Overview

overview

3

Static

static

3

DirectML.dll

windows7-x64

1

DirectML.dll

windows10-2004-x64

1

License.dll

windows7-x64

1

License.dll

windows10-2004-x64

1

Spoofer.exe

windows7-x64

3

Spoofer.exe

windows10-2004-x64

3

d3dcompiler_47.dll

windows10-2004-x64

1

libG1LESv2.dll

windows7-x64

1

libG1LESv2.dll

windows10-2004-x64

1

locales/de.ps1

windows7-x64

3

locales/de.ps1

windows10-2004-x64

3

onnxruntime.dll

windows7-x64

1

onnxruntime.dll

windows10-2004-x64

1

resources/...m.html

windows7-x64

3

resources/...m.html

windows10-2004-x64

3

resources/...ng.dll

windows7-x64

1

resources/...ng.dll

windows10-2004-x64

1

resources/...ng.dll

windows7-x64

1

resources/...ng.dll

windows10-2004-x64

1

resources/...ng.dll

windows7-x64

1

resources/...ng.dll

windows10-2004-x64

1

resources/...47.dll

windows10-2004-x64

1

resources/ffmpeg.dll

windows7-x64

1

resources/ffmpeg.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    193s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 18:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    resources/LICENSES.chromium.html

  • Size

    6.3MB

  • MD5

    34999967f735b07e9cbcf6c397cea4db

  • SHA1

    8001fcdd6ce0c6e5a3d91fd45e4c9726fa67f3e4

  • SHA256

    c5a05048505c00af46c75fb5ca22057f09dce001eada3a756c3839d59011758f

  • SHA512

    b6c2f722b6551231801e453bba8f9593d9f1a82edb305869ee07ef77f286968eb6ad5db1abbe750e88c8af973c362ee161aa5c591ea04ff39e4f4b34e6fa4baf

  • SSDEEP

    24576:/PV05W5WS9YzHIlGMmfu626s6W6a6q5AHWeQFpD:F9n

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 7 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\resources\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2252
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2252 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1692

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    240da997db637c7e1e48b9c6bc8eef03

    SHA1

    8be9c59a31cfd9b962bf243d30c5cc4c65cb1c97

    SHA256

    83af7326f71fe2a51c09dcf79e65a140761d7602313faf8ecd62519f4ef79ebe

    SHA512

    06f99f7cde3ca873cfac76777f7f5309d0b181956106acf86bdea111737af3846ccb7fc109939abae2a6386b5bfe5406606dc5c6b59743defc27339b00e3c80c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0e7d4327dcee4aacfe4db3dcb338265

    SHA1

    488852531a11b5a0313aac5984672e51bf28e0ec

    SHA256

    361d2636f0612eb8e5f7549c01c2133d93cd78da15f40e8df12ce661c8562dc1

    SHA512

    41e09425d0c51afadf432a881156b15e447ae4c0217469af2df1af53565ef867d2a4830337696751b3b8932ba8a6e992a3f33653ec90229ffcb24afd82380417

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b337786addcdfd70e7fd4258b3812ed

    SHA1

    dad7e7587274429c48db2058c064be5f17f8a744

    SHA256

    99584c121fb42d80e83704b99cbd7f4fbbb1e8659f6c4eb15fe32d925874b0e1

    SHA512

    d6e12ec7a873499f34240e79f611641b40882ff465a82244eb34b6862646f93e116246c5e5a9ba6660c9b0f9a2f20bc69656a7ec70a0123c7c72fff1a78e6660

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6cd97e7ef0c52b4c0643d9c0deaaed09

    SHA1

    4f6f4b7f6f459559c68fd6e05e35a55b05f39ea9

    SHA256

    70558a40515f432cae4ecc41a488dd1d5d26ff25d7d6a6c23ad29ebe14a56c21

    SHA512

    4610e52877eb94af0d63f370c62a4df394765494d1eec18359fd8daa441ec44886c232a528a8bd0646c0761a901a18e9a31b831e03ac4a2747110586130def05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eebe11239cdbcea2523d03a374210d64

    SHA1

    aac10f1f3233734ff4e477234ac9b1ef0bc61ac1

    SHA256

    24c87c63e367062a249a52f920f671f8ea758586ee4b8488f4efa05c03d40d3a

    SHA512

    01e61f4799d300d06668cba357ce7445a7b5be37505d1079af396e82fdf63566eed4f6b2388f152a855aab61b775adf9426a6ac2a4f9515e34f4619d7a62d222

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    506f9079da24d9ceb980eb39fc1747f6

    SHA1

    7c9796ec2daf0e1fb484a5520a2f99528c84ecfe

    SHA256

    3340caae62b3191edb2b24bd2609c92770be26cf12854ff5e6abd208570a1e09

    SHA512

    d2c220d5f874eb5d0694144969d0203db4a8a0622ef24f5a5cce1571b33f0e758c6e971d3001535f929f69e03a4f4c85443bc89b5717853f02949d2391362bc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e342a0d086ea544586e16fa7a6a82d84

    SHA1

    2f31f9552c2ee0107b2f4d3eb89742724ad20611

    SHA256

    1fe2910bc557d9e080265a7727efe9d8248abee570aaa687601217af146d8549

    SHA512

    a332001dd759befdf6ebc6623ae1f38abaa9772f241626839782458c44443a212de9266c669f52d9929a1bd342d77e83f39f7cf4bd318a895bad1e6b3ab3faed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    204bf7657d023d0c6dd95a3d8a6cfb8c

    SHA1

    87f4e53e6c4ef3a5b776a89affa79e905db4c4ad

    SHA256

    e97866b6608edaaa563a7c5b1cf33bb159b7cd7e06c7738b2530277e1690d03a

    SHA512

    7450558d3eb65bf4a429775cf21a3d3cb6350b3a1e8e3f1336f38cefe2ff56e5d8d597ac3f5d0c828cdb89c53f458d470326c253c738ba96225732544bed6a57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0204a8f9473c74db580c0ed3d4f4c37

    SHA1

    13e5e84c3dddc0fde42ef48884a3b36c9a7970fa

    SHA256

    05b30a31228fef38c5699980ce3d2ffd978f92877599436be453ad87faecb645

    SHA512

    9c2a8c12e97856feb94b95cc871012690fc96c2e915f1d531456c8418320be3fd62d7feca61722f0b043e41128804ee36a78b0bad9772bc83c1abda498976bab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    246876e7cb83bcdb559749aecfde3540

    SHA1

    8255b9368138abcff11adadf76626125158a8fba

    SHA256

    f1eb5e2fa7e4f794b22e79ea522932fef923e669205b3b7e289fadb1b1041aa4

    SHA512

    600c8e9bae89997403e841b233d68845b90cca03891b3e97d857ecd275884a2b60b84038443d76f374f497531c87787b34859e968b635c4090053054a6c59184

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    804354418f3680290822148513c51390

    SHA1

    c549cc4ce0edfd628e209fc30e94dadcb02b954c

    SHA256

    b1512d9701d2f43d5b1d57a837687793dab25a9a65fc20022ebb78e36a154e2a

    SHA512

    45c9d893f54cacb8bc1cc0f8b829d4d762dced56901914edd0306b4bb28b049647afd19d23e643efcad887ac1468b685a90daa0e48e30584f52d912abaa79838

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f555d38abb1b0730b3f379987dbcc4a

    SHA1

    e55f8fef90a98778d65df40985b17e3d1af98425

    SHA256

    1887ce6885fa97c714f5992c8725fccf1d4161552028224232538d29baff7bcd

    SHA512

    a011c7204cff373f18917c06e2af510dfa217ea3d6397bfcc48909a063c88fcb36f21cf66d7617bde0c8739f51af199c1984785ad5c4c14f2dc06e3936f522d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ca1fe49526a91c8b52a0f6a97bfe7b6

    SHA1

    381339a8fe38a1bad53750dc0b19d75e983db690

    SHA256

    c787cd847bc9c11a5f4771913a7f42be906f5007d606486eb7a70f059c86b496

    SHA512

    6084ec8afdd59863aa06898aa0a40cc2650ac872d040c96d797ff16e58e2c295b20b82113ec92327b47648a587d0b0ea63e85d3a68d5c90dd6a3a33eefbf7167

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f51f65aad959c1296e3336b29fe2c328

    SHA1

    0e1f6b24f1b2c1332c4ef05a5aa8b39bd11c783c

    SHA256

    ac0a266120e43081c28adf85de30cece2cec1f8c5e769c4157a955466b462629

    SHA512

    165650d06f5560b54e40328acfe602d7741db2f7b2c043a33d3687c9927ddd5f34cbc30eb014710ad8924fa86c4507b09873787badc1721f7ce49837ec5048e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0962a686e0f70da1db420f509d1f902e

    SHA1

    f33bf9671810963c15350df84b75210684237b95

    SHA256

    80664bfcba135684385d6ff17c8bf47fd218fcaad6a5136fdf85c012643dd5d7

    SHA512

    26137d27b72541209b3e34a00385a8c6e360395ec2ccd830c5b9e35edfa7007d7784cdedfe1a75d4e61d201193f53394cd553b8635f96401a71bd745c86dfdea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4c76e241742613a70eaedbbb547ae84

    SHA1

    613670395abc4025eb1720bf5b55357c54cb0efb

    SHA256

    abff064a9cddbb12b4df5f3a5523309d41b957df0635d42be44efac3655935e6

    SHA512

    a9e506956969b2f7160162644a3a4ab94211889d15770cf3ab54c938dadd1f5c21e613f27a966c463dcf99a004ba82ffb9de67764f5eff983d4bd292b71d10e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f0e7555af5620d6ccee645866769970

    SHA1

    5cdbfa6709baa4821fe96a6b53ae73959b3631d2

    SHA256

    2a76c2a41526ed97ad13f33b17643c718864c250540c18197b6c773b743c31a1

    SHA512

    4b6ca80cb60f1e8cc77099ea87cb271f6d5557d8ca4f5991ceaa5713b1e62f24434fa1dc8e9ebeac3e639995fb60ac9fe410e1d090f889cad25233f863bbb208

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd167c5fb9a5ac58e740f0b0b8cb2850

    SHA1

    38712303b9142cc890ee01d66578b32ace0ff4f0

    SHA256

    23488fa969bd883704e9434061a5572972fc00b57a6b20fcaddcff19a5117b74

    SHA512

    13c25310220cddaf0f2b5612af717ffcb44f2772fdda86d38724f7eff9d8ecccf44acf5c8964f8b91a21fd36bc168165a4cae675dcc0c6597ab513f96bc9b96e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0316a506118cf9ce8fe31a0ed9b531df

    SHA1

    04750d92c55b0de25648c1e4b3fe2a9dc8667c02

    SHA256

    b20cfd9f9004102205928788c37ef722878aaef85dc61103f8739deeca3e6994

    SHA512

    b5b8058a9c9e890a8026fa554526f61082b98d1c3c3cf7795d634beb9533a786a0c8f68d74b2a310898d281a5d4a498b05719bd37fbaaf1c958c438fad993b97

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE765.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE7D6.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit