Overview

overview

7

Static

static

3

Aventure S....5.exe

windows7-x64

7

Aventure S....5.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

Aventure.exe

windows7-x64

1

Aventure.exe

windows10-2004-x64

7

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

3

resources/elevate.exe

windows10-2004-x64

3

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 19:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    8303b3a19888f41062a614cd95b2e2d2

  • SHA1

    a112ee5559c27b01e3114cf10050531cab3d98a6

  • SHA256

    9c088caac76cf5be69e0397d76fe9397017585cffdba327692ff1b3a6c00d68f

  • SHA512

    281b2ecc99502a050ee69e31256dec135e8cb877d1a6ba9f1c975fcfb11c062980ee6061d2368b62f91e392953ae6235dd726a9d98e6efc1302f7ed713099179

  • SSDEEP

    24576:dbTq6T06T5kJWSIRWnBIl70mfT76y6E65606F/HXpErpem:t4scj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2328
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2328 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1812

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7e9cfe7254fd5a5ae520bbbe873439c

    SHA1

    431425dce7eb1226daaa1c8299a689e1f93cec9f

    SHA256

    9a4e011f444118737116a9eb5d02cbe2d78b56f6a671e87c0153245cb61270c8

    SHA512

    39db40ec32f064ba81c28507e12cc622eb9f53e62c23a2f15f40d5f1442d1fce2cb6c3029d9973f3654a4f5cc0aa9a982a5b4a347da99aa7dd4e653afdf12ade

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c383bfc502e94013ef2e5f98bd275c99

    SHA1

    c3c4eb1baa22bbf930befbaa4a354f0a05086ed6

    SHA256

    b01691b039c05c4b3f37054babbbe1dcbf480593a9c578209e16222c99c21f1f

    SHA512

    bc8fd26445301e3da5d975fc1c3a8d5ef3836aac5e537ee4cd001bb515fe07d6dd51bd4b8e548117968b262de40a60b8ee2d71ba3c4d21e45fa6859d82f305be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eca5c104c29471b37b06c8b75e11b394

    SHA1

    b2ffde840af8cd0a228ba1c2a27e2b0369912411

    SHA256

    0c587394ae8cf0ba3034c06226db33ce2fecbb764441feeaea876042157fbb4b

    SHA512

    156645689e929140d05f81fb6095770dc896a3afde44755f59d45d4b2887643e07d0896f85d6599f446ad9c1011f262e7762a9b63121ac57411672c53663a1d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    378e4ed2970e1cd503322c4badfe58cd

    SHA1

    a92c2ff778d786341ba7866a313e2944078f3c4b

    SHA256

    6dc9d0c632025891bf67972b3dfe135ae3d2f639b36f75fe96f71b9fa4d4c343

    SHA512

    4d733c629480f5ddb46fdc6fa6d5357e336c96d4cac6ad5c615f1536dd4493c46e87e2ac1e5064d98ed1aaac079ec7b593eff46d210030d68eee10a1d9efa4de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    313064be187e27b4a1c4a5b1f5edd73d

    SHA1

    bcae9b311acb239c8caa737c7dc685669a398f8b

    SHA256

    57006360d0d13ebd18ce26776eda4e97803e1d3a781747ef3d882e7731d3c9fa

    SHA512

    aceb736eea9d0c72d0b526123095a96901549370b0e0df09f431228d40e1fe1c1efffeec56cf011c31db8354654d016cf35699319197f77e80858ca4da6e3a48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00a0ad6423b0523052aa2c724456dde7

    SHA1

    088a6da4f20a4c0edff96d632ab0a6e1fb13c9ad

    SHA256

    881a4d71b62483419852085385e093ee5650fed263c24526c75e4acb4903d831

    SHA512

    66c300042aba00a21352e080744a94c6fafcd01b4254aa899b06914031f1f109a7f43888fe7bb8bfa1bea54e1340781a2f8dd57f0745a937b8d5f9997f83bb16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c82373cf07ca72b7d4180547a47bcbd

    SHA1

    4e7eaa8859618712e67e89cf3244a6b9b8c5d7df

    SHA256

    d9020bcc60b3cc5735c04fee6935b20df18c180b5fee538f85e32ba060fe3afa

    SHA512

    44ca898558ec9ba3ccf0a91b5ff9b154e2ff9400049d438c22f4a6dc8cbe2e84c533dc2c259dadd0b68da6fc9056a9ffc3289a2d5f5ee39cc286249f5b458648

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6884b2fd38991260cff26112f0a67e30

    SHA1

    7cc43f7c0d42d3c952fdde4cefcf1bc26dd72d61

    SHA256

    8e069e8e50d68e86c5899250e4505200bf9d788d2ffa9730cbf059566b8fc713

    SHA512

    18df35827bdc0b4c1c2681f2b22a597b0352332b6a6e5efb400c004bf87eb5986927d9e1dc18fae169fe9a83bdac36236d47678800100214647918afaa98802f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fbdbac5847a63bda33fd6d5e3bb622b3

    SHA1

    2b2b151c4f54c21e1b6c0a85a388957230ab687e

    SHA256

    9f6d38cfdc996869df3f815b760d28c54e3b39ed32b9ec27463085666935fa09

    SHA512

    3c95e812a0502d68d6e574e41b39e0bcf5e473fb0968009ac06091b0f085ef76fd47c1859b924c883c95538080d54bdd642fdf3bcac574fb449ec6b2bb077dd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e19b3851db20c44ef93d6e3ddc3ec85c

    SHA1

    b6f57b42f2819d5c4b4e894978e86e122e375ad0

    SHA256

    28e949d4167a243338343391e6eb9913fac3f42abad0bd1b6ecbaa6b1ec7b2e9

    SHA512

    4031356b9fc654aba8a5c6cdcb97b376c4d883fa811c892ef3f60ae23e349674182b4e5aee64c9516cea3c3ff280a139d90ad263de89d3b99094381699f450f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2928d7ad3997ef59db164d3c9e9d187b

    SHA1

    6af3079ff3ba5c5a6a254d7a522c4cb747b53010

    SHA256

    86c653630a13e3b42f61a5740a92d418780d40bbfae1455b58d5578bbb942bee

    SHA512

    0311c7170e674259277d8057131c3d3461f518607becda996ad11bcd65a03e3c0e0ee1b4e43c2015a14c616d1c8505c9936abb449f09304ceffa9faf11b279e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f640d3b7943ee70e68e2e7b6a85a5b3

    SHA1

    5249adfc2a815cc9337d23a252c0b80e247a3643

    SHA256

    2620526b58465983528c3d912a79d3ac29dbbabd0dedea85f2ea4ac714653597

    SHA512

    861f66106aa0478e0cde83d160f34f7102221bbf1c9b932465e112bbcfe024b94f6c5a03a5cec9d7327c55e91a16c041a0f8b621e0a462222c84703de9362f1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb64e75535973b1646108d8a5affa9bd

    SHA1

    a51b82837b353259c7ff449a4d8e902f89228507

    SHA256

    b3cca14320202a041a568dec3bb120352b7e7ae1ce086560e13371bcde3c9894

    SHA512

    34a632b65adb8319510a6e94fc7bd6239ee3a6fab7490866baea03c868ba6c60ebbe5240216e3d101ae8b0f615f1f938165e960d3217bd6e09f5294991b69cd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e1020d520e85a84fbc6ee50652101bc

    SHA1

    d8f3261f2d469057f1fad7fac9b0561ee90a2eb1

    SHA256

    89823cbc5a3780c01f68a220f69cb429152bde1bc455d68d9092fcd3c6c7edec

    SHA512

    e6eebf16acfea806f3d40b8f8df07fad8f1671b5c7bd66d9facc162dd0d6b19b8db8dca82bebf988321c777d857c2339caf28c85b7a39ef3284e76f5144346c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3000966650df8811d71feae699d9d1f7

    SHA1

    7f785cbb501d1a13682628d5cf254701378758f5

    SHA256

    d972206e102e2ea279820377a55dd2a1e9e5d09f2bc5061c719f3f746e978870

    SHA512

    432e49d9f254b0aec3128d86967047b1be9a37ba01e4a4591cfdce8e83b14c7fe0c919b1a09fdd27251e2b2fe0118ee7485b20f489835153f107ddac62e539ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aea34a39a1bd1bc507a5fa0a1d373907

    SHA1

    da3b17b0990a9503065ec178cea3361b63af8b8c

    SHA256

    0d9be5f6891850c76120b419c237237e22fb204f5789a56cc4aa729198947120

    SHA512

    9e86361f8fd0bef6afb5a441938fb0df9a57d94a8e386c057955e6481e766d780481573a0117e87c5914e4db50e7a7ae6d995e0207dff1ddb584c89cddef5810

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4d2fd0b54ae0f99466ccccb27894912

    SHA1

    30e8a7374aba2cb08ef8025cab3f1d4ea1ec2e72

    SHA256

    cb867c7b92aa074935f4d421e8e5a01ea26126356bf3fd2643c0a9f73d562768

    SHA512

    9963e54dd6dc9e1e944086e249dc7663ff93c59dc167fae97c1a67f97276857ff93c3236a1da6e68a055f358a56aec0a07cba463144eb4df0a4c14f55ebda4e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b4712d0b710f301168dafd466c8fd1d

    SHA1

    ea945881e4a46ad5414e5d627ba4e37798da380a

    SHA256

    70b5c8beadfcc3052b24131f26444d75c94cdf9746cf332d6817f29a8432c3f4

    SHA512

    21249858b5c832ae70354e9f49053585342198db80fae23068405eb0d8aefd859a2092f04824866474c0599527f1587304e9b95e4c22399455c47136ede52afa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7efb7d6facab3b09cb62a5b0426e139

    SHA1

    c796165623c701a78a2a4dae1353fb441b7c01da

    SHA256

    0c98a781f377442275c43aeb7c5a88522ef3d8ce170f72388963ef5ba160a08b

    SHA512

    9f3879f83907095eda3aadfdb0d7e911515c159514d6dd25c28893ad5bbe3d98fadc83b15cb1fb1141595aa9b3cf553f69ddc87fc7951bc67f4502a750b4fbc4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF74D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3AF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit