Overview

overview

8

Static

static

3

EasyMC_Set...64.exe

windows7-x64

7

EasyMC_Set...64.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

7zip/linux/x64/7za

ubuntu-24.04-amd64

4

7zip/mac/x64/7za

macos-10.15-amd64

1

7zip/win/ia32/7za.exe

windows7-x64

1

7zip/win/ia32/7za.exe

windows10-2004-x64

1

7zip/win/x64/7za.exe

windows7-x64

1

7zip/win/x64/7za.exe

windows10-2004-x64

1

EasyMC Launcher.exe

windows7-x64

7

EasyMC Launcher.exe

windows10-2004-x64

7

LICENSES.c...m.html

windows7-x64

1

LICENSES.c...m.html

windows10-2004-x64

1

d3dcompiler_47.dll

windows10-2004-x64

1

ffmpeg.dll

windows7-x64

1

ffmpeg.dll

windows10-2004-x64

1

hostsremov...er.exe

windows7-x64

8

hostsremov...er.exe

windows10-2004-x64

8

libEGL.dll

windows7-x64

1

libEGL.dll

windows10-2004-x64

1

libGLESv2.dll

windows7-x64

1

libGLESv2.dll

windows10-2004-x64

1

resources/elevate.exe

windows7-x64

1

resources/elevate.exe

windows10-2004-x64

1

swiftshade...GL.dll

windows7-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02-07-2024 21:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    LICENSES.chromium.html

  • Size

    5.2MB

  • MD5

    4247afa6679602da138e41886bcf27da

  • SHA1

    3bb8c83dc9d5592119675e67595b294211ddbf6e

  • SHA256

    bf59a74b4404aa0c893ca8bbe636498629b6a3acdff4acb84de692462fd626e4

  • SHA512

    ad3103f7fd32f0ec652bc7fcb8c303796367292a366037acad8e1312775cdd92c2f36ed8c34a809251ad044508e1e7579b79847de61025baf8bda5ad578a0330

  • SSDEEP

    12288:/7etnqnVnMnBnunQ9RBvjYJEi400/Q599b769B9UOE6MwMGucMEbHDuX0YnpWQZG:sPMM5FaWStHvmUKItmfDTeHiVQZp4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LICENSES.chromium.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1508
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1508 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1608

Network

MITRE ATT&CK Matrix ATT&CK v13

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f361d70a6be42c9ce5e8fb7be3e30d2f

    SHA1

    4b100dbd78043a0ef4542f0dd6967d4523357c20

    SHA256

    6d9f43fc62874fcf08f800988688a6e46a3debeb50375479bdec75ddbb6a7904

    SHA512

    f07f3fa649c7d26d5e4a6a7526fba8a05bb16b4ee97161a1f131bedd8c7f3fe98dbb9a55a218f1c92caa6bf7abbeb3c86f713ac86090a30b678599e8b5b35125

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd8fc9aed8bd7963ce24f9b1b49e909d

    SHA1

    5268a5ddb6a3bb8a75e9d2fb5686e4a1aa3fe972

    SHA256

    4f80267b01369544e43d1e57c57a9289853b5d49add1a6ec6970091de4f8eb22

    SHA512

    d1d0da4d45053915d0ab23ab5cc2974028e362169f1c0f9bb5feaba5a3ef632081dc36f82510d1b5ec66c4cd980c012057599c7e78ed4669c5fb3d8d6bdc47a5

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fbb5d955489cfa06b9660643978d2fc

    SHA1

    fc5c348341ff711404fa512d25daa95bf19e59cb

    SHA256

    27501583f52e8e43f06fce37ac60cd569e19d1a42a0d70635395208afa1e87c7

    SHA512

    f383dc7bbe1da415bc151e26a6a17e3afd87941072979c8cbae5352f1b2b59823353819254877e049164dbc67e5177bff1aa41267325e5c225e86d7e269a225a

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    468e1aec465a7381bc48cb920044a879

    SHA1

    4dd676514c6670ba2ecc6ae11d6a16fb15007eb3

    SHA256

    7940dc9cade5148f2119d38155ae2b03c4e20bb8a4689d8797b008e9ce3f1a1b

    SHA512

    c286200baf28b37469ebb097e8805548b94b65faaed004b92f4bfec442a2424b910bd41b9be11968e812e2c61299d24dd42f65a2063b683c00419d1017e88a08

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c60b71f9a99b20333eeda11d9351e24f

    SHA1

    f2a8e8efea3e37875700d1e12fd81456e964e2ea

    SHA256

    82466e24f1b1b7b4f94f777887ad3f5646cbb0a2d3b74fa52f3cdc2cc62d22f2

    SHA512

    51c50c4cc2df6a7671838e9ee7fdc34b940cc1f7c9af013eec3f60a9b04b573f311807b32c41db30d197f751c3748cf059b45dd1090a9bf4132a7667ecf85181

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4a2ba3ab55e006e7cda4e292bf13c5ad

    SHA1

    73396ed510b9dd83df79ecff15ab94e2b7768a4f

    SHA256

    287da243d880c65f98d712fa392e68adf8916aa33a20ecbeaa9e4258b630deed

    SHA512

    ff3c266022bd7fd65699edaf13e38eae13477fcb57c5db2a299d8136c04b85f2619fecfe4d7deb520cd4d34e7395fe7a3158b710cacdf29833cfd89404fc11d9

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59636a4f52bcbfddcdfee04f19942db1

    SHA1

    d79f81fec358b4e1c830e817def70d6da0d0b7c6

    SHA256

    e4d0e96f7ede679cefa44d5040d4ad6e6f2f748565e90634d8d21c3ab186ab42

    SHA512

    af762e432de549b8936ca1fbc82c4debb978a0fed26920f8db71329eb4472bcbbbed34f237c41314fe3f22947ae3de87ea8cff354dab2aa123adc89403c912a2

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46787243b3fb7914ece693b915734bdc

    SHA1

    4f1e90879f764dfea57ea067a2b213d55451d65d

    SHA256

    da1f1a7d03620fac04d2a1b7bd32e644f0ddd92f6753a786b9bd61452b54f8f8

    SHA512

    a092d4f72d4b6437ba40079cb6c364537df704df97e53b4ea457cba940ac2ee14b4b0f5ac02e044ef397488a496504ad53aaf46e1681319a57f08d1320298086

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f40720684bd8d9c10ba4180638cd2b9

    SHA1

    a16a60198a53eec6c242ba46451b2c6cf9578fea

    SHA256

    377604ab56d4f45adb226bc3d8a5e734d73fbbafa8941dc98a1a5f3136ec0b13

    SHA512

    f959a8bd8f66d7e8ccfe549d86a52508e248e2dc46d21ae957d2bffcb0d2fc3215f8ef61e55f6bd4b369fac15474156abc7b8753554277fcad3404853daabf6b

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3421f3ca10987fea818da6c64d423286

    SHA1

    7036ede5f632e92a37ad07019397dd765de64c40

    SHA256

    b7665c9b0ade2ddb61a4fe63a29d57580cd652ec47918b2b88ef6c66ba5d082a

    SHA512

    d9aa302bfa5beecbf536ef4133ec5bffbebed91f0f84707e899625765c5c05dff3dc799ad2c461ff852d8db02b332935c74c102e7db4301a6ddc3bfa7b4c3bdc

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe4fe1156eba976aff99427ae37a4cdc

    SHA1

    be7c71de2c3144841d3c06e97335e4d9394c4bec

    SHA256

    606c5d986034a6e129b27024d7a049bd3e00b2ddbd2b785851355524a818d036

    SHA512

    534dba147c748baa95d23e25713d3b27b9e731e08a5254aa78da6574b78e04ca4fbca1b7eddc7ef66d6baecfef2c586d6b5dfed5c42994daf58639eefd25e5a6

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c3185bc3f7ee3aaeb3f42bb20a7d84a

    SHA1

    7f149364fb330d07e3d506180881727f59e96f55

    SHA256

    5444846b842d0b1200d1fe5e3aeef344145640601e75882321180165d3b76788

    SHA512

    9f917341eacf850460b48ec776eca098a5cc707874f9121b7d4d4198118660b2d449c68bb5e5119d86c1e39dc02ef972794d32e2d0195149e6219b9dfad38f2d

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    25c7467c5ca748aeaa0ee0e402110334

    SHA1

    cceb9423c2a36e4731070a6a4c8a01e44cb4f579

    SHA256

    8c7a6e8874877edb6c696c5c9c86566da93fb57604bc60c1b4375e32b4ba5ad8

    SHA512

    d53aa64ba073b22f1f4a941e47a9bc73b913dac4b6ee65fc6bbb73056394ba72275091013a9978bd3228084c55de630db1b400193c180e3d3b2971dd68fdbf38

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ef47e0a219c492fd09510e65c1aa6a1

    SHA1

    84a800c92e21e943281c94070c857951486cf939

    SHA256

    ea7bfa2a7854e0bd90fe4016477d078162ff805c1694b6395c669ecbed9d6a93

    SHA512

    e02d6735e448b996c4ab5a92c2c436a972d715cb9237838b2d0ab0d22e3c6f702cb71984bf8c300b3c4296eca4886abc7c75098b0cc3c9ca8630b48209cb0dc0

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f83e2a21ba55294a36a16fa71807159

    SHA1

    cd3aabd11154d9f3a5ab2e80ff1a5bac0f4a6419

    SHA256

    c4cc9dcd6af07046ed4caab885a6b67946ce61b52ebc0a73dd24c4deb27a997c

    SHA512

    994caf27160f32c1e1e73250f99e5a2b77bc1bc139a90ff63dfd6ef1001aa1755f8a753778e6ddb57eb25438f8ee61c977ab0b368e427162482f90438e2f1c22

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74b1d5c9d163712c144749181f50b3ed

    SHA1

    ca9fc4500686844c3144d7e9f5b58602ea8d93bc

    SHA256

    5a6137dcdd489da3a4e9e9fd7f995d57b01b0771cda682f2838bc6add02e89b6

    SHA512

    4aca53805ba40a7428ff5fd83ff34ba70e87d175031449183932c5e1d32e38b863600207dc286664dc1c115eab0b4cdcccda1658d06e3b3d3bbf432b1e230068

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Cab5BF6.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Cab5C87.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Tar5C9D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit