Overview

overview

10

Static

static

10

55309a4905...c6.exe

windows7-x64

7

55309a4905...c6.exe

windows10-2004-x64

9

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

OGFnPatcher.exe

windows10-2004-x64

9

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/...e3.dll

windows7-x64

1

resources/...e3.dll

windows10-2004-x64

1

resources/...act.js

windows7-x64

3

resources/...act.js

windows10-2004-x64

3

sqlite-aut...llback

ubuntu-18.04-amd64

1

sqlite-aut...llback

debian-9-armhf

1

sqlite-aut...llback

debian-9-mips

1

sqlite-aut...llback

debian-9-mipsel

1

sqlite-aut...ace.js

windows7-x64

3

sqlite-aut...ace.js

windows10-2004-x64

3

sqlite-aut...al.ps1

windows7-x64

3

sqlite-aut...al.ps1

windows10-2004-x64

3

sqlite-aut...re.vbs

windows7-x64

1

sqlite-aut...re.vbs

windows10-2004-x64

1

sqlite-aut...all-sh

ubuntu-18.04-amd64

1

Resubmissions

17-09-2024 05:44

240917-gffsksxepm 10

Analysis

  • max time kernel
    139s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    17-09-2024 05:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    9.0MB

  • MD5

    f017c462d59fd22271a2c5e7f38327f9

  • SHA1

    7e1bbeea6ac2599bd0f08877aa5811d32f1aceb9

  • SHA256

    40f314c778851106918aae749d75b2d913984327602a1bfb7ef0cc6443ff2a37

  • SHA512

    72177281486f6ec26ccc743b43481c31470c7dd53f17b0a67ac087dded190c2e3dde5570260150c2e9650186a515740af7f81e31965c95bb762340f9ac100c07

  • SSDEEP

    24576:G8QQf6Ox6j1newR6Xe1Vmf86k6T6W6r656+eGj7dOp+:fG6eGd

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2640
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2640 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0bbc04c617e5e391828bf3189d969528

    SHA1

    3932f0dd9ade5149dc7be05ed90c4b7fe4713921

    SHA256

    57700e00e04a7a50ca75d161e8e20a05c4c945db7440a8fcbba0a217617cdae5

    SHA512

    02e851a0876a69a3e45e07686dfdc884f474d0ac4b3a1e7bd152d04246f6afca8e0e7e0b6e2ac1a176ec5a7d3faa6179dedf5c0b629bccdd4f4e390d0947c819

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28f93d6b71f4eaded364c5f86c19fd7d

    SHA1

    5a81dff680b69e1d451fc2f115fc74384b487b6f

    SHA256

    4581213ad1daca9d3522654b3a17e58853804f90a6fc32e4c7e8e99abe813135

    SHA512

    bf94228e2dcd0959c2b4eeb9123a5294056f660b0a7f97504bf37b72cb7f2c94c4d004d00c45eb6b5ba622ea60dbc9a5ebccf6cb80b2ba7b470e047891747f46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2292c52b7a8e06b8bf2bbb0e4e56b95

    SHA1

    f241b454b095c3fee29f7f21830e4a1e02b5ebd8

    SHA256

    dfd956a5c2f2e9a4226b4a2b55263317ddfaee5f627d35d8e035d5557834a860

    SHA512

    011790c4ace68ae9d2e30e0cbcd055431c34c31399ac87815cf067bbd470bd7ff36a1730ad8cc73ebea7ab87bb68b1a5548b4fba6b395d9501509f3ffbfe4cd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d93fbfe7e8f9c492ef205eae66a3f4d

    SHA1

    aac4df83aba47a03ce01461c563fa7e48b1946fb

    SHA256

    8e3ba1f83eadad0ef27e23dd845bb9238c6a36500f0684c150e9127b4e12d028

    SHA512

    a25e4dac24e96fbf43c59d63e536dcedffea45333ae36bb59dfed8c37fd2e23657bb801b814487ad67efd19795eb6ae5ae98bac3372bf6aa3b136fce2b427484

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6bcc6a69228c0ee49c80e84cd3da3b2

    SHA1

    c214cf6c9f415b0ec64be84e68a7c620a644dcb3

    SHA256

    37812dbaf32cd8a37365a457caf0e439a91c63bcd6d68fcaf7f17d5b17a856d6

    SHA512

    b45a8b790dcb0fab282b39593d1ac02773dbd94e8b1ce741bacc09dca779121dd043d726bfca9bd36f907499ec92022cb4e66e7994f21ac91392ef3e4e1f3da8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6bf48b7d129ea67ded26290e8874ca2

    SHA1

    e1ac37f294478479a80d5a5cad98534090174481

    SHA256

    f356d837c99447199c2e42ada6aeb83d017d1afe1c3198c2d5d6a71ab535d2c9

    SHA512

    9191d5e7f8e16667e21922fefb2273cbc868807beea6ba6d843df6070ac494a8da040d4d7eac5cbb2124162006bb22c0b2ba7c66fffa740ed468e93eea152273

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ddd1fd9717bd9634c2cb558d83a9907

    SHA1

    5cd4ad16f51ed36068170e09f1cb2fb1c9289187

    SHA256

    8939c198a6afb816c42553ab4aa646fd625f32f2a3983f00a8bd1dbb79cccbc5

    SHA512

    4bedb80fc9a5170bfc081179deb4b8b83704d7e917dbf6f1b2ebffe79fb130e1c387dc070d3d4afb0f77f5e8d9d3dbadf26cff90db46daf1ca6e166e6a3c9513

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7bba70cc8a98a5e73e32e37f1b57da48

    SHA1

    1086432cd06d07aa1aa20b49f802adba528590b7

    SHA256

    4164463298d40d8159e0ec00d9ba8922b41f8f049ba376ef386f513e92806d90

    SHA512

    7766fa33153d8438dcd9531626a45f0e408d39d086109d6d27f05a6a44c6de8a3654ebb82c3fa4519a8aedbea115f16e9b95b8ef3a0ec32b127d7abc7559a3ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a1415cea68cfd6d9beec96c182989d75

    SHA1

    d1077b07c8c0b763922d595a81c4fb91f7f60074

    SHA256

    7057be970ef86eb3b5d058291bd38134054ef6019a93f6f4236cd41febb93f66

    SHA512

    7d3c1b7c5e2857bb41532c0a09cd6144ab4fa16a89628ab15e2b516746e99660b2065b68f8fe892ceaad10339ac6618ff13e449459d63b3e2d979c7cf47db407

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c11a02953015e80525da4d368f4dadb

    SHA1

    afec2c00be2a55104f6e13307f55602879c62a65

    SHA256

    d685f8db89e77b0825a7ab0fbd5fc6594e8cf29362dc113fd6f09f0a662aaf82

    SHA512

    13629c9a1d62c72da4b6863237cf7bb7d7f97d62c12fbadc2f980999cceb333b18a92d3877f1a90b49174193a8b28b9ccfa45cce894e6a38df438c13273c85f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c4486a4fd7392c507c4aaa82ca4f5d9

    SHA1

    456e468c2ddd761bc590138ea5d439d360ee1ed3

    SHA256

    09878ac3d2670b9f8e1fe7432327073d70939ac296a8e8bd223b96388de37ca2

    SHA512

    63635a6f5f11989e336c95c0fda45358f452496e6183fb72628d1a3e9a09398371694b34751c372b151a97684b19541e5329cfd6a8176eeeb6e4534c68310b2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86bc395599dde2a8a7f0016ad9bd9815

    SHA1

    40c3bb415937a1522a2670d5ed1f0a9162609c15

    SHA256

    416baaeb2c7c6adb483995149073df139aa86873d2dace226ff4b12240ee7e43

    SHA512

    179341dd673778f7bdb3baf063dc1098988403fbd95a6e238f17ea455a5a346ace0aad4cc79eb009c4cab002fe6d30a68d78458f7897d1ac26ac54e7fb4226e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    40ef9507fb3d067bf8cfe31c2023f44b

    SHA1

    6207cb2bf591dbe1e590107f690f81a669cec1f9

    SHA256

    04d90ee4c5c70f3f8c18a887e1093f94495d9b04ed38d3db90b4ef2291b7d05c

    SHA512

    102915ae30db1cdb8cd4228ce89d01a7c04d41d80d037ba995396486891db55699154a9ffaa2d005ee7d4f9627c73c39f58763ce5e42d30cc4de72f09316c5f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82fabf1614bc8048ca5bb31bbb091bee

    SHA1

    646f26ec01d9f8442ff1983196103bcb078ec050

    SHA256

    f6603c2bec67c23482d978c6b9716283ea92237ba53c06f725c91590bc3347e6

    SHA512

    017be583c3981a086a1c7e41cbdb9af2f0adda69e1278abf5e365a947e6aa5aa0831d2f46b56c7a62ee90c8e57cb3a83539c21336451dceeec73d3038f134015

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f9d9dc1216828074d65b4fcc47c80a6

    SHA1

    b8baaec738be49e6befa1082df25750a4b863fe0

    SHA256

    a9dee6adc064bf26d49389d8827687378050a59cbc2454bc82280759fe781546

    SHA512

    e5179af462ca7808e6c44caccf9e4b16c31a41cf071290180922f8fac2a8407f40ba71cf24c7810f0ed9b4e04c70e9a9db7dc2185ef57ea8b5044eb1ea924dd6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    081e9b16f98698d95b48a61e29c1b8ab

    SHA1

    c28dc6fd613769683c86dbc1cd1cdbd4c8dd2e86

    SHA256

    3584b2e5cc0f910fba58c18b8bfe034183ba46fea2e273fd8bb02a3b358ea392

    SHA512

    ef8c7d3230931f21d5f166d419afc508eaeca081732ec0f1de7022a3e8b84e25235e0ef12be011dec81b2b9f95095e099766725142989b97871913c2354ddfd4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d4a820eea3627f1a85d1a8a5a62e5ec

    SHA1

    ed761bf7f2d45f5d815ae208e7e1a35986a405a5

    SHA256

    714803fd00cd843b5cb34040202f90335128fb6329ca656207e1716b675a09c9

    SHA512

    c4c916eccc1b552829811f56f78310cc5b3d09d4b87d5f4b1888a4f9ca69dd07acafbadcc8eec97c8e96ee95d4688ac84a77afe3d791c30dcd57bed80a622019

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9512.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar95EF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit