Overview

overview

1

Static

static

1

node-v14.1...6.html

windows7-x64

1

node-v14.1...6.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12-10-2023 06:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    node-v14.17.6-x86.html

  • Size

    315B

  • MD5

    a34ac19f4afae63adc5d2f7bc970c07f

  • SHA1

    a82190fc530c265aa40a045c21770d967f4767b8

  • SHA256

    d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

  • SHA512

    42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\node-v14.17.6-x86.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2096
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2096 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2596

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0610ec3e556970edc492970c8d072dcd

    SHA1

    356a9126ae8ab675a492590bc6414e946201678c

    SHA256

    8335f38400971d414929761d22e3b7fd8653e54fef6a50996ff095ce30398238

    SHA512

    7b37d66aa5cd8e8f9c4d5da86a1b53397e664aea0939a355b06af061a7a17ae2d48d2ac925e40b4782988ccd9baccfa4d6ecd40a4e572c47dbf6748483a2eb12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e41fcf93a51936fa76e41561ee91d507

    SHA1

    b61de8aa6dd3d4105a0d488fa925ff67fe887eb6

    SHA256

    9a479c81aff813f87291a68856868cdf0d1fb23c1a93267521d13e6ddec72c42

    SHA512

    ae9074c5687769c5d42d787730c4fa29ea3ea717b5106d042ed280fa9f637c4f50c8307f57431c25f9f8bfac3534a9d2569b0a854e743f705a1857542b22bb18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d89433e555331a33d68a81d940a4cfe1

    SHA1

    d602a47649f88ed793fef8825ff3e8592bba4596

    SHA256

    ec36bab910a96a78765169d3e59157a5883dc6b18803803b277973780959149a

    SHA512

    5d9407a8bfb6fccf8fa30c8ed2c24a5b12e04d004fc47a7b017f5011d806892cc7a349f203622f47fd8a3576698f1c21db530cba75378ac52ab7a0cb773639f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b826ae2d4bbb3ba6d138eb200619b51c

    SHA1

    4a972282d3e13e8f38c32ec8a0b73e3ba4ffbf9a

    SHA256

    3736275234962f2926dbd825afcca67ba368b670ae62a68d5a717112c580e125

    SHA512

    dee30d1326e1793b1694ba23fc5f42ac1664dacf5b43994d76d694259d6774c8423838340b5e75238b5ad388da85c2a37dbf06c44ffd37235f57432e10f938ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb80eb8bce7c789b12846db9aef4b4c2

    SHA1

    213914d6035ad466967e65a923bf647b31664bd1

    SHA256

    000170085ccc04e1cc0b6e038e09fbd591a5bc3177a8d17bc30e7ad07ea47a7b

    SHA512

    2f9178ccc26a9d51797c9e681d1b43bd5085ec2d8b91bdded226664745bd0d86fba9ee8716a0aa3a96986c698a2de5944442044b80e2bdc20b46d538b88580e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c1e09bdddf59eeeb4c59ab6cc2953b9a

    SHA1

    94dcc3ecd8045239e5489aa863f0d1bf7374199a

    SHA256

    52b8cc2b52f19091ea4a7f0dee2f9bb085b6d9ebf1259ff7c462be9103699a6f

    SHA512

    0e05833fc9ebab6310eb1d54c4c109aae062bb0e62768db9cc271a7131752bd2edcbc99685be4c426591034ff913d11af40ee527fc73b4efa5ed718f9dd00ba8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    827c951ec4806ee3d46390969bbc9534

    SHA1

    26982f3a0bd44dabe2dd08b0870a7c977bf21125

    SHA256

    1333ef32cdbf61047d7ec567652bebafd1da0561947731bcfe319bafdfae6e6a

    SHA512

    79b16108a8821da092a6362b3d072139c00efceb5f839967c08708943b12efe8fb70455d9c4cbb51c73b65a4deadc15bce3b39f4ad2681ed7ca326dbdf0c5bdb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    289561cb875acb1a24c98725aaae9a72

    SHA1

    5658afaac43b7c81a2be01c804c3a7c2aa3e945c

    SHA256

    859f77916c79e523e03720b60d80c81ba4101ef38ad4970b0b6b143b3c2090a5

    SHA512

    8c5f60f000786f783828bd31d9682b18918c1271d91236d08987037b77c95fa3008213d82169d02f7db886408a35d3a0eb75040c55f17e997c66eb7c02bdce51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e459fd014321f8dca1936b1501286d1e

    SHA1

    d41c2370ab93930c236e2f482cd6cf3937ba302a

    SHA256

    4c20f6c71b5623877e0980d0d539abb4e209816fe1dd166360ae7085ce8593b6

    SHA512

    276f132ecc8adbf530f35eaeb4146d07889db6106e0f4d9ca4e685c75e9889f2e31286f58235f7b3ac2ae860b73fec5e21ba1aa6fad10537b42d4c8d4a102a2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f204e1a16c324379d4ff8cfda87bb0d

    SHA1

    fb017d9f816b7918e3ebe8f47f02e1d6bc1df82c

    SHA256

    e11c4d61929d2e22a16bd0483c060bb339dbbbc66645e98db2cfc25d11fe6507

    SHA512

    0717fdce77ded6209537143b6eeac7bdfa0196c24abec087370a0ba0ce423ae68b7de012584623b4672a67a71f0f7cf8b26959403882e6fe4ff5e730f9394bc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9fd94d55e5403a74ded57207aa1eca2b

    SHA1

    0ea23e482bcfc809d1e4ff42d32e2a146f58f09f

    SHA256

    6d17a3eb879e505f7ef33dd58e24fb69e1fa10e290aca8c390a1167c468c3980

    SHA512

    33800e7fdb85227a5e331d110de44f32f63b716e1aaec5f57242147bae46164de33fbb023c517e18717763b97443a920de06eb835458914e25a23612efcbde1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7109f2d4ecd51b825babc12f10af3e5f

    SHA1

    9b66b08d954fa76a447a9c9ae11f565a1090eb19

    SHA256

    b3642aa8a1b3f00211a6388b911d2edf66f0a35b6c624a8b23bac80d6e8b8847

    SHA512

    78d11af56fdb266dcb717f162298f08ee52ce5d1c99e002cea02c0fe334b17f79f5bc5b4aa831af1edb724aa3a3c338443b4ae6c2289272c693b0850e351d00e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7bfb8d9d325ecc7ef02d6d7519a85776

    SHA1

    eaaa93bdddcc08bdcd98e727d2d9fecf42c0a481

    SHA256

    6bf0c095520fb68599ef20a248f792156b6ef37cce7ce00c811b548d291de7ae

    SHA512

    8bf4aeb63f5c77f60e9dac7cd30196a9b58c644311a3028577137f34dbdb3f3210afef40d0d1690d2d715a2f125e1267e03f81ab005dee7683346aec97974925

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3090587cbc4947ce1a384c39a62d4149

    SHA1

    bceda81a163a829d2d6bdeb12572a071165b0c81

    SHA256

    7c1512513fa07860994c7f7441b9f9d261c8c53848f4bfe67bf9008288bbb56d

    SHA512

    98baabf51f55145db1e0ab115c703275acaa508a1e8769e2cf9cf27da97d4ea1eaad5ae212667330144332aba322fbdee6e3cf076ae977bbd320c5c683cbef69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a64278d278ea088d3cd988048f51504

    SHA1

    efeca219250fa2756b93777df377b9abd117dc82

    SHA256

    a872fcdf83732508015c8a0356297cf97ad783df6822a41b6720c0ab6bbd8e02

    SHA512

    ef094c876cf0163b5e311c2996e728942d80e6a115dafe900a391db0af10bc601216b3007752bff9519f5a20808f9b6d742ad181971f8ae1c8ec5b3d014e113a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a64278d278ea088d3cd988048f51504

    SHA1

    efeca219250fa2756b93777df377b9abd117dc82

    SHA256

    a872fcdf83732508015c8a0356297cf97ad783df6822a41b6720c0ab6bbd8e02

    SHA512

    ef094c876cf0163b5e311c2996e728942d80e6a115dafe900a391db0af10bc601216b3007752bff9519f5a20808f9b6d742ad181971f8ae1c8ec5b3d014e113a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b30a8a31004fa20b55964556fafeac6f

    SHA1

    5b6012088afc7db5d1093e18c102829e41cc982a

    SHA256

    0320a888aad5471f96d14b5534b90ea7874d61594c6c42293d14e72b634cd87a

    SHA512

    baea943223a1b6ffdcff0400c859fe39a2edf42998c2fa6548d309d5e9e9185464e7e98456f98305fe649ea202f3ef898729c89a98035990ae56e166835ba780

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dbb2f14093ed166f2b2b83189fc65b6c

    SHA1

    875cb09bdcf37e4d79bc80026b7f0b0afe8847f0

    SHA256

    6d6f47ff9c5a6c3d2b4e87211472f7f298864688f69542d4eae018290bde8c21

    SHA512

    dd7f7059321c7ea04b3faa0b07b4b55c2077899d87aca8e5acd090898a087a3ef5f350f14e50705a0a54940d6c3f95f12bbe9e2b857543997c73388ff6857c9b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab56E8.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5779.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit