Overview

overview

7

Static

static

1

Trojan.JS....!.html

windows7-x64

1

Trojan.JS....!.html

windows10-2004-x64

1

Trojan.JS....ax.msi

windows7-x64

7

Trojan.JS....ax.msi

windows10-2004-x64

7

Trojan.JS....ot.png

windows7-x64

1

Trojan.JS....ot.png

windows10-2004-x64

3

Trojan.JS....sh.cab

windows7-x64

1

Trojan.JS....sh.cab

windows10-2004-x64

1

FP_AX_CAB_...64.exe

windows7-x64

3

FP_AX_CAB_...64.exe

windows10-2004-x64

5

swflash64.inf

windows7-x64

1

swflash64.inf

windows10-2004-x64

1

Trojan.JS....you.js

windows7-x64

1

Trojan.JS....you.js

windows10-2004-x64

1

Trojan.JS....l.html

windows7-x64

1

Trojan.JS....l.html

windows10-2004-x64

1

Trojan.JS....ax.msi

windows7-x64

7

Trojan.JS....ax.msi

windows10-2004-x64

7

Trojan.JS....sh.cab

windows7-x64

1

Trojan.JS....sh.cab

windows10-2004-x64

1

Trojan.JS....you.js

windows7-x64

1

Trojan.JS....you.js

windows10-2004-x64

1

Trojan.JS....!.html

windows7-x64

1

Trojan.JS....!.html

windows10-2004-x64

1

Trojan.JS....you.js

windows7-x64

1

Trojan.JS....you.js

windows10-2004-x64

1

Trojan.JS....l.html

windows7-x64

1

Trojan.JS....l.html

windows10-2004-x64

1

Trojan.JS....you.js

windows7-x64

1

Trojan.JS....you.js

windows10-2004-x64

1

Analysis

  • max time kernel
    143s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    05/11/2023, 15:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Trojan.JS.Youareanidiot-main/Mostly Local/lol.html

  • Size

    831B

  • MD5

    24c112429e44246bd7ba142637045f0e

  • SHA1

    e094de4e53b6be071c720f45fa6786bae7546a2b

  • SHA256

    d062d283a9e4b6418df033018e452f3e309dc5a61729c182f45c2a01d3eed625

  • SHA512

    28431544cb21f1efb6ec28af58b80d19d4e28c5de460f62164076f63618ef821ec195ee7eba387647d706c83f8ff0378a8ff5664c0225361de15d71cdc2127b5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\Trojan.JS.Youareanidiot-main\Mostly Local\lol.html"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2364
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2364 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:1016

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd5f42c304910f55e1f355310fd40e54

    SHA1

    ac39a2bc15533a35b96743f27c5e7476559e8093

    SHA256

    25355f37702b32eb379ca2a7719651e84d39ad215272b134d5533ef394796e4b

    SHA512

    9d94695d21e59f423e806e530127605fa7a496e8a12d601057c0c27164817809248513daa9ed71b651ec8b0547e48c8c99bb233dbbfab0c6374565cb43863eb1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e507e9cee84f568b55f81d0ea3be4ee

    SHA1

    c6aae6384ba80f7debd865cb1a7b98e7a2bc7414

    SHA256

    dcf68412bfcefa876c0953cb6b3338acf6168f943a3ddfc28e66468ed6a9b7f3

    SHA512

    b306010b5a5321550ebe662e3ea8d3ea87f95dbbc017199e4258471568fdaa46fc46ba8ae4ed39fd4a1dfb984c744648396e08803dcff526c5571972f3aef12a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a21f29c7e7250746a99b9c01e479aae5

    SHA1

    677a99120a2aee2ef82089ea4cbeb445f7dfbec2

    SHA256

    98457d547cd3db1e0735a3fd2fd4bf4fe55e2e890492df0c27d5695982665c6a

    SHA512

    44488624af23efcc0b5b20052a16ba7d294de8df110cabc4859860e45aac1ce6858ea4f2f81a5a818d847a0b8f2559f2e3ef95aee4821cd388287b214957ec0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83acb5da20e189bfa3933601b4159308

    SHA1

    5aaad2215425225c7db7f005840a92dd8e111507

    SHA256

    e190073b406229cde8ece37be664b72c40b708fcbf6569b3df8296d1febe81b1

    SHA512

    95d66796543c46f21fc054c9d0ed8ac23cd01e513043feeae41e81105d4823827b0d3f86912fbf92a1269d2845e5162bb5de7ce0c9094ecc084c0119137c0830

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2720581947b7ba56ddb5e8e8e0cce9c

    SHA1

    84069ade19e21dfa07d010a359c71c497138acce

    SHA256

    029c6b2cdb30f9869081f6500f330312048585740fe437f4007811d5a670e777

    SHA512

    feafa3b7b42ffa83bdfa51eef262b11783e5a4c4395ca8fffc800e1a695c2545f5b27a76e538039d3905691f7788830a3876906e52d7dc250a9d7a78c9ca81c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a0d2c685a7ce1b7da664017d16ecfeb

    SHA1

    0de50f6cec2f3b97b50d27566d6e35e946c8587d

    SHA256

    8246c48ebf4e345972a4b073891cf24bd14355148c6862315ed1123c7888457a

    SHA512

    6edaa05a5cb1884da8ff614e689b81b308d1db92d5107cff197540c98fd6fccb1777e7bfb8abb86c8bd10edcca5f83f63f91caab975cf2aa95fe4801f1d1ffb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba24597270d6ebe780ca85fc2971967c

    SHA1

    b09bbce1911442986c5b2928f23472a292bd7ba8

    SHA256

    fba2dc30f2b1295bf475655785acb2487de768178ff865bf09ab1a58b33003d8

    SHA512

    2dfea63921151cf512524eca92fb19dd98896f658313989d27bf8fa6725bf6d719dae9201966f05d5fb54c3cc9ed165167073088d8a14db1c3e1d5cbb1104618

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d355ad4249a5e651094819f04099ab5b

    SHA1

    72d6351a5e878a95248232fcfd5443d497b74cac

    SHA256

    fcddd7419802812971c1e6a83a8586c5121f34899a0c92e5193e687f23eba339

    SHA512

    2f7e39581d930bf36317bfe9624548dabe571d85076fd9850fe932ff03df7777e5ee592250b6bdb46c0eb87f16dcb222227c5576cb8d56ca005bcc7a036f66d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db289dc61d4be5a17966589d489a9683

    SHA1

    f644faa108fb91c3c579b962fd5255225be08910

    SHA256

    9b4e5841c93d25258df65adbbc4939d33f68ea1f56ba47d36f3ac10fc30d0bf1

    SHA512

    bde72f37ad9fc0266c743204e2854799fdcfc85c469176ce734bea7ddf2f401f021da22768dcf33a075e67d9a1ff95990d48a6d737cfbf5adc78bbddda739f2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7cf8f95f2d9a497502435d9ed205268a

    SHA1

    8f8297921fbd0c04d2f66c6643c54e67c7ddab08

    SHA256

    900f22ee1b8a07df615dfaa89dfc6eba4f50a97d89e609644d853821522ebfb2

    SHA512

    4e1c427787cdb11fab4ac760893cd4a595b8f8e3eaaa27e5ec9fe1c831320a334182e8139da1ac98349e68a6f802f526c21ad617411fa0a973b6b96621a98419

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a0bdfe45a65c8ae92463bfe2f75bc60

    SHA1

    2043241d349c8dc7f4f8a1452a4f8701f9b0abff

    SHA256

    181f446401e12a63c454c1c1f3a27c9591bfa9e7ac77824a109fe12a7cc3c052

    SHA512

    fffde3b8b85c1ea25322f906b8f4e5ab2ed0f5a0803c0c3f3390933b47acfa1052236641721e10d165fc322c2c5873fdcf52adc0a1ea799cb6a337a7cd578bbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    368ff576c77c17afcda0f529683725fb

    SHA1

    5e669ddd664c7dc6d4742eeef9567dc64eebfe83

    SHA256

    e9d02db7876033d0c7c1d8d0ba310ecc353f475db6794c97898d6334fe38cf5e

    SHA512

    208b713b1410cf82d427dbcaa98eebbb9c8617257553db47c4a9f1ecfcc670284b21a42ebaa72b3aa6cc7c4f0c9df9c9af790323339fa712dc79bfe658610736

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2cd7cc30e764b030f56b3b078d116434

    SHA1

    d1015cd62f801a11817a7822e435a40c1fbfb3b9

    SHA256

    c5aeaef1ac399cbda6b1d51cbc599ab4e627884d2a5eaadfe8383237232ca2dc

    SHA512

    8d654051e04ffac3d2041bc101f85f442488933a53e2ae96c5a639582a5728309e758a27737419e75f506edcad3bfaac7c4bf5a9f627dbcc4e37ec89bf6e795e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0543dfb474ac41dff15ece05f5b0a46b

    SHA1

    dc14380fbada84475459b6b5eb641c2432107268

    SHA256

    aac9048a8c8ade3ab8661ecb6c25c763a6bfaf80e1db65cab83b7cdc88b33b59

    SHA512

    7d8cdae9a67d82ecd18c6a04dbef8451f4da061aaf06e656ed245044a8dc81a77e4016aaef3ab041bce9d8595dd1d55a6397c54e72e00799fc3b012ef0948f82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f021973fd3e6fe0dd0a9df1e8e3928b9

    SHA1

    95beae90452c65497eb0e52faa94006e6d4adcf4

    SHA256

    b921336b6934afb5b1327d0a5efc4fd970a6f5af7ec78c3e9c62db4128b5e9f3

    SHA512

    5d939c6f0e8406fbd6531e7d9a124a2002458a757f92c4cc9e0955a11341bef0822b773c80eb8acb6f8b287f48728e031255fbddddf3040fcbe543083d057a45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6311dcdee22a48a67ca7f4b3e8e9d9a

    SHA1

    621854793eb5ce7bf923f3259ca3401ac73b7024

    SHA256

    e86657bf400137480629ee43a15c85fb4ae5e5cdbd2f7b97c9823afd43aa18a5

    SHA512

    354acf909a4658558eab746a846bfdc1bb0a350b58c3cbb0b0679fa302375b2af57a856318378ac4efdd8e7d6628ff8d64caf10e65f816b261045375db46979d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13c0a01dcafc1348502d10c8fa24f575

    SHA1

    55731167cbee78fd48fe2422bdad7a2be85999b8

    SHA256

    458a3844bc3e9d3cc39fcb1cbb5dc22ed7673a23d0587d0f36df961e6fba4b2b

    SHA512

    4efca8c02a5b6fea5245cd988404960646179bbe87c1a074a6070293fa1d5d127d9cf40f7de771e54cb73c4b48b0fb2cd940cd00d66f4d542f5c7474c8ed9a36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ca8c9d3716c04d70e3fbe40ffcf2ee1

    SHA1

    0ea03ed42b5ddd27d72f13468c136537cd38405b

    SHA256

    cd2fe5e164822fc97a07c71196a01606e5342f7603e86ed63010293799be862b

    SHA512

    d9429b70cd91013492e06274298628a6268ea0070b40e770972d1f3cfa6e6fcce7f3a52525a35223e5ed2e4087b08c152b9e375bb4c799653703b4fd94abd09c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e3c15b42a193261a5af455cada2db81

    SHA1

    8093e4b4607bcd769b891af57c8563863b13f64d

    SHA256

    cd125490050427503636123eaad3a154d22f5a6a687e58f92fab7359ff473f2f

    SHA512

    3818ddc82955c5696eb267d060841f756b3cb68acd18479e7d5c8834e3e042ed182b5cd2ad3e7263a9e0cb9eaa86ad96fb07fceb372b16ab1cef3fc2ab7f8ce8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCEB7.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCF47.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit