e8fa19c1c88b310bf838ad85364497bc16773205636d35d458c30162dfdb3bdfadbc52cf36062395d213e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9a8c85da0fbed883a95b6d7d9ad563f7

    SHA1

    c034a6080c848e797e531fdb33f45347513cd90a

    SHA256

    4fd014e5403803e6714c1a6d65ebcc7d8aa4924e1f77cbf7341e3c692a3eefe1

    SHA512

    8537741f19bbefb6bb91014b11def085f37e6d8cc7bcc78f1ada6487feaf815943a4ed24c0bdfb9ee6b19e5a244dcc95383771e7222ed98d3ecc41ae55df8722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    fc83d9b6b6166f8901331d080766d269

    SHA1

    f548db337b7e538398c4e4d995102bc9f8f49617

    SHA256

    08faca298e236a22e5c19db9456e0d7f368c360aad2cc83ea39930ef8d105010

    SHA512

    f0b06c5e73163eb68fb3344b29066e22c2ebf71c723fa5c52a51736ed880c30c20a90b59dc4d52482a10fdec65d7e73492f0c585dbba33b034fae2e9eb9ecee0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d9bcad35af1500ce4247cec6f6a9a847

    SHA1

    63f74fdd3342af7ddfe78a67ed3c79bc1f7e7ed4

    SHA256

    8b559903704163462f5f4c873b87ca940886ebb2b7740866861a3da4160dc8d4

    SHA512

    9fdc8dd60607bb59340a2eeaa5e708ba29de66cda8d8c3eb283b83f30ca8e6ea7fb082e501cd84d23bb060e223584ec5e5cfc600589fd73e27873a29696c414c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    821b8c580a3144ccc6599764105fe2ed

    SHA1

    db3cadac110a7199961d65726ab4509dac5dd18e

    SHA256

    351e3348f9f49e781d53e2186b84b5dba81c6d47306a2fa466993106ef07398c

    SHA512

    94ab6bd480b16484bf0b5b054d7e2ec6a62a65543067876aadffb64fd39af6ce8126c30417a4e2956661477dbf81d5105e1f7d2eb68345e3c5293bad106a87a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ea02fee00b5e5df8b564ebb740e53ab8

    SHA1

    e38827af1a39652e068016c3199f0ede9cfe93cf

    SHA256

    071f31b3882dcbf08862cd7370c4fa5d5ad60ba681e849403b9a2d165390095e

    SHA512

    052076a7952a6132934bf9af18486a09465e058de75e468a596cd758f2fee51b25c9aaf1df2de48ee64f6865f38d32e0d439f2a5166f5752ac72d9b6d045976d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b5247344c6b2345d380231a8f3031432

    SHA1

    fa975a497aec4da7b744d9a7bbb0be0c392a16b2

    SHA256

    5439f70becfd4def5e6772d7d5c8143fcc7c4894a492653d47ddba83b761d098

    SHA512

    777707331ae1f91c4814e172e22e3bafea169771ec66d2c17b03a7053127b24dac465b556d43008130849e769953970881c3b05a6ae45903adeb5e1af557c9f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    80f3007cbdb99ceca19935c4b0c9e232

    SHA1

    26b4696f6595035a71f1ca37e9e683ab32171d83

    SHA256

    c3232c93ad105b8911ad460dfb36794d75afbbb57c18325da7680bb1906ce68c

    SHA512

    7396a0591e6ab076d56adc03a8506ca2c97d3129771472f197e09680ab3aa6a8f6f33f295119b11991b20d1d8b1d8fb38ac90d8106ee3ead38750c8aac62cdd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a08d83facff2a31c6a07b81d3de5275a

    SHA1

    dd18a7f482bccfedfadb3f138bd189641901b13f

    SHA256

    cad12845d59f17e359b7ed564e579aa795a6121c4f96a145b342c321b611b2da

    SHA512

    2ddd78a2225b622944edcae3cb5df17655e6e96c0895da9144a004b8e465bd017cb9ca1a133bf8e02a5e8ab7d6c8a673c15bc924661e95e9f673ec82960a5122

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f39a853840e906af060bc594bbf89645

    SHA1

    642aee194f0b202713decd3f7277a61e42c2b225

    SHA256

    d19f5e8155b4ad1ba5b422dc46381052d448d23011ae5bf050b1a0402df4d98c

    SHA512

    2a87b1f659d22484d13f0085bbf44e17027d110d8c24e674b268057ba9d5278227e126c86f157fec2f53458fc7a52fe7ae1b268deb9903c9c79fedc63641fe29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    acee2bcc1f2aae5a5bff556705f033fc

    SHA1

    b9dfe2b773a883c7da1eca60123faf2ea1592f2f

    SHA256

    bed233d26a3f89e7ed8a60d06138fe913c8254c179dd6673a695d09c1514a6a5

    SHA512

    dd612a93a054de098a9d88faf0659433a3d8a056ea682d1434ffdcdda466e06c6c2afd847f4bb444c3a0bb7e5a42075911cc118af141146eb82ce9fef9e0658d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a455335e8c5db06e19298597e8a67a10

    SHA1

    91057194cb9e3eb62884ab5b9f6dc1071fa2e8ea

    SHA256

    1e968e4a47385bd4e54eca78c9fbaebc7b4f27d77794f84a0f5bced08cbe65d0

    SHA512

    71f28f00995b7703cc8faa3551ac7395438957fcd5cd817b1033970d8507a26a536bbd3c0f60b793dc3dde565e4357ff9b174c921c7f0a6758dd44efbf694d66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    dd1f48b6958f38e32eee938cdb822a6d

    SHA1

    2e70684390bbe058edb916a108efe90c3417d5d0

    SHA256

    946acf562da8d903fd6d6c3e6375ddf5c2500c6d8dfc2b7509267d26e86d8adc

    SHA512

    ce6e3373ffd7518ed01875b9a9bbaa16be9302510ce4a99c693b96f9d761725987b55c91e4afcd3037210fbc757ff9fc6cb85411d9db8683c7d0f7a54eda34b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    301a96dbfccd6ef7f52b24eecb2e54f2

    SHA1

    cebc7b05c41d800ae13a03d20ecf0aecc74bcca1

    SHA256

    79449b1e8fb963429eadd03dd80d5819508d9c65aefc901dd8e6776c15461b91

    SHA512

    ba6052b3819637f3252ee3d889f2dc3e0a560bce38cdc431ff01ac62308546e290dabf31a45e95bbc7bec91429a3757dab5706e16c9607e76c526ede8de72772

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    14d70f8c7c9bfc82d1f89b9249a9eb78

    SHA1

    ffe0251d1380de5c3c4b3107858e45bd89bd5c60

    SHA256

    799753ff5203763483f13a523d83b0b2b3b303790615122fb4b38df1d13a2c35

    SHA512

    a2f7437662242269e77cc8342e7eb38e06b3356ccb6aead4f2d1e563afb97080f7d2391016a9869bc235f5219b76dba88d59d6577dfd589cbef2bc9446fff238

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1150.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1201.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit