Overview

overview

10

Static

static

3

DupeMix Se....0.exe

windows7-x64

7

DupeMix Se....0.exe

windows10-2004-x64

8

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

DupeMix.exe

windows7-x64

1

DupeMix.exe

windows10-2004-x64

10

LICENSES.c...m.html

windows7-x64

3

LICENSES.c...m.html

windows10-2004-x64

3

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

locales/af.ps1

windows7-x64

3

locales/af.ps1

windows10-2004-x64

3

locales/uk.ps1

windows7-x64

3

locales/uk.ps1

windows10-2004-x64

3

resources/elevate.exe

windows7-x64

3

resources/elevate.exe

windows10-2004-x64

3

vk_swiftshader.dll

windows7-x64

1

vk_swiftshader.dll

windows10-2004-x64

1

vulkan-1.dll

windows7-x64

1

vulkan-1.dll

windows10-2004-x64

1

$PLUGINSDI...ec.dll

windows7-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    23-11-2024 15:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    7.9MB

  • MD5

    8303b3a19888f41062a614cd95b2e2d2

  • SHA1

    a112ee5559c27b01e3114cf10050531cab3d98a6

  • SHA256

    9c088caac76cf5be69e0397d76fe9397017585cffdba327692ff1b3a6c00d68f

  • SHA512

    281b2ecc99502a050ee69e31256dec135e8cb877d1a6ba9f1c975fcfb11c062980ee6061d2368b62f91e392953ae6235dd726a9d98e6efc1302f7ed713099179

  • SSDEEP

    24576:dbTq6T06T5kJWSIRWnBIl70mfT76y6E65606F/HXpErpem:t4scj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2964
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2964 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2480

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b22874074cb9bd07da1887917d0f6135

    SHA1

    5a6d5d0d77c2a206ff146e31314a441defaec900

    SHA256

    ba66cd1f2df55b3804f8e5e196926eccacf4dc77601fb5c9ea4070e0c3aeb537

    SHA512

    d1af38fb5ef7b772d544b30f3220212b74cc3add58be0eecb5f0d826a4e7a8cb291d761a429ad1233f71512118243d53cc971fe03fca0140e8a0de336f0d8393

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67d9cc3224e18051d2147d8312055822

    SHA1

    55dbf94144e8d8127b2acd0639b582a240556d50

    SHA256

    d0335f58d96318c86bc39cb3ef710c35a921903dbfa06145ee408816118f4833

    SHA512

    f92f5e2a9080cb4251613e183b69cd9e73eb34bc65f01a67ec721161c24483cfd5ed768c9b43d8a4bf7f36ebf1b9ccba3231ff0cc756c6a49efac1cc62a6058c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    64c16bed713b4268c7a911afabf04b58

    SHA1

    56772c509a16217690b0eb099967b6745e3001f1

    SHA256

    765b9ed09317c5d435c0c7a13b79de331ce7ccf1dd9ba971aa8e01e88dd669b8

    SHA512

    f9e771942a5716a5ba30e9b7d729cce4ab5ac3fb335a40459522d8f9dc10c03312192acdc53fe1dd045fb486338e6582f7d69e78053ddeaa9d84f2f76889fe66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3ee7612b9b53c418f914c48a291d1ac

    SHA1

    b79de0b2a27d1100db50c1cd1739f0e2f08c8625

    SHA256

    d248357f572f272681d740d990065c6b79d6c6c414b942786269fabc51e2b0bb

    SHA512

    06f12f610d9f9590e45396fd89ead5f953c0fba6a1c491ab4ba1435e9378fb8cd257cc9444a9ea21fda529a8e39d75dea77eaebae39cee14de98a7f0c8beeb46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3731fdd4a0a0a1e41bc5d17e912770b5

    SHA1

    fc1ec02e9031afdb98b8a8c5584b8b27af396c2b

    SHA256

    0fdc4e3e090dfe8dd7513001eb0bd40281dbb06c608289dc696b359ef6d37b0c

    SHA512

    bd22f1c574c95a8bf5dc17246da3f56b68812ffa099d01c1e79bc7ee437ce2bfdbb575d716707d95c7279866d6f8f4b359af25431d436525b371ff8fc235ac91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf0dcd0db56068d9163b49214f3433e5

    SHA1

    57204d167d12bd3edf5ef5b8167b83302f92de15

    SHA256

    701b17a5853419edd06dec7f02d6ea66c771cb2468b330597637fbec97abecd7

    SHA512

    88494de3bae9b6b2f9b78e3fe6caf89a71088fbeeced090d2a9bd75ed51b0119b1744206ac372d943e1ba9b19d38cbd69618ce66cd0e085c384ebf979accc457

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5aeda607d1baf020e27f7667e1db5b78

    SHA1

    91b09f35dc3c44ddc93f03f43c811dbf6ba32fff

    SHA256

    a7f8aa18b0c5f82cadf0b63592b3b9ad0f1425630742b893c4f810fa1b777ca5

    SHA512

    5858379aede859751936504a0eb3b681a794d9f893284036cffc4c1f8bd2eb121335c3386ea61c2b3c020f8d22bce091bd05ca699ba873cbdc7b22734603b9de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3d3c358af8fe9767105c36a9a39fe69

    SHA1

    153d3aa4614f8f55ead7a416ebe4bf53dde6733d

    SHA256

    f4ed433df748bbc93a89a934213c4f2687ca05372ffb9059bfd846d39c7140bd

    SHA512

    af223a1815c1ca60e2a75357d49e2b5c20e18460992e96125dc63e4f95c1c042175847aea70c9b2489f0f6991d28b09c3428d3b7a3dfd387b83de73714f17c86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae37bfd207c0f4382e5d43d8c369a603

    SHA1

    3c0733664562fff57f54c5caef0a0c162c317c23

    SHA256

    eb6da57ce2a13635aa6f1d0a5d8ac9adcae3fab5374855e24b3ee9c457a5b94c

    SHA512

    3fe21305f5a757461b63b08c5ff7e2ba3f18d37d3eeed53d6c3b42014568e6769062487de5731d2777a1ec8c9b114de289b1bc51f2c136a957400fbf5f91fd89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ebc79b98738e83f327df569e6270ed13

    SHA1

    bb467833f425fe6c47ca7139fa4bb37bc0029930

    SHA256

    d5205bf231d214181584e8278a35dc8d3452d71eefdb39bb1845d3e8f949588f

    SHA512

    a226a2fa8ed3685b4888e87f4e575092cf686352b21324c5c22cad032c913adb75ca7004c808b81dc2191febc39a414c2b1bb6de8e21aa89aace6d4a95d467ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2bbe7a100c7d056382e77b1639c6b2e0

    SHA1

    e2841d15f08b8b361c4bcc6c55105ed6bb889a4b

    SHA256

    334fe140ee5219b7b88eb7dd6636ac17af5438d06798a952087949ccf770622b

    SHA512

    806ca59125387d451b8e5e8722eb04c4548c67381ef892e35cc5567b8d3391d17785061bde114ee45e5823e04928c69bbe2f7750e8f6b2b8ac76c4dec5d2278c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cbff8f32739797d5544c6894c7603f24

    SHA1

    ce42ce2b691103f6b085b8b3eb15953019e1a63e

    SHA256

    44fa556a856a5a24794c88cff6de4546ff3ddc715715d718ebd0950b6608f3b1

    SHA512

    b895dfdde9edfb381f4284ebd77e36752ff6a60962b4d174b607bd3c50b3de7c3a0619caca7616aab12fa08c4cb46b62e889dfe109941e405aa0415af3834b17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5834e24093cffc625e140bbb3b09ab0a

    SHA1

    5666017f61e104791eca7d02a56bb1514f071d5e

    SHA256

    6dd3a28f685e263b5aa43f1c1fa6edea851c8520ebdcee16df34f901690600f0

    SHA512

    cbf52233f259bedead892615f93978584cf9cc76102ef5119d403437294aa0c01bdc608fe19673a8b8339cfdfa7284625a4f6d240c5d77e90489fac546b7d04b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de9ca610e8818c3d98aa78dffde23dfb

    SHA1

    634e68981094c84d9ef2d83ac5bc81182f2cfdb6

    SHA256

    91912f88169975da5150141d406cfba462a1048a1c2d909dcec932b7fe201020

    SHA512

    99a357dff4c752bdf3ffb0887e06c3429deee55ec3f52b5c47a05a1896bf378750a9b464da684dd24ada75500def07842ec5de632705a2f5680086bdb1c69d69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0fd405fe660bd945603c89433bd0187a

    SHA1

    83b5edf4fe04e9213d1f708a27af3550fda0be01

    SHA256

    f1592715a106580fa892ac3aecbcc5c94c860daea3b21821d21f763b1f67dfbe

    SHA512

    ee4752db9e16b682ec1b01bfe92a6a1cff781ff252306673fd54f65e85c356c6ff228a5f5864cbf034f5cfbdd47abe148bc1e0583e2d8b265f3ce270ad6ef1ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3409e02464aac674ba2846a427ef9ad5

    SHA1

    383a860ad0ed7551a13fa94f8ccd07d8bd547cc9

    SHA256

    b2e4a4044e1b324e7d800f1e8f41e7fdd9eac5184482e06d105b8d02dba070a2

    SHA512

    fdfd761d75c2ba6c11d7d39e4bb69524cde1bfbf77d6213d8fe6fd3373a72a23901b5a91fa3f835a6b4cb3ede31ef627eb91ad01aa17b605639a3f72ef74bc47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    834e1e0034f71e8145c29ed1f29ac505

    SHA1

    6de74782817b1cf770b5c142a13c8d26a9897e79

    SHA256

    2ae7dd8c35534c54c588df8b0fa15aa84a77ebd4e56927a52870265de03b29d9

    SHA512

    754ab515f2c584a174ff44584e868cb6a9b9bf82bea6d5ab59f1c8574a99633753450089f54ca3ab0ccfa79f28d21a8c747c8893a3a3299484d3a187abdf00ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    796b6bf5070f4076b356b180de46908e

    SHA1

    3fd05707bf56ef7438a1341864db116f15453630

    SHA256

    b7a902d8d9fcbffd399dda34e3258bfb6b9893484d3d0c9944ea1a0cbdb8da3d

    SHA512

    59b151dcb42c3dc46ec0b558326777dc9e8988415ececbe44298b44e22ab6b64bc40b26fd1ff1fc40565cb2c9ab53a34d6bb8920ea08200e2d1f96120d4999c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbc21ed6c09cd243d5c1e532beed0832

    SHA1

    68e819b74cd54d20e015627fcfd058dbaa56b7ce

    SHA256

    5c94d09aa608c6923398c6a9a0e8d104890c75509308bc21dd8ab8a8a116b88c

    SHA512

    1ad58a1d71763e83a4bf6ad0233a0c9d05446f6240698117702278871b5e236948b0ecc864fba3311f320254dbcc116acf86166f38301f899fa3260dfaa840b5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF2CB.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF36A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit