Overview

overview

6

Static

static

3

SignalSetup.exe

windows7-x64

4

SignalSetup.exe

windows10-2004-x64

6

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

Signal.exe

windows10-2004-x64

6

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/...ng.dll

windows7-x64

1

resources/...ng.dll

windows10-2004-x64

1

resources/...ng.dll

windows7-x64

1

resources/...ng.dll

windows10-2004-x64

1

resources/...e3.dll

windows7-x64

1

resources/...e3.dll

windows10-2004-x64

1

resources/...nt.dll

windows7-x64

1

resources/...nt.dll

windows10-2004-x64

1

resources/...64.dll

windows7-x64

1

resources/...64.dll

windows10-2004-x64

1

resources/...on.dll

windows7-x64

1

resources/...on.dll

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

3

resources/elevate.exe

windows10-2004-x64

3

vk_swiftshader.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    18/08/2024, 03:13

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    9.0MB

  • MD5

    aaea51a605688fcb2f178fd60e4ca64c

  • SHA1

    69d4791bf3cfedb68bc4d8f766878103578171cb

  • SHA256

    96837a4a521a61bd3d34f2f660e29902d228aaec501eeb2a84403f1926c3df9d

  • SHA512

    d328bf2f9ff7372a716a09e5882b9e3c0051b0135412b3258453085db1de2c7699c8aae24edfaca7798f468802db975977c9976e19fca84fffe884bf8594c33e

  • SSDEEP

    24576:h+QQf6Ox6x5n1nZwReXe1GmfL6k6T6W6r656+eGj/dBIp+:oAZeGLp

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2544
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2544 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2052

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          920cc48ecef67f7379e80e06f3775d3d

          SHA1

          fd30ccb577828cb8801116bad446971bb1dbb53e

          SHA256

          94cb8d8c44cd519fcfc13c7a44fd102fb9496cb09460ff0c56bd2884cc27136e

          SHA512

          0bd7f380f73620615c2505025da57ad3a9ebf40123bfccc6f830fb0d7108ce2599aec1645dff11a04fbb896f2a2d3b9f546e6a4c06ef72682c47279ec0d639f5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1d7281f6351e1bbc6e04f4ce87f40fda

          SHA1

          55d7fc37b684bd8e8c9bf2ab1feaba8e6b92fbda

          SHA256

          6d538a3fb9d6cc34ed8aaf4618d3e74f219b8e56811a6e877e17846a07a138b9

          SHA512

          3332144da656db1d01f970c8126fd499199abaf4ab0be1e05e6a737e9d10f807098bf78655750249d51a2e484731563d38803dad7358b58f36d5541edbc441c7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2d38058f05abe28b50f805c57d77388e

          SHA1

          5b1f600d9b8bb305b799cec4f924138c14df16ea

          SHA256

          a72c22486c8c5e131e98f1dcf34baff64cad9a9b5ba756ed2358839eb98e5840

          SHA512

          d4e51e3be8705723cc052730bb9a63b0c4276443847d37ffa5c773640aeba6f257f1232f1bfbefd45534a94f4f72b435c746f2f0c560f868c4981c67b81562eb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f64eb64db7754a780caf87caeaff850a

          SHA1

          566b53386a272c030ca54f56fac72e744b6623e3

          SHA256

          45982e25bf6e11b9034f2601e446fcdb1135494001fb9612b58d0a1e5e2d7a5a

          SHA512

          d1592dc4930d5bb44dd863b2ba296f98cef47e246a0bf4d2c8542b3c20a86e1f7502344ce6089db891aa07361e951f9919cec21a9c8d4a1c2bd015a151eb4d44

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e6122dfddd9ec0f1c2217328eeaa0cb0

          SHA1

          556e487250da7443d5136e950c066916a276e440

          SHA256

          c12ff334dbf4ec5ded90510ad41008eb2035fa8d2f5286f345fb0a1b1d8fb73c

          SHA512

          3bf106d58680b485f014680096ebfa57efe7eb4faf6ff7cf2c7b5a2da3f4b1820a2b41e2797040b8f02efdc3d0d06cbe710c5ef29bd54c5f24412c2a347d2f5b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5163f9b01c95482eaf035622a027f198

          SHA1

          67710fe1896f0c18f4ec49a54648879c30278085

          SHA256

          5945b93f6972785a324b4f3927ee772aae6d1285ac45da49b6d4742c13cbd0e4

          SHA512

          ba94c397744f660e04e65bd7cc84b8d69b59237e079f40c28b0ccc8af5f54a442a527766393413d93657cd41335c00940476e59c39783fb58230b9918674c967

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          daff7d516fe6247a0b708cd1a529cf4e

          SHA1

          baf59d316ae1ccdcee711d2f62d68d1b93d8b19a

          SHA256

          86c821e3ecfa43fc5d08b3605bec4c9b9287be8b33ef36124ebd77fddf22325e

          SHA512

          e13b87c2aaf9a43227861e4cfbd6ceaf56a2e090a7112ce7cc3ba5f96081e3c097836d5118795ce6ab6a9bdf64406e9a1d7a0899773b83253f1d0e5bfce0e492

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6300d9835f562da38ebe17f8bbf199e5

          SHA1

          3726bceca62ba9582c4658e28506a098311498f0

          SHA256

          42e3a1598582fa2ae78ec060f71d93fadb77e1422a929aa7116adad5b2b2f228

          SHA512

          dee4ec27f0f4e19562906ae75a91e0e1b7eb7ffa7e894891598739ab7cc3f5c5bf0a919922b5c498aef0666da57d7fe97291f26521c41967b4431b91d186da69

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3e579e0344d0a8aa01a4f0a298808975

          SHA1

          42c6cbe49840b3cb537b0ade00d477d2b8ec3209

          SHA256

          bf8e5479edef0c118a957c1b0348a690ab199634e44c3c89a8dedbca7da005cf

          SHA512

          0d994958d3a78b9cbb2e0a422a0289f7e1f1ceb9cdb2c0266e7c65a16f22c0f7ec47d3e267792c63a024c860e998195d1462cfc146fb07fb05400c88ec2033f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          52ef19ad7a23753d0379604ec1e871b3

          SHA1

          eaf7837c96c261e8dae410a99171a4a9294b1220

          SHA256

          909fb1d63e3f4f5c08feb6d50c68f88b29be63412a31ff92a5b47d70b5541339

          SHA512

          634377c78865354a566688d45106e7d69d9eab2b2f1b82b5a9c6151fa29a3a5522b0ff254287ccebe9e1600acca54f3d64b3fe350d489e1aa8cdf8eae3c08dd9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          481d087db11506273024f5dbd1719670

          SHA1

          28247be679eb5d628c5af7766a4a9cb30b1d5727

          SHA256

          90254bc4e208aaa6628a6c3cbaaf9fdd8b8bac44ac3b2c521f9b4e84568a8361

          SHA512

          5e64d02b9781a4468ead1821c2dd26ebe182860464b4e77d673e0d582a8de935f1a4722e97c4e20e56271c4717a73adb2d4adffb17d255a74b4ac01960e6c0d2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f66114f966d2146f65e028cee01a5ac1

          SHA1

          1680b1c0b920ddef5b0f7574f294e4141510f081

          SHA256

          0f2ff0c61e0172c6e9f29a971dbc97c5fc39954b6d34645e9899fd81378d7c7b

          SHA512

          020389621b451a08e453a70e42436d7649ed1c1b3a667e6acadf87fe16e189f62ce104c1b4e5233f7716a5dd3c14a7f60ac505f5d15ee1b110cd2318df4bb2b4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f3fa95350d4613fe68c4dc1558fe4ea1

          SHA1

          3cd1b154a4de9531afdaa097ae64a36f5f62db32

          SHA256

          828714c3990c2020e3468a587f16ea96a4a0b3b422693418161a05c4b18720ef

          SHA512

          f30d4a07267e51d11f87c8ffdfd4ab3a27cf72ae8be7b8f6cb6cce0ba85644b297c590ab34c55652f1624498b0d1b4a44f7532d5ef1adcde096e83e2fa6417e1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a3332a22abdc937524b81a5844a8432b

          SHA1

          eb4f7a4dabe78f3abf427909beb19d48a26f3dd2

          SHA256

          6f20fac451e090c98aa1baa5ce6993cf348e4503c9fa77e868c5dfc0ed5af4f5

          SHA512

          45a662183abddbac11418cec42af5b6a50ca1a163d25f617f58442bb67835f4e8f211fb7812ee1f6f4709a0072afd4b447285c33d21df7431fb5f15c61376565

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          55ec3f5972ace8bee7e7ad083f9d4489

          SHA1

          a893e036da4c6195dfca4bdf82096785b30d0383

          SHA256

          975fb8282dd7430a59979cd0cf1f82c5ad2729abdfc89781f34a2f85a711dce3

          SHA512

          05003551460da015988b2179ab955934a01e6399ab6b2512e2250749b9b024f486322aff7f6276059ba4fcf2bc63f2df51cc0af3286d500047af7655c3b5cb1b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bbb77c0f3cbcbba5cc8d10abc4ff41ac

          SHA1

          f42f7173e04adbea345eb2ef1d8f6ecf57e2709f

          SHA256

          000b1d36c48673c98df58e3805cccd6c6fef243eac82761d3ffa8f9dc7703d3a

          SHA512

          b5bfbb131f105fad777420f111837f57c0a0bdd8577bb4a4756511567da5bd8cf6de5bf255e4226a4c06ac3314a017d696a68052080da98ae8794257d960c44c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3f3ff046e6bdabed321ee4c5f386288e

          SHA1

          1a2d6442a0e751bb02e6b6484d83eab1b3e88beb

          SHA256

          6892ef0e3ea2eeb4ae802ac1cc03b6c7904ce36d6bdadea4c023b4cc9e688036

          SHA512

          a3ab8d0f21c24970181db892aa05a8358df09117c409f1cff58f7a6092174ee03bd0f1c62873753d1056e8550836ef5cc97b9e48cf787d4ba4149425c4bbe39e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cffb5cdcbb2d4702af7bd592d123d95d

          SHA1

          d97e7097678ea8405f02a639bd8f8865fc8fe151

          SHA256

          a9ebf4f4ee6a8041993fe9e7a07e9142e73af38c4c0e75b4b9c0d59e2a21ba86

          SHA512

          3f9b369a20ed207b9072eab560333c8df29f7a53853114411e17c1a340bb22b66cf7b206d67ef07a3697d9990a4cac2e656f8c505a49add7a53bd4181f0ebe1f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          251941a465c19e3db8761ebd8c9dfbfd

          SHA1

          7dc8ac324dc03bd27316218909343cbc5bde759d

          SHA256

          fb0a33170479e1b532a1844a10fc763a2a0a9ad1831fb84dc294fa0d447e8cec

          SHA512

          052ff888828d77afe4964af02c91ee5a6f680555dd93dfea12e2ae219d8bc9919ed7e80334a6bdcb0e173f6193d71bb30c3b002efcf7dff2af0325a54dbbf34b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab121D.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar12CC.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit