Overview

overview

10

Static

static

3

FoxyPunkSe....0.exe

windows7-x64

7

FoxyPunkSe....0.exe

windows10-2004-x64

10

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

FoxyPunk.exe

windows7-x64

1

FoxyPunk.exe

windows10-2004-x64

10

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

3

resources/elevate.exe

windows10-2004-x64

3

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    22-11-2024 12:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    8303b3a19888f41062a614cd95b2e2d2

  • SHA1

    a112ee5559c27b01e3114cf10050531cab3d98a6

  • SHA256

    9c088caac76cf5be69e0397d76fe9397017585cffdba327692ff1b3a6c00d68f

  • SHA512

    281b2ecc99502a050ee69e31256dec135e8cb877d1a6ba9f1c975fcfb11c062980ee6061d2368b62f91e392953ae6235dd726a9d98e6efc1302f7ed713099179

  • SSDEEP

    24576:dbTq6T06T5kJWSIRWnBIl70mfT76y6E65606F/HXpErpem:t4scj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2288
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2288 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2324

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cb5ff173d54601d4574a42a33891da9

    SHA1

    4bd4e09126d425e71bf2a7bc6c6f42bdc4a2649c

    SHA256

    488be000c6f52b995e9054e417de1ede1c302631367966656728905154441102

    SHA512

    286d142dbd9842c07c62e704315868377f64808267f0a2e881fcf07d70f98245600ff4b8956680152331653919885da619d230500d8a5a7bebe9c2bf81159658

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1bb66bd7a6aaec9661f3a1c73a7c8c56

    SHA1

    2d7a7dd3926bc6f37d5dd6685b83f35c7018784f

    SHA256

    9ee803793e3c71e5bbe01a0c68b02bc62641868d4792382f7872ea475eb9a33c

    SHA512

    96ea1a2b400a6d23f72868119a555f570a1846072e0df6387fc61c0a512389e7cab95766797367ab69be744eac8deb5c1957bfeb39cbbf394a7f4ac34394c059

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    92f78956442adb8cb768a6b4459433a0

    SHA1

    8f5fad99976c3535d6a7b655b305a3e5aba04664

    SHA256

    e240bb29d198119e009d05ff3b86ac386924817a30c996e2038a2ce799995791

    SHA512

    8f7406ba6ab8d32becaf74067a0ab8d76a8116fb61141b6642380c6f2bcbdf18c6ba0925e0ab1cb6217e8471d1661a4cd022c3fe0bb56b06e36e2325cb5d174b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5484faf9ed68bf5a57b4eb2f1915e3d8

    SHA1

    3d9222f1dedeb11c40b2de960eecf65f1de6c489

    SHA256

    fbaced2fa48b6be78e85251e993005f55484e86e950ce7bdd403bb1b35f58a5d

    SHA512

    a000d1115b39e5c71ecf3096c955c33b9aa020edfa70d488f73bd2c3ad9d7757f612377bdc7a7d14493c8d938f6e6c48d4751fb00f1accf8fe10dead33836e8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a2e4f8100ddecb1ad37b428330907fa

    SHA1

    6f2ea56fe4807e05a41f1424536148dd73ed63d8

    SHA256

    9deb476ef4e6b3070ecc9db815134df5e76668f6c997164f0a76a9bbe752f3fa

    SHA512

    60798e35e3d14bad161c70a65aea18dcb664b9172a00f2e96d5658c6bc1538b2e918d686a0a22e56badbc07e89544cf6518f9221fc1ae9c1be4f15c9de9d8e08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16973117d66f0338b97e38d4546daf2f

    SHA1

    d219ced7e10a640477c5554bca080d7ca57a7457

    SHA256

    d31a93b2da288806b1d7a0697e6734df1ea7bbd7ea22c16f12651e5f33799646

    SHA512

    29beea6aa5e49c53ddf55f9fa1d0e86ea249724af1d867f301bb74aa7cef83ed7622f67e2e26f50461d4781f56eee0287d48f7202779385133ee948efed91e0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    933a878b7e47bcb19e1c81ecc381356d

    SHA1

    d5000198a151ccf8219e470066a36c4d5b02a3f3

    SHA256

    ee0c02c8f614f9a32bb6f30c7f933220dd972674ad76f3360cdab768133a3444

    SHA512

    9f3eeeb3098d7e86e03a5acb51d2698a3c4ddafa3938f542ffad2d81c948fea585857af1c54f73e4303c74e85eaf65cff55eb42451e9d27e012a66d68fd8c24e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6eed63a4594b107829bd6cca97f1254b

    SHA1

    6944096ab6524232e54519a4b15fa83ff413adc3

    SHA256

    50d06ebea5df4f9c1ebe7281887485c7e061b0ba3679e1c30e2db5b68ed0ee45

    SHA512

    8c773eae1f640a16b36f02ebaefc5392ad95efa601bedd390a74eef905712525b04da455cf2355f833904715668fbba990df57d6adad10ec5287c013158c1cf9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23903dc36ad2876bd8511d567391eb24

    SHA1

    a84dc7e8d1e36657577e5bbf578fd617dc419aac

    SHA256

    98572275bb2f07837568fdcdd3c9d8fc62db219cd3a9d44f3c0a6799b6daeaaa

    SHA512

    420446828819d18ee4d41122812c8a0fb83278b88ca60c499cc95f0d570316c256bcb0fdcb8898925690f5bc721acf565e74d08e98952ea8e049cf6dd6c241dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b9eed171ef96a2d6a273d34d1830b09

    SHA1

    83af25e6ed97d5b1e7a9020b662627cfc1a2a81a

    SHA256

    b67d1cc2aa685c0d72bcf76e22b5c45707861568ff6160f040e6fa9bc4edbf69

    SHA512

    8e0ed3d3095495ae6d62234f1105e54fe3bbc8ef27245e86f03da9a11a5bbb79e1991a93dccb97f06a955eea12cfec687f6a7da50769d7c44d62b7fc769dfd24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7a5434ba43f6cdfef59bf8ef8aeab10

    SHA1

    f01520993ccbb068f88f6990607b5fc9e26a9f7b

    SHA256

    e8679545a1297d2039b15ae7cdfefdf737945d678952ef199fa3f5a69fb6874b

    SHA512

    9cab177f58eeaaeb2d7215f63602909454ac4d1f21141696baadb5e8aeb00a0d7a5f42d90b02757ea429c573011d5e28f7a5aaa56802f7b100b53372b3ad4879

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c6bdef71cceae859ce8182fd1255c79

    SHA1

    9ad36e6540322d9fa7c29fc47752cae66326d6ae

    SHA256

    c9ef93b757afdedfbdf466d8c5c4688c38bda797328608e3623a32d911fcaaea

    SHA512

    08139ceedadec6491463329f21b1b03ce305fe28e62ccb2643f5e5ecbf198c47c38ac4101632415cabc65356aa98d82e7b5080b34f2b9dabf989188c222ebdf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e7ef6eac826b269c3193281bf5065ff

    SHA1

    6074fd4f2314e1e520113c0333e9261fe4d0bc97

    SHA256

    2e6dcd23ca7bdea7a549930ba6c0deffd354dc286c165c7bdddf268ee011cf50

    SHA512

    2c8ee00575be5ea50063f06fb111c6ead5484848f7e8be9809b092138acb16ab1d936f774c2c228a0da739ffbe5bb157bf87ca5288413debdd7b9cbae3025623

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    042c662267e118ac3e96a4662beabc18

    SHA1

    73419579e3950abf622f533f7cad08b368833534

    SHA256

    0cb491c6f389f897581fcd88955eebf1ed46b0cb772f394f9deae1d1162db2f2

    SHA512

    1b36e9bcd17eddcbbe248d353475c16bac61a744e322a92b81d4e99c72fdb4d874f8c98f2bd0ff4b6e9d025777a84dac5347a716e5517d256ad9994be55ad917

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59745c4f7b4c9bf11723c6a07baa5ed4

    SHA1

    54679acbd9a289d8a540b4c9e1f05361c308c254

    SHA256

    bc62ff143fe07c40cd9816128d4729c879fc9857041843d46a015108bd4c4781

    SHA512

    5f2d46e62aaa80ff62154e9b7c296a0153e404b1fdc52bef62c60aaaf7346395d8aedead9b5dd7f3813b8e22cd074514f7531c85c7edb73105326ccced8e946d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    818e047f5af7b68a32cd91b1d28175a2

    SHA1

    d18a9f5d5681f6897506d3f986eddaff48d1d990

    SHA256

    9bff7e922c544967158bd158904246ca3db69fe240796e11db7c591b21e0b0e8

    SHA512

    c8a92c62b54f8b260f5480609bc270df3c8174a7cea57ffdcf721b201f5a377a87a67b18a2487ccfcf26225a41ff16504778f19f7338babaa49072e00af05c64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    62433b8491b1a7e8bd6b608cf74a9fb3

    SHA1

    d289a73299997dab1080bc5ee3d2bd09547e4ec3

    SHA256

    338271e0af4faba8593ac38f52e0ed43aeac0c3447e83789936225be146485e0

    SHA512

    95a921b917a9b27f101d997abba6aee08063ad0df0404e7abd36f7af7f2d8890bf93ca421b52d790b64b7f31dad9ea557a5975c497c45930c1ede9a40a8dc711

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd5643ff012174d17d3254f468774daf

    SHA1

    8d0b26f5fd4efcfd2f742f0b22a3027b6d3246a1

    SHA256

    446feb351ca81ec64c24d71ff303d205a30f70044ccee4d4c334b694c334aad9

    SHA512

    8742e04e3f26708edcd8e11d44514ef796d3517c12e2909fe09f9aa1b70fb0850fa413342d4e3ff8c12291c882786f5b90d88743c7073973d19f8a7065d7c653

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    960ccc2f98d170d90e1545d750e3b586

    SHA1

    da90670a9a8ed6aa6acfb581120978f0e90e4eba

    SHA256

    f0255bb98ea55a2362e8842fd7996127b3a458a04794d75fca0f620257ef5d89

    SHA512

    63ef6e9fbccd4d8dc88a0c04ac5bc60ae0adc4e5318d3a431bc248d376f8c73f293f2f26a7ec4a19c2a9e538a00d4f74ead1cfe17402e44e38401e23014b4629

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA1CE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA2AB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit