Overview

overview

10

Static

static

3

LICENSE.html

windows7-x64

3

LICENSE.html

windows10-2004-x64

3

Unlock_Tool_2.1.7.exe

windows7-x64

10

Unlock_Tool_2.1.7.exe

windows10-2004-x64

10

lesseeVari...es.dll

windows7-x64

1

lesseeVari...es.dll

windows10-2004-x64

1

locales/re...me.dll

windows7-x64

1

locales/re...me.dll

windows10-2004-x64

1

locales/re...me.dll

windows7-x64

1

locales/re...me.dll

windows10-2004-x64

1

locales/re...me.dll

windows7-x64

1

locales/re...me.dll

windows10-2004-x64

1

locales/re...ro.dll

windows7-x64

1

locales/re...ro.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

locales/re...le.dll

windows7-x64

1

locales/re...le.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    15-10-2024 10:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSE.html

  • Size

    6.3MB

  • MD5

    6e638956244aaded2c92b77f9d421a81

  • SHA1

    f5269556b6fe04cfca5a1da21af718641708a666

  • SHA256

    652457f1b5ec60a81c8aff095366bcc068402c21eb380ba8286366bc4e9a029e

  • SHA512

    f0e173761a6acd13b6c1b5eb896c361487a770a54f1842ffaa80c8ff780b37a1e801169786776c4afa7d9c75cd968dbaddabff082de55cf75cc4f9d871d08bc1

  • SSDEEP

    24576:nPVZ5W5WS95zHIlGMmfu626s6W6a6q5AHOeQDph:SMn

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSE.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2736 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2668

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa9538fee5bc7909adf36d0172ce6133

    SHA1

    1fa685c17016fb6301da3268781c5b58abbb0175

    SHA256

    929e6f886b708511a093328b973273f5391b035a049922411bd23360c060af72

    SHA512

    0e4f13b32e89b949d39ce6e4aea493c19c539f0af84053ab517bc5ed6ce0829938dbfa868c0eaed61f0e125e9b1397973a06972e1e311aaca0ceeb2d5d4ae6cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11af4dcf3c728dea6d27a2a2cd047834

    SHA1

    c3c6fd4b20e7c8c375ce3e8f69b4d6a0f63a3416

    SHA256

    5d0f5c9b7cab42950e12c1711cc16d8b71eeafc900b2f86f820b68577d10cf67

    SHA512

    18da686eef177f5776d3657037a1f505cbefbb00fd8ac211c7d107b6bfb73147d497df1de39b4b2464ff8b558ef486aad4c1e874b984397343ae6b02cea530e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    92efde6b998c87a5d48d100ae4800881

    SHA1

    63bb61ef9bb06ffbbaa76a0935740a1a125a7b4e

    SHA256

    af580e40118af94ef33599def77ddef1beee3cc5ff31490d4fd397dcb8bbafda

    SHA512

    a61905d62fb813580617e502bea280ec43efe5fcdb84983be7af112093f75c219f2fb0ec46799467feb8b005b2b127c87d1ee2a34d21393af45d66f07fe310a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4e59e02b630f408b7c762e89690d448

    SHA1

    513868e8b22d0d854fd876f7e52f8b2d5a14a61c

    SHA256

    bb34ba22bc65a20cc782584dd9f61e7f584c20b3f4d516585ca18fae8e338180

    SHA512

    de84a77632d65573a09601106341337f67358afdc7c45c0edcf3417aa0d8a94e9d240607c090f9be733f9147c9e83af44c895494854459b6bd45f494826ab451

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27ff30d22f78ec8afc18b45ae9c6d4a5

    SHA1

    bc90fbeb22eba57f0f359173a14cfeea1452a3f0

    SHA256

    a48979e0f5a7efc5773a5a0675cf7dc1e0e53e0014fbea7d3f687fa647de24a6

    SHA512

    0a7f9ad390c8dc1e56d95cf0c70fb4376f4f23be5f8a74e871cc51e00f2eb09e14df684dd743b59de2e7f4c265e4bd3baf4f14ae8328144322fe6f67a15c592d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    48154c8fbd2811de6a503371c1a96af9

    SHA1

    7e63dc53d06e3491de8ec5ff1c83745c2be529d8

    SHA256

    3b7e52e544a6834c1e347892ca6d8d00a8ca62f059942578d4dc19bb52b6e1f7

    SHA512

    6ef2f1b6e8724538dd59665dca24641dccf4c56b06d4f6deb8872a19e77001dfb202a9b13a2f28c8882d2a3fcaa3737a2850ba9fe097a4dcc4a63d71728e4f2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f6faeb70f6b52a3f8e9648a559c9402

    SHA1

    bbb3284a3706fd5b99b7e8538b9a29ef57d35612

    SHA256

    22f218fc5a0b705f85b5e07f5c625a63fc6831dcd345ad28c77ef6d35ea247ab

    SHA512

    d41ec42464e16fbe7d7a4aecdf1a23747617bccf1d0ce95c23bebfdee7550cdd563508f546ed6a9452b6425a3363d4e656d8ab5a8350eab4056ce98ef00197e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ce2875a4ae682598d7b8302be7ff8f0

    SHA1

    5b855e1aae321a1b89c9211d198de7d4f8533eba

    SHA256

    95ba8c3f1510fdcfc654d494137fbe62df36f57c665f09b59c00abd82611417e

    SHA512

    ad9b8544ceb49c7ba813c97e41d487870c2ab051f5cb926f692616315cc86a706f5bebaaa563813ff9da56d9bbe6305e9e077be2ffbcdc41d2af935c3f71e771

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68e1d60c2338059a4946b447911dd7b0

    SHA1

    c09b8cef7ee9fb02734e0fb746294f3f3402d812

    SHA256

    49070b5d94d047ddf228c360c62952ba61e3439d87d9e776c1a3d4b72b8932fb

    SHA512

    e750a2dfd6c8a559ecd25ebfc60f69de3273e19af78a490483d2fb24d0d4a989d44895c9f1ad6cb7c3e57468fac6ee6fbac19c9215d93915f237ed12c6cb340b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9bf66060964b938df45c5c103581619b

    SHA1

    5d21713a0612d7b615422014bfb5e1dfa135e0a4

    SHA256

    4bc59bcb4d675affd3f0413154bd5753097e45fb2ee8b99e43c9cadebabeb893

    SHA512

    e2c41462245f0edd59a9219afcc05f3e93a0ce16dbec93deeaf50ea9cbb6278e3fb01c69b3820ea63b28df66f9bb09644a47a40ae22ac1831c188803ef4ecdd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72eb4d9db8376812ef8d01033a33ab63

    SHA1

    6b2689b2887466997cdf3f67475989f267472773

    SHA256

    5bd503c525e101c69b28819c395afc4c742669f07741388179b80a1b6d3b650b

    SHA512

    87e504073c486838059796f078ad2cd62ca3b9e835ca0305333d1fa9835368f53cac830142809de772ed4b3929500e89cdd87d8bf4b8681f6a6e9c1633e7507d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db7fd1cb3b186866710b0fc239efef9e

    SHA1

    b0ae0467982a0859d70e1a5e0b312653ce888191

    SHA256

    54bbe0be6e54c98d709511efaa30973fbe80e04fb20a662356f0bbb5a9f854d3

    SHA512

    eb1398f56d81ab8bbccbfe84d9c640a13f48b1ed63692ae7886ea3b6875d9989e23057dd32e8856587e5a2c91d956e98b93a7efc14fc9d1e69cca1846a63617b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bec8a6d74e1e0b538cbe700e18aeecbe

    SHA1

    2ff3076dbe2bf3ed1dc07ce72438d543f75d4e3b

    SHA256

    c7c3ab5f2706326865e95910055015af64fd6d1b8e518e81076223e4220e97dc

    SHA512

    6c84f2ea32c38d84909d3364a97dd51e4d66e18e11970f7b9798d01a0e9fe8cda93ae1a45d6681257b9a930d827b310c1275a1b48ef5ec6b1ac6c5b3707a70aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29a1355067f771c1fb8032c808a9b7ff

    SHA1

    df1d44796ac278eafdc1f59d619db9b85ca75572

    SHA256

    06f47e3271c3525d345c8ad7ce3995806dc5a32beea1187867352f68c35563ed

    SHA512

    ff66009e8564d77485d7ed91bdb3eb1de5760b0a4a5502a9eb60b657c5b38f690fc62fc86b704781db1765a15bd4a13636e385483155ba0f6f94b5d1cee12e60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2be0b91cfca94c13508059024538860

    SHA1

    ffb039e6b11f1078549895c46d52b8b0e39f97f5

    SHA256

    eec30d601e5da850297a6b1ba0ff8a66818844fc95839a4ab9d86530a6dcbeb3

    SHA512

    0b9624e5ef149b3eeece50acccc3fc3e9936ae9918b8ef5301be165e7c309999ffb6424d11a16baf42f94e580b169668810868ffd268123d99204faaf975308c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f83693d17c1fd0c599e20f6d835f87e4

    SHA1

    e4d6e8a204cf1334c96a4a8aa5325e83a5237f4a

    SHA256

    ca50a6de691a1b1d35b7490f9958f6d6b348201f3a74d0e068e49ba2bf8be8cc

    SHA512

    648446c70e2540e3a858cc96ae0ce5fb4615963a34606bd4d50565c7433eff73f361833efb74a200db946e781020d94d1436147be498999aa757809c5b402ad8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabADD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB8B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit