Overview

overview

10

Static

static

3

Launcher1.0.05.exe

windows7-x64

7

Launcher1.0.05.exe

windows10-2004-x64

10

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

Launcher.exe

windows7-x64

1

Launcher.exe

windows10-2004-x64

10

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

3

resources/elevate.exe

windows10-2004-x64

3

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    18-11-2024 06:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    8303b3a19888f41062a614cd95b2e2d2

  • SHA1

    a112ee5559c27b01e3114cf10050531cab3d98a6

  • SHA256

    9c088caac76cf5be69e0397d76fe9397017585cffdba327692ff1b3a6c00d68f

  • SHA512

    281b2ecc99502a050ee69e31256dec135e8cb877d1a6ba9f1c975fcfb11c062980ee6061d2368b62f91e392953ae6235dd726a9d98e6efc1302f7ed713099179

  • SSDEEP

    24576:dbTq6T06T5kJWSIRWnBIl70mfT76y6E65606F/HXpErpem:t4scj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2504
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2504 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2092

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7da76c5acc706c5aed7c89b485eaaa8

    SHA1

    c332966ab25aaaf32d8e60e464d47bdbad639322

    SHA256

    2b1350e7147ebb60678b9142ca20736e0c8a415fa8357b5c4ea4417e8b713ab1

    SHA512

    4934eb39e0cf729d3293e6b4ae5a1c8d011950b2e5b8f4e9f88ecb3458b88f0f56298d8975e7a4e08a0df7ee0e469e9d10480a05cc1809ee1d599da9ee6349c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    855281e73f6ec00d1880bcd1c4442f72

    SHA1

    3112c59838961cae7bf3f970485147f027d6edbf

    SHA256

    2b40becb9e94443b7efd94216056e479e02134ea2ce3efd542e04f668af1113d

    SHA512

    c61dcc8f21f6af01814e01f667b1f582b3b0aee2022f08bd8a7f380538ac83de59f5e7ab2ff9948942d7a00a0bf62938234c1913dbdb8724bdb90eaaa44148f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa3b4f3bca717e6efa57844ecf1be323

    SHA1

    42ade3c3e85d5cb3de4538624e31cf4624bc7b24

    SHA256

    b846375bce2033d78a1bbb97d21dadf34789b1ee14fd5e7648d49aee4cdbd3ea

    SHA512

    659ef4af065666a64de9c4684561b0067fca17fc1b1e5ec552f782445444af6fc0a233f1ebc1ffe616e40148d73a3ff14ccf4dba5ab830afa90f74e3313b629d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c258c594b3bb7010a7b5596d415ca038

    SHA1

    d578a5bea7f1c28d09922a2e6fa6da947ef7a52d

    SHA256

    47c9bbe9f5caf78d299f0373c44fb84a178aec6e4e45db9244a8beb78f351bce

    SHA512

    95e51fd4f301781aa7d82b6ba92e348cd6dbb7e888c072315a56e52761a368b6ad5953c29f990d1a575850a8066c8f50749e46f72da9beadd5e9badc2e9605af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    179b5e14bc184fb12b41a881142067fe

    SHA1

    ef2825456f9609f007e769529a72ed5575ccfae5

    SHA256

    93fe1bdf4c8583acf0dc2baefe6f26abc462819cc030baea18f9da62e26e5d81

    SHA512

    2a095f203a917dddcc6b3027c4839b6ab85f0f55350ab4a239073592349e4a39fb76f90925ecd39c3fdf49076d06a6af4172dd215602eb54f36e7b55e3505cfd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db945e942cf75e4a69c79455d67d67bc

    SHA1

    37872cbbbca340abad96f82446320f1edd2c16b4

    SHA256

    41fcffa392449db8d6e4496cd6ba27fd301ccc9e99dd8b62620dfc111cde6f08

    SHA512

    8279b5735a521db4193c32e18839886b7e38f786361ba0484e023655c8ae54391e35babb615889aafaac7388bd0a9be9b4369bcb4f2473b23363500423058503

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c90b61894eb740cfcbd9d26b614a977c

    SHA1

    5f2fac2f18acea85d858eeaf71ae1929bb5254a9

    SHA256

    76442ec6d378d55d234c69eefe12bae7da340f6a38fc9fe4e0ae009efbc1a4e9

    SHA512

    b0f1ba0f102b78c7317a91581c77ac96157ce03de5a9c183b7223dea303603b3c8d3634a2d6447d8e8548af7c02f5753232b6ba5ec2366c0091d0631303b2b81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d30d05a590ed823274f88d424a0d0bd

    SHA1

    337df9a281f302796bc1db04e772ca106fd69121

    SHA256

    442a35f4e2b216cd13952b3e7eb32601f38e5da54d2b091a9ef039a73b3f6ebd

    SHA512

    873cbf5770d8781634f575248a5d5eea33eaa3184aed73ef4263c0645514192d5b6a1d78a8a6cc1ddc7b4210abe5baa66615a7671be28ed6e32fb06b4b189dff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    402138cfef2a48dd6f0b34145bf4355a

    SHA1

    0344ce9c12eaad213587411760991be305b2eb60

    SHA256

    d215bd84d61e44d4fd601004695d501944f6d30cf52fe0c21024d8b4af30592c

    SHA512

    f4b4f40ec07a00b03d8120baf28cc16b5f7f2dcf1509828d98cbb83248dfaf3616cbcb31de035285e9e18409fba1aa20a0293785295040ef42ce3fa6decb1ffc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f20576a06fda83a517b5b8c081da4445

    SHA1

    1a489114141431430f8922914dcf3d7bceb1e6bf

    SHA256

    962f913a7098f7fba9d1a8a91d87c2b57b2af733f7ec60ec918bc4c50a6b6f47

    SHA512

    7596823b89b001ed5e8a15895d9978b25a8df1db56fc18d30cabb6ea18f10873b66a0f8a5707112c1a73f67b7648905a15ca08202863b2b3d4a18db795b77ccd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    233edc4b5e804f03a9597d7af53769c8

    SHA1

    ac676517a77ebb1f4f9da8ecf1a594482b03cd75

    SHA256

    92653aa16fcd3548efc234cf165b9b4a886ce7ca3611ccbffdff9df10befc877

    SHA512

    49e8b4bad1ed659efdb8f2d488fbf981e9f6971facee29aab7cded0ef90f961117dc1736161b2baa0dec96de66bcae6d5867bdfb234da42b51041e2dce2a8db8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c04b299607f9c56eb4b61fb10d42246b

    SHA1

    2aef8a5d98c66bae1e5cac70c4e20ae2747a3d5a

    SHA256

    af95753c0d575e24035dfb8bfa4574f357c524ac7e244e86ba94278090f16036

    SHA512

    418e220d4ec1731b1f5ea64f68b5a2e00d0834a1b98ad1662c720656b3e595a1cd5598c62bbf1b0455cc7d5562732684ad05ab032319d75639412d6deb9a2c6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d746c589c0e6d9262d354890f0ebba7

    SHA1

    a8bebfa73248e77572c6d08d73c213f5b00b51dc

    SHA256

    7ce41e16488ee3a70fee5791d59453fa7daa6fe8e19521b883f79c3f6a803a0f

    SHA512

    64cde4ec2b7eccc9240ce7330bb9679661da7f816f0933385db5a41d995b3fd21a3fd4e6521c812acef3b8689e4691fd3b61f010577980cb6fef02fcf7c72113

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff91bccfe01c374db7363a50ae320c03

    SHA1

    f419779b3824581331ed22bde75b0cb8efae98ee

    SHA256

    741feb94836d05313c3c01aa9bbd36c25dac337db731d9cf9c5e1c002a84f0fa

    SHA512

    e296e7940e75838207810db80392e719e13cb516e61fdc3168b0a15e3e081422ca10b5bb5b3e45ca7447c78b409bf4562f24cbbfc86c1e5767409030e791de8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4ed3abe38cab2fcb272b3f260defe258

    SHA1

    e64d03b3dffd43b88705344c49acf26bdae3df2c

    SHA256

    fd2d974343f55294f678640866ae542bb8deea98cd0c5ee0519ce31d0bbf5f0b

    SHA512

    348e63c4c2a445d77494498be15047b6acbec2c2be5ce8204e9e40c40fc88a7fe5e6290520aec8396edc7a951dbdb668cd59903243bb98f78420a495857174b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34b840bd2f8dda20b5e08e6d86df64ee

    SHA1

    b691ceaa6a6da2429d4b5b9aeff1b52bf428ec04

    SHA256

    dac37e063eb869354037db75e77df58b7fc92eb0c8a90713f77f279ec8c85e80

    SHA512

    4abf387c66e8072ad788f260df613680a911e5eef725c289d435f09319460c69266714676ccca97e7fdc34ce047ed4131cc70bf50d5a960580cb496923ff570a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84ab3fb99bda5fce096355d207ca1dd7

    SHA1

    542b5f4170295bff23f64694809ed3b96a86de2f

    SHA256

    118c47265e76ca7cf585c39896b0da9bcac7c4a45cc47ac078f1d9593b911059

    SHA512

    6babfb49a3f8a49aa65abbc6cb4a7959ff752b6ae7617e36dd76da8c0795342ef81d2ea2db5e9fb97ec59a1507944d9866b60a341166cf1793a3a945b8d9d4d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32c0f4544685c3c3bc76898bd2dc0652

    SHA1

    659072fffc5a74b53d86f5072e4f8f30480b6ebb

    SHA256

    88ab2ec8faac1ada433e2c7eef17f666b023a749b3b3cc8a5d33c8d42ea06f49

    SHA512

    7793c48f339deba395eaa0dfcf70aa70dc3936ccde1a2af30367964f049da5771671c86291675cbef33a9038a771bc9b211bb514d519adef1ec4475acc93e4ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e472a7ae35c24842fefaaba967ca623

    SHA1

    3e0065e6324877f225c6f56af813453f2f94ab09

    SHA256

    057b06fa2a92f1e3841a8430d094c2d21cfca57e656e8f72494e9dbcf994d5cf

    SHA512

    14ec926dedf7df7ea0b33e3d9dcaac9129ae6da61eed7837b95aa1b71222857897a6b645dfa8fee35be66432494ed033e49c6132c74cc4c3932dafc80aea2a81

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDF58.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDFDA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit