Overview

overview

3

Static

static

1

jar-infect...ib.dll

windows7-x64

1

jar-infect...ib.dll

windows10-2004-x64

1

jar-infect...er.exe

windows7-x64

1

jar-infect...er.exe

windows10-2004-x64

jar-infect...config

windows7-x64

3

jar-infect...config

windows10-2004-x64

3

jar-infect...ll.dll

windows7-x64

1

jar-infect...ll.dll

windows10-2004-x64

1

jar-infect...ck.dll

windows7-x64

1

jar-infect...ck.dll

windows10-2004-x64

1

jar-infect...rs.dll

windows7-x64

1

jar-infect...rs.dll

windows10-2004-x64

1

jar-infect...ry.dll

windows7-x64

1

jar-infect...ry.dll

windows10-2004-x64

1

jar-infect...rs.dll

windows7-x64

1

jar-infect...rs.dll

windows10-2004-x64

1

jar-infect...fe.dll

windows7-x64

1

jar-infect...fe.dll

windows10-2004-x64

1

jar-infect...ns.dll

windows7-x64

1

jar-infect...ns.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    903s
  • max time network
    905s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    08/06/2023, 21:13 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    jar-infection-scanner/JarInfectionScanner.exe

  • Size

    25KB

  • MD5

    f953be311c44ef80366ec2acf8e2afdc

  • SHA1

    215bc84d8d6d93b47e4c164d5eb9a65290f9a557

  • SHA256

    94fbc2ed1a96f78ef82c8b452c2c445cb9d882eec2a8cdbe637595452e9e6980

  • SHA512

    7a1be2551dfc0f3f82f3990607df12f6b796cd6ce16b53eb79e469bd5efc4b9bed674a5c16ff8ce65fb185264689d8471d5232ef8049e59f72b2581168926531

  • SSDEEP

    384:asSxezDbi7bmT1xwjvdBmd5UEGLQP5fGfIYiPWsav8JN77hh3wJI8S:asSSSKRxdAGUgYiPz3hRwXS

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 8 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\jar-infection-scanner\JarInfectionScanner.exe
    "C:\Users\Admin\AppData\Local\Temp\jar-infection-scanner\JarInfectionScanner.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2040
    • C:\Program Files\Internet Explorer\iexplore.exe
      "C:\Program Files\Internet Explorer\iexplore.exe" http://go.microsoft.com/fwlink/?prd=11324&pver=4.5&sbp=AppLaunch&plcid=0x409&o1=.NETFramework,Version=v4.8&processName=JarInfectionScanner.exe&platform=0009&osver=5&isServer=0&shimver=4.0.30319.0
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:1940
      • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
        "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1940 CREDAT:275457 /prefetch:2
        3⤵
        • Modifies Internet Explorer settings
        • Suspicious use of SetWindowsHookEx
        PID:876

Network

    No results found
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    753 B
     7.7kB
     9
    13
No results found

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2b29ac59b6fb06341363667a8fa5052b

    SHA1

    2722adcc98409f039380f93b148d0e77e6911239

    SHA256

    c2be5794b06c11aecf4a4e40f2fad97581c0d27e256d5206e5bd2e28b7c0fa8b

    SHA512

    783726bf8fd67748309c2bc4b9db1ebe5f27d2641eb11af5dd03ee66bc46be063a7ae25a339fab1331715a3944c6811c59164065ed44f27490a460a7f5dfb0ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5dd4c16680003ebe27a5bcf3a427859

    SHA1

    3c7cb86b8e0ec2a204b8f608dfde9350445497cc

    SHA256

    bd7679655f550cf289fc6a1d3a0845d21525c9e2dc664dd13632942533e25c42

    SHA512

    9647cf577b9be31b5d628bfe0d08a5bf16c0eba35bccab29fcd962724d016d0cfe4759de8293f254476e4de4833b962ee77eea26914894eb4ae3539c00d1efb7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b43d9c43fc33403b72a1773202b957af

    SHA1

    467fc65e8035e85d30a20ae4c914af213985f8e8

    SHA256

    8019f14e6a82bfc19487c64ee0daa1852059f1d3488864249059f3c81cc5a13f

    SHA512

    596adae917ec47886e415a305c4c83cea4bcef69cb7528144cfe727b191b8898aed11d0cca2896d26214e31a3c39a87631f4fb08c70edcf986f816536b3cd26e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d7474ecf1b402308d5575cc9e16bdd2

    SHA1

    3004d6110651d5906f378389c73a4b52704426c2

    SHA256

    10d066a578ce0acf4248213da055da4ce1bc6d9038e18136e36cc5035de803e9

    SHA512

    e08241c290f0741a87b29a3042b4a5dcdc2b9d9e2dc2a5fc4240b7ae706f28b2078bcf954964d5b816c8bc48ca8ee400e9268b3b1d1ea4fc85f0f604a74ffca9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4c5824a89f5effe43fab7c60e78dd97e

    SHA1

    0c69fe8002dc2acd8ce625375ec2dff6be62089e

    SHA256

    d0226c4c9a205c3c2892fdf3b6e44ddfc147672e7e986341974066b542d09502

    SHA512

    a27aeb4666c02545dec724001be8b157ce6620c8ccef050c60cf9e8a7eb5c9ef2ad37cdb4a1f9c29fd80b6f5fa5a2d2bc905eca88521f4f8b72ba2835baebdbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c390aac7b03c6d48e301adcfe3868dc

    SHA1

    1e7639f25f107a2577f8ea1ce99c2f84e09b3a25

    SHA256

    d7fb2e21ea9dadacf7885a564f9b822fdeff9433eeded1fa4abd109e1f2bd6a3

    SHA512

    ac40ccccb67fb17b3835ba6a1fe94c9c504678188bf7b8a394f8f271ae636ab4bd32aa8aef2a692bc1b8ff5b8321a27a7fbe6d130ea13801a3123cee59bb417d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ee8949c6dc588087144fbd9393a2a49

    SHA1

    09826641acb960e2c1b9dd01b7a966e484dc33f4

    SHA256

    26a8141074784cad7b662ae2db6ed658833884ee8df3cd70d84bd697c67aa50d

    SHA512

    a5181ca4733b78763ca241565c883ca49f1598f6aa01592feeb2fdd46a175eea2affcb5b735cadb01ce3a60d4a194052e067fef9f7199d52f44697c04d428870

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    05d4720c5c2c599a610b58f8d06a6ff6

    SHA1

    fe5e4d8459c47aca613b9484c2e9271ee2c91503

    SHA256

    d49725cf83b371198b6541c2a99bde9a23abafeddff39367512721b13adaf191

    SHA512

    c9e6e26b5452bebd5e3f0046dc2f88f65f8d94d0b11beb07bdfb58f5c125f419e40b33d6975df44e9f01044164d89445e5cc179b7c61ecb0c4481ba726a95f95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    469c3f539f98889c561662ee5ef2cf6f

    SHA1

    73c937e72157798c003ad4ada9687a7b338dcfce

    SHA256

    20c18b737f4c2d58521680309f280bab6a708e960fc3d9cb8f20c627733d3070

    SHA512

    a30422b684a73c677b5c8db99c626c279184c90677b140adf5d0a331e5eeb7403c4ffcff45fd716296c3104e92725436cc925559abf152df6016356aee0939c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c2b79daf3be6aeb398e5cbc11b349c4

    SHA1

    b0a5a79cc4f3bbee513c8f1cdcc28bd8a70b8d98

    SHA256

    edda1edc84c42436a41b6281970ea623c2319a588c8766f544ee5673895b9f1b

    SHA512

    f8f67f3430ee9d4a906d1fbda2130bb1449c5b7706e9a0cbb1579db62042f6ad17b15603e31518c3e294f72b7ce4e46d9ca46a1ae727e173b6d32b1cd05ee4e1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CMIDRLTB\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7E7B.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\BYS5P01B.txt
    Filesize

    601B

    MD5

    e89ed0a1df985e47666bb5ac39c2f16c

    SHA1

    c19a59418678a81173d89f09b139848ef65a116a

    SHA256

    44758bb1cab5a0a51e4b153c24a5257f41a75d4770e9269e1b2b59ef4256a518

    SHA512

    73f6a7a9cbc183ae7664a29b63c13197ce431c5a18558f5dad73188f681a3fcc03cf514c893e7ab724174c35a798b195a8c28061ae258e20e0a2b7b9a67be955

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.