Overview

overview

10

Static

static

3

Launcher1.0.05.exe

windows7-x64

7

Launcher1.0.05.exe

windows10-2004-x64

10

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

Launcher.exe

windows7-x64

1

Launcher.exe

windows10-2004-x64

10

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

3

resources/elevate.exe

windows10-2004-x64

3

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    18-11-2024 08:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    8303b3a19888f41062a614cd95b2e2d2

  • SHA1

    a112ee5559c27b01e3114cf10050531cab3d98a6

  • SHA256

    9c088caac76cf5be69e0397d76fe9397017585cffdba327692ff1b3a6c00d68f

  • SHA512

    281b2ecc99502a050ee69e31256dec135e8cb877d1a6ba9f1c975fcfb11c062980ee6061d2368b62f91e392953ae6235dd726a9d98e6efc1302f7ed713099179

  • SSDEEP

    24576:dbTq6T06T5kJWSIRWnBIl70mfT76y6E65606F/HXpErpem:t4scj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1732
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1732 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1496

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f97d27d2099375957af91b0b1a45fda2

    SHA1

    117450f1f27865623b718724f180765244fe3baa

    SHA256

    87c1ce25a7cadc64ea43cea588cd5bae3eae01ddf5c679ff77fb46b99e0e5347

    SHA512

    57e0aa3137abbc000903bbcffd3caacd7fb4370726475ce68b67386aaf496e6ff9c9f15b7311a6c9a7c2e59932ce2d7f0d67d1255c75db19674c98283110d91e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff06226d337f5014fc89d9ee591578c2

    SHA1

    8f56b877b78a50d7858a613a0d74463349dc5ccd

    SHA256

    2cacde52c009124f3279f0ac5e9667c2f3a9304978f7b3cfe747d63c27531908

    SHA512

    ed8d28450f2d87ed77c1ed82a6e374e760e85a7f86536abf7daf68538b0c9dee4cc7ec9bba592e9eb796110dfe5573ea03c70fc7dfcbabe1cd8b50f6647d8cee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    940c428c46307bdece198b7a8c10beec

    SHA1

    3975975906f1230451edf2d5946ed01ff3704b27

    SHA256

    5a3694e415c5aea869bb810f903418f942082f3df932af466828e5ed291f28ea

    SHA512

    af1f87d2644ae1809ebc4f2b68bf69b4bd8a8b60c98be417d41a51f816d740c8b0b888e4f0b2a3a80e6191e7480353e7c1b917692487ffe2dc2e256138d69881

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a597ad417d3ae86364b7dfff6813b6d

    SHA1

    863fdf0d8f4f65417df202bd3b85169c7aea935b

    SHA256

    6e606ebc5272b5903b069c26150341316f430e9b860b9251cb9448a254e1c12c

    SHA512

    a5d677a6a9ccd23208db9075c16f7921ce4fc510afdf166fa8faa140d8f609dcfe05e5d925b2f0794fd51f6727a94642e9f2d8f9b5b9cc3a29af3d843aeac6b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b000c8d7d6e4475a40fdad14bafa7d1

    SHA1

    ec34a421ed952b0e378874f8fe208f00ebb491f1

    SHA256

    d2098a0b4987e5857967dade4061bc4b14f7a9f5dde84fc786e43f2ff0262d1a

    SHA512

    b2a242471097212d3fb554c3b770a8c83d0361aa39a111a3d9acddf668f2d18f921128b2519eba00e299bc2dbe18224a7e962bf9f41aa03d76f2a4c6863763ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dddc4207add6212f0a9acf52c932d808

    SHA1

    2deff590c4b298e6fe489ceaaba29f7617979c66

    SHA256

    6c54d2e589d56e48e241060eb94eaa503d2184bceb3aafdc4bbf04b405a4347a

    SHA512

    b7ca1b183f599a690c3578dc36ab137262212b6e878d2378b1e8f857c4769eab26a918c7d999557b63ebd0e8befc1cd1aa312547423bc9f291b454ec92ce84ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    edfa9155f9d13b79d1d40c05be749421

    SHA1

    95a9b78c58938c452ae002866064615adaf38b3f

    SHA256

    1db52a5d7204bfcacb7e08f82914bffebee3ae45f4de568a7f98e4c898ec0156

    SHA512

    bf7e6e7683dcc56c9c13546ca7f7c85b9e9ba9d29d429c6345af1f9d194ac2bfd06f234242ebbb4101f23377c4b9b48d3163d613e049ddec1560a7367bbd2a6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76e1062fafeaf60e3a53c7b782042700

    SHA1

    649991a82d81d0a3eb8d1bb5f0626e9dcbd677e0

    SHA256

    734037dc1c602aa577817d237c5595dba16e1a9cff5a905f222c5009f525f9bf

    SHA512

    985b1e3ccec7ddd5b67ec16c4ef4e780cc609702d95d3d5c799e11f575f94eff19b81327b25d6f5fa0a8d3fbda8e54428d7c8c0ca44f6a2f5eb2e8825e2a0aeb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a308b1eb4be78459a100d4e89d2d840

    SHA1

    f330e043f1f7aee6685e356381517ce36c6ba66e

    SHA256

    6b881539e829b87b8566d050191149a00297749a4d50c1763b16596779052d0d

    SHA512

    c1d7bc91cbcb375e3a33042cca0216ee1cd29fc261a57afa386c62913c187e9e3a55ed0ddef27b82a27a36df1fd18b3e422b2cfa42542453b2d5407acfac9906

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11fe6400430d24701b6ca493323dfbd5

    SHA1

    f814628b8f3736fb3698410fac8d5a0bc192b83c

    SHA256

    0619017d10390984c123c603126f5c4c2cb3c54c9c70d8ff1743eb93fe1899d6

    SHA512

    01f5a7a0301166477cabb348fe2a7e22c498297c6cceb262301471334bcb717c06667c3eded70d6aec23bc926bc539ed453fa7ffc4ae04e808ac8c2ba09625db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05607fc2c07d804e08f4c31c8cc0c5b1

    SHA1

    378082f921138b0d451e01a77b894576581a541e

    SHA256

    07610f9fe006ea6ab90c299dcea85cdbcc82f77717a62114f7dbe57a7ad081f4

    SHA512

    b43c0f22dc6abea16e6d3c77f99471a5f196e8d848cf1c6200775b3cd6e66a4b116048b309d729d9b1252a1415cdb5cb0ae0e217f57aaa0b842d2125edb276f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    668ff2477d4d66099a032bfb6603fbdc

    SHA1

    3f3a80bfb00b6544d782acd781e421ede5eff9b4

    SHA256

    c0e2255e71c720145de7f9da4c251ee402c7b44452fad852db5c833e51bf7b52

    SHA512

    6c9748c0211b1ab3a7316401fe2187147e6d94a718bf5f15ff3399e1885281b9bbb63286a9d097629ccde739347e487e3fcdc39820548be8a49ba89e43c797fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b43a72fc1bc4c6a29310128d7e9ed29

    SHA1

    469c882ccd3a6c1fc97b7039de676526d370d04f

    SHA256

    ec513d7bd61591f6b22f41af49af92352571417313b75f611af16081a271fc68

    SHA512

    5959669ce1d027493f55f6f9db8eba566d7f68d322db0c555a026a8fe46f1a26a1af91c19d56a42751ba6fdf107dfe8a20a277116f4ad3503d935e1e457fd725

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1b5baa0ec099ad36bae951d6af9e0fe7

    SHA1

    85e030f90a13f61e107c14bceaf26224b1b9791f

    SHA256

    3e2620474a1bfe2a1f8c861a0cce78195a25e9f39bc8a80ef62d0f5bf96073d7

    SHA512

    14527ac5399a1a867dad622c51e2f5d0e28442a0193b968247e2a3195d0f32939310f4f1f6c951013e5dc1a37f71f36da344dede7409bebb225735f6b8665621

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    03c8fba8a58f1409d3e89dd2eb192b71

    SHA1

    ff2feb021faad321287850e8e173a3d51f9f3e50

    SHA256

    ec854847587c516d6688419f32f9ae5042d87b61bcbfb22bfdeb5677d2d11a71

    SHA512

    f16cb16d0aad7c65f1f04e2fbda7b734d15cfb32ff89a3ab1782882d33f65b968f8b85cd2845ac54e41dde5f6ec776442d72f3f6a73c197fceaf6d2a74a59c63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    649b62d1846af1078558ee3b58dfbd2b

    SHA1

    50a3dac89b23b91236b6095e7c98a56513f02730

    SHA256

    b6fee99cc217830d902d53c933894122257f006279b632709a5ff3e0c9182948

    SHA512

    c61e9099e28a58c314d7770502c8b986e8881894aa334c921924822ecb8ffa71938ef824c81530b431caeedfe54ef46a152bfa7019bf526857870a55a90ceb9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86b1da4ec72cbbcb0163e8a3186f7d29

    SHA1

    6854a80b32bc74b76b992b6601581337b2fa8296

    SHA256

    c98e0ae94685ca4d016c187a0460af4ee61a4bc16634fa21aea3329242197595

    SHA512

    5727c67d00af8f123ed9d7b6f1aa39aec8111f328d2886ff1373bb890aef0d801e47b7bf4d415d893fefec18db8b869b1da3bdbfbf37652c99370a9e646299d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8439f543dc312f8fc1ae3aac02f17f72

    SHA1

    05e3fd29a9e195b45e0e96eed415e8d160a6af7e

    SHA256

    79607f9efece29656d7dedfc3e93ae88cc5160194884b383d49baed5ae4d1861

    SHA512

    e2f58d96e1d89fc449434dbe2f049618ff4d0a1e5da48f616c7c3c4426b770c112eed5bb190645b49b404b6981761da5f86839183af77b876b426359726347ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6f03cfdd3f9cbe067a2dc956e82fb76

    SHA1

    b73ca01f72adf7468509e9f75453cc3043a660da

    SHA256

    acdedeecb9f557fe44ac84346cf9edcc84f75f9f0813de17fa23cf04a6915379

    SHA512

    d6319543bd97ba76890a239f9a7ba169c0e42a2664d52ebca7cec8eafbd5306f2333cc356b0e049a8f649d136ee30c01192ba2a29c1cb101132e2e4cf7fd7c41

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEFDE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF06D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit