Overview

overview

8

Static

static

3

aka451.0.02.exe

windows7-x64

7

aka451.0.02.exe

windows10-2004-x64

8

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

aka45.exe

windows7-x64

1

aka45.exe

windows10-2004-x64

8

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

3

resources/elevate.exe

windows10-2004-x64

3

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...7z.dll

windows7-x64

3

$PLUGINSDI...7z.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/11/2024, 12:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    8303b3a19888f41062a614cd95b2e2d2

  • SHA1

    a112ee5559c27b01e3114cf10050531cab3d98a6

  • SHA256

    9c088caac76cf5be69e0397d76fe9397017585cffdba327692ff1b3a6c00d68f

  • SHA512

    281b2ecc99502a050ee69e31256dec135e8cb877d1a6ba9f1c975fcfb11c062980ee6061d2368b62f91e392953ae6235dd726a9d98e6efc1302f7ed713099179

  • SSDEEP

    24576:dbTq6T06T5kJWSIRWnBIl70mfT76y6E65606F/HXpErpem:t4scj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2488
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2488 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2312

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4cb0a73146327005d51b6158fb7b33e

    SHA1

    eec1eb06b150dfe398c71e745d29950fbce614c5

    SHA256

    66be3a7cfbe092c551c6017c79a042c13e6f51485abbea63272a1927c89a9dfd

    SHA512

    1e1fe68001d8d563c11eb71521ba3473e96e39c5843f85f6d9ad86780d9e15446b4b9b887f1925aaf11923491a088478c2d8a0c836a77bdbb1271bfda4181d44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8af0d97ee4957f1b8ee169998d20638c

    SHA1

    82b9f21468f7dcd2d9b233c72e0c8352af405674

    SHA256

    118d2f327cabadbaf64447031353f77fd8036f5096e20d4575c0df8f63a4ad2b

    SHA512

    5888c5eabc472ee6799d336a2ac4a230725665b1eeb1a63abff5fc94d23fc19bbc26bd5f4f1b29cead56d676bf2d7697790886609574a1dcaf34caa1df321d1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b3e7e4729c55dfb84463bb5b1cd8766

    SHA1

    eac1edaeb8f65e27cf7d34a7c5b210eadcd4b22d

    SHA256

    f034ead93a7d8fd8c517f611e41f1649336829d22c575fe6b216d9243b56e614

    SHA512

    6cf6f73b527bd290c9688fc3250754909717f82d24092207ba9152f8f83206ca86eb1275dd0ab8a99e20d2725bf2745bd903bc5dcf976ff4a98ad7f724eae80a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2262dc1ff62000f7323f7f249b240f82

    SHA1

    3db06eb7658bc2f662907f90b8466635876e4335

    SHA256

    d04c83ad4a40ea5ef9ea582d1386956ad831c45202f714b35186c2d314659f34

    SHA512

    a0a794651d5a095b8a1f8a829a91c5fe0099a6568b3ed1921de07166bcfa6ce93b80be620c7bcf8f4cd7b12561da5cd29102e7d7c7b7c3cc990849ea328a9725

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb530351524f9e926a135329a1aa6de1

    SHA1

    8e68a694fb57fc5dd35c96d7758b7b4a03327353

    SHA256

    9b2405bc72f09709214353b7d04bf6d3844d4bdec6b83da2cd95c904558e30d9

    SHA512

    cdb093683ab8eafbf3264ad6265cefb01c4da003a7a0427fc226e2336cf70e55f98ba80de5693d51c2c6728ec8b0aa714c1b7fdab2b9d7ec556f592a605d0a23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    192f4a353608e948e2c7055a9695b2be

    SHA1

    89d3da44bb4ae0934fd7d5360687a0ff85da9038

    SHA256

    81766d8c60ed21d3d79253252358025bffeaecb505f0ffb5fbfa252c1d63bd7c

    SHA512

    47bbde21197d1a8c1e70a01519486ff04009ec27a3ac53713d4de63fc824c9054333f759852098339a0f70d7e48dfd9dc671ee937420efb5b8364adba996073f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb9d065bda16cff8117034538a87cffe

    SHA1

    507f4245a9c2222d65fd61f2d4bf8e539aea8c14

    SHA256

    062c42b4525d78727dc8a49aae1cb2fc75beead68809520f77c56f154a48960b

    SHA512

    9a7ba8f318987bde86b697685040976984d85ac92d246a2843666a39117e70582d6886bf8ce299b3f5e066b89d9a9629ae5bbddf35b9e7fe5aca150dd8fe6cbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fbf6c1c97b8cc0f8fafb4813426ba8d2

    SHA1

    646108aae985690d9ded5ef7b6e55ec300766116

    SHA256

    a1e05f6517597aec91aa40fa863101c626b8f4aab197166549040db42099c5d6

    SHA512

    0a5904b5bb391a1534dcbf2562394c3176c6d55bb9e290305e325ce3d11942aea66c7a5a418c2f02483722c032ca43098e4ca4d6c395efc88164053781adbcaf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8114dd0e56028045b40b47c014f1c98b

    SHA1

    eb716a4bc73642803ea5f7106b7328379001613d

    SHA256

    5f25e8a2a52c65d90dc3e971e95bca0557c983d8522524481629d87cc2a5e3dd

    SHA512

    861966512e59b7f63c91ed550ae9dcdfb860e29bbe8608dee7c21b76baa39350afd58393482152acc633bfb4cef9899f692d2c6e33aa3f85ec59caad7fe962a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76c52ef6e2fa4e298f044f524a206b0d

    SHA1

    cfd95d3c345a76bcffa87dc7d61391b94dff60df

    SHA256

    3691b217292ffc8a1ef4f581f650e4b7f49d6bd410355fa494b244956b11a099

    SHA512

    d15fe264e835cb7a378e86b3ed21caf99f6da7057ae5c6d3f64fb139859e383e905853b50809f49dda0bd8279d4dcdc019087354a81dca1ce788a7ffc265013b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c9006aca89427dffc28bf3433f82cc8

    SHA1

    eb366f15c83ab9121cd1e90e568bb6925eb399d2

    SHA256

    8a1c8364a9aa7e99be2e463615e7ebe5a442b95a765d0bbea65fe1dc600ccb38

    SHA512

    d89d1462f7abeacf163bba15e87aa029b472c0700d4cc2f01471be5872ece1a96bec993ca53aad2931cfc94b39fd1a20be35b5301f0e1bb68c59b628f9bbebc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b77a7f4e7cba1a32dd7e7c7a4edf1061

    SHA1

    410b6128fce3e8dc635c35da8537c70f7917d2ab

    SHA256

    99b8569331876d3a4f4e6a0fd5a27aed8db093662b6bb7a91a61cb23c87d07ee

    SHA512

    49d902c8cbf679d12d724eccdaf6b88beee5f3e6458d799260fe5bfb6bd5b416e4b1328297aba10df21dcd774bddffe22aa986e1dc2c155d91c544499da06bfc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71a6a3cd8de9fc026f1ac20928838e08

    SHA1

    38e3088383ecd849d81ac721a6f5f78a6a9ee7b2

    SHA256

    7d4f3599c502d67f934c94484f0b468aa8db6b51a932d3af1df61f2cc4210c91

    SHA512

    082947c68aad88b7386e3cc6994ed7e8e63a17273b59dc5550b6a01303ffc510ea2563c81646009a4de39d28b8ea94b3daa6d460ba69a2a6dd16962e58b5f3e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fec46169d93ad547807d6a58b277c3e

    SHA1

    34ea54d29b47f6564479a56f64984ad24bf3f33d

    SHA256

    857a4cfa50db7fc121490246099b0f3d587bbc7faa87ece18d4b221c1f963df0

    SHA512

    37e4993421706351e16d3716260c8a001b51f2fb14b6cd80ba56d6d5d0e5b2e01a606676d99abe94b743b153705eff604c37172efac9aa23252cfe05041ac763

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d131391da16771c050b2a96c32883e34

    SHA1

    d49122ac84fc1db71d175868a24e06118e9d69ca

    SHA256

    7a44cdff0f090e13b9fbfd4c00c2164a57c3a52c1530fd8b143826d3e8d1cb6d

    SHA512

    72941d1f12911914097b2745b088f83d1bd0f72cde7140df9d2e9e16892a41c374dc1761ff0f67de6e04e167bf56069f3f96179174f08e00c265e334684ac992

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f05ab48522187fbe5ea0b32450917617

    SHA1

    c1fcb2e37dcebb0aea1ac4993cd96fdc93ed868f

    SHA256

    045d02f991961f5322f13537a1b09141f19395dffc4116c54f2ffcd978e05689

    SHA512

    a76e8efad105f1b84d8097a870be7d4778223a0cb33350b3bb00b595234c6efc123e614f5105a1040a1db165e9d214972bc3c9158d5929f215058552686a76af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6bb16cf6fe86d5684be9a2ad352042d9

    SHA1

    ef6a0737cd023b07640a0187feda2bcaec411b52

    SHA256

    eec7ed9fae81b6607c626d3222a751ebe0e57c5c47937667b90989946e52d301

    SHA512

    81216ec731502901002ceddb7f6c1dc8695fa95f0574e1cc1488f1c7c09a3f7512aca1c9945a40567354604fd14bffd51efce07cc564bfbb5a1aff13d107301f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f46aa9522cc629b253d3d51b169bd086

    SHA1

    66b9a5f04efabcc270cdf5f195633effa574dc50

    SHA256

    92d439e4be265e8812903fada6e5215f9f07c38dd76e577cfb8e4d293e6315f0

    SHA512

    ca08bd34bfe8289933d1036fd83755b6b0d3a8d5dc0323e985a1b01ebf32fcc5068a284b7c190d38e0403d8949181b41fa5a845685b265673d35278d17d9c45d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2cd26aea33e33a8a9cea21f71728a34

    SHA1

    18631cfc73ae531b2b6c44f14a0bd38b61b63387

    SHA256

    4ba9950ac7b571d05b3c4a76e02b7e004c699dd187b34d9231ba28ca52adeaad

    SHA512

    3f963162f4d42328766b6ea34a93cd69ac442825bfeed43aa91748aca7639dde2103f3d208eb8623f746ab624c43c877d72b77c83911322204624d114b534e07

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEF13.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF001.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit