Overview

overview

1

Static

static

1

tmp/pma_te...0ec.js

windows7-x64

1

tmp/pma_te...0ec.js

windows10-2004-x64

1

tmp/pma_te...6f9.js

windows7-x64

1

tmp/pma_te...6f9.js

windows10-2004-x64

1

tmp/pma_te...84a.js

windows7-x64

1

tmp/pma_te...84a.js

windows10-2004-x64

1

tmp/pma_te...0af.js

windows7-x64

1

tmp/pma_te...0af.js

windows10-2004-x64

1

tmp/pma_te...64f.js

windows7-x64

1

tmp/pma_te...64f.js

windows10-2004-x64

1

tmp/pma_te...c0d.js

windows7-x64

1

tmp/pma_te...c0d.js

windows10-2004-x64

1

tmp/pma_te...6b7.js

windows7-x64

1

tmp/pma_te...6b7.js

windows10-2004-x64

1

tmp/pma_te...228.js

windows7-x64

1

tmp/pma_te...228.js

windows10-2004-x64

1

tmp/pma_te...9b9.js

windows7-x64

1

tmp/pma_te...9b9.js

windows10-2004-x64

1

tmp/pma_te...df.ps1

windows7-x64

1

tmp/pma_te...df.ps1

windows10-2004-x64

1

tmp/pma_te...09.ps1

windows7-x64

1

tmp/pma_te...09.ps1

windows10-2004-x64

1

tmp/webali...x.html

windows7-x64

1

tmp/webali...x.html

windows10-2004-x64

1

tmp/webali...x.html

windows7-x64

1

tmp/webali...x.html

windows10-2004-x64

1

tmp/webali...2.html

windows7-x64

1

tmp/webali...2.html

windows10-2004-x64

1

tmp/webali...3.html

windows7-x64

1

tmp/webali...3.html

windows10-2004-x64

1

tmp/webali...4.html

windows7-x64

1

tmp/webali...4.html

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    07-11-2023 13:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    tmp/webalizer/index.html

  • Size

    9KB

  • MD5

    1a88933ab960a8f348bd97edbcff72b4

  • SHA1

    2b2ced6a005450f9e698eb01e8197cdca9b2a888

  • SHA256

    9e0c7e15575f5400cfa3c555add1e3060d1e1a24fe29abe051071057a7c63e77

  • SHA512

    1463334803c33e7d79b12a88a016dc12de668dbd4326f952f2e67a584279e72df89bd05abd4c31f1fbe7bb523733a6e227f0a1d8d1d1410b1b8595d6109ca07b

  • SSDEEP

    192:v2X3QUn/j9OPnsyJ/X7TMgtxZjQTaRjt9tQSmtteAtTnjZOgw3GsnpTAUslGh0t9:eXnNA9h52

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\tmp\webalizer\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2940
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2940 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1708

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44c8b52b92b2d9435f04ab4adb5dd2e5

    SHA1

    fac1ef5cc2d55c82c6e804d2620673faa9117d38

    SHA256

    f494dbd52606fa6d93bf497724f719367701a58ba70f3c008f6f28317b2be6ba

    SHA512

    bbef5c01120ba161a58169ba2a69328180ee54d94878ee04dccbcb06252303b2c87deeae574de2655c672ad40354fa7629744db6e54bbe2af24715f072b2e84b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aed8765292692d7e70982b735a43a405

    SHA1

    4e5700fc5b98d6e6eb6119af01024a950535369d

    SHA256

    adab4678d7e845653838e12f0d8cf07ac103c656a7d34dc1a04a38394f0a61c3

    SHA512

    af3105bc2611f767a356a7ec643177dd5b4be7ffa1734abcc15c57362d4cec9e5d6ff68ad4d80f9decc314335ccbb4b2dc8ff316fa4aa3493e4af5eae169670e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    59a265040cf504fa97069f670e7ce6f2

    SHA1

    767d2e2c80de11ec4eb2d9a32333ff246ceb00c8

    SHA256

    244b774514611d71b45d6895782587ddaba87e8e66d25fcb8febd6f616da54b7

    SHA512

    785acbed9aec3be264d98fdfd453b5693c570eee85f258d7a8a8cc0e230f6d7192cc0121152167a0ac9c44351700a8b69ee8a31a2021581e5f383b1f48c4e891

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4252a2f3f2122fb6304dce4536afe685

    SHA1

    f093e518e726a2eed8671d912965423e6ce9759d

    SHA256

    0ce59d0146699731d4ee6445bfe64a072bfc617f0ab5cb3d558da8cbc8e81798

    SHA512

    e76f79ab834ebf476c0769487dd51b5ff83bbd8debcd9a8147b60256f6bbc9e0122bbff642d751cf59a118fe0c8d4501c835b26dafcda357bde2cac34a8c8bcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    46c54aa4f27fbd24f40a4e8fd64461ac

    SHA1

    8722e156eb8eee985a4bbd6367cec310c3d60429

    SHA256

    f5a74b84673a593a948ca6597acb018ab77a095ab52b2edbd2bba08690f38382

    SHA512

    d8890464d7d8f9fbd96ac77f05b1d181e319e22072cd371101b604b8896029a70554353462de324e9595b9c23763a5d82250538732aacf72868cd25ff5c9f48d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8f357efe85ffedaef432e11aa8ff102

    SHA1

    5dc6522d839e692efa1df092e176c076f3bd565a

    SHA256

    09771f1882d9f5eb226fc84d751ebe90394ca5abf0f69a02e96fcd34bd24c2ad

    SHA512

    b28b16b19bf4a166e5bd59565def623b2e02b2cb66d46461aba0fa36780c94c12ab4d17646d34a1df0e65322372e9f4a559c88981e157ecd44ed9c29cfdc05f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c491b7a3a93d91ceefa577873fcd4d0e

    SHA1

    93728e1ef8f14feba707cdb3a4f91319d0411ae0

    SHA256

    c9869fcff0b677ab43968f6873fef40ed8e71034fbb8a1e7ca9c083d6f45f438

    SHA512

    3ab707d4db98e2007ebb9e38194e4dcd23ce128b38e060f57eb549dd0c7875981a7010cfde9c1431369012bf7b2fcebe9b0f9b52ff5b6df17e732df6a13df614

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    744f87cd27bb6ee69a9c8b89859a88ef

    SHA1

    bf03f7584a7585a4e147f9204c98e954d818fbf2

    SHA256

    e92638545fc50fef6f4bc29d0af24e45a169fcecc7819640fc8ce32e9b398a58

    SHA512

    d431ff865b42a63ec666774823ed3e7a0b8d1c19151adc17139fcc8f4dde6c0a9c8cbc5ff747aaee4f78b559d721d2b2f85148da6aac650ee858e73ff446021c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f030fecec408530329660572617f4fe

    SHA1

    d0ef2bb62d230b13eef45340f900a92c2340f915

    SHA256

    62bfe5fc3fa9d58ea3b542b228f9a227ea9c6fc0a7ab126316ece193ab063fbf

    SHA512

    0775d699866e74afff1fe269ab7ff2953e1ccb451c0a230ae879d940818fff1d9a15bd267016c2953d0313fea0d77083c0949155f8a7029e64bd68c80d8cd00d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    560a2cde267196cbbd42e017f6cfa7f2

    SHA1

    6b841fdebdfacf2029ab9c68bbf348c2ed24e1f2

    SHA256

    0b371cbc28311db6352c72e8e4ed30add70a92a25e123530f1053e087e67283c

    SHA512

    c91b2e37144d5a37e61af45cd0f9890a721356a014df5d1629abb54d93e83a3ec72d85818d74fb27cbbd0aa324e730764edac993d45f5e8bb029ff1080487a8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    52493a4b240fe8870377df79b85b723b

    SHA1

    74d58fd53e264123e787c5fcb524a49ba9dffe53

    SHA256

    9466d31c32e446af21f72c204cb0205b9587d83589a5b9d50ccf88e8105e993a

    SHA512

    32ade0b0c12392661aceda08f09794bbdf4edad17b54219a015d8c77b9352008384f4e66ce342e22c5a7cacb071f101d149f55df26cc5095f485d2e5fb5c1817

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0566c94b7e79f1c3eceacad2d7ae814e

    SHA1

    f9a6462698160cd4749d5b5936a2cc092a158669

    SHA256

    f4a99cea7d7fa6d999f06fb633738162414be8bd52ab852dcdb694b87aa673a1

    SHA512

    b0d636dd81b5747a7e20878999a5d7490b1106908acad33c1071a12f8611562982d253624356e766ff4730e23062e714425e77b23be60f27e4aac8c62a58c35f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4e8f7ab7631a3887c67758496b825e20

    SHA1

    d3ab7aebf7e2f5ca126134e95030175b89b0251f

    SHA256

    8afdffc2b519cfdf27ecfbc4b155b95912c0df9deb75e4a53777256b0ab7433b

    SHA512

    03d00d0c02ce1986123bd51b784be75fb8aac278e98a7e4a2028773ede333b4985e46db65005a2efa3364b527562f72290955aa336441dc28685f607115599f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9dcdb06ae49ef565529df3dcf0d2145d

    SHA1

    a0d0aeb5bb35fb3e20cf2089f1cc52cf284abdf7

    SHA256

    28415b23c68b58bd991c01aa60e51639abe2ad6a460f8c035332f4a46af9382a

    SHA512

    1a388777d5dd08163618c413c04bfca888a2f2c42de809c1e1343f0f945ea2852c7c42743ec179aa9c3894a0b76a9e1da4c2af732cf2d6997428dbb99fcf359b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    faab45bacfaa7bf204a3b4224cd14706

    SHA1

    cf0b161b67102692b6aa8547557fa8d8674db13a

    SHA256

    b23a8182777ee1fe453f4be4ddb29367620308da2185fff73fbd42887de280dc

    SHA512

    0d4ab294afb124d16f80cf35dde5fd7d0eb3d28252d4702a4a2f071e727c827cba3c60fb03482f129b2e60ab2d3731a869779d95f7bd70e25fb3e7679edda307

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6616c0b5fd36741e26753de1752fbd73

    SHA1

    39959d64563ac55c3721d29864bf0919bf797127

    SHA256

    64bd311f0d62cae84bee84f59f0474e5b5c10c620b0ac85ebd6a7b77a41f5678

    SHA512

    c3eaf18384bdd180e969bd9aaf82c7ea32aef76458ffee8056b6bcce2484a17d6c7da95d213c20262d660167189cb53bfe27855e23de13769b37b6601fc0807f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f5f14237af949049d73eab5e423d7d7

    SHA1

    ea488f8350d90b4600c5a891f606445e418bfefa

    SHA256

    7e291b04f662bccec37345b430c17a8c3651fa7ae85e523e88b28cabc54773d0

    SHA512

    46bbe839d841673d2cd0c221d63008bda08c87b0f27edc91fe41799575009b94023d7ef274de3c96b6d17b102861d5fcd481058d0df17ca0864d1c2b91fcfb08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93320fd07cf04bdb094635d0c07dce07

    SHA1

    ef2d8e64d8aa2e54d75853af8a9e38704d86130e

    SHA256

    c8205660a77cca838f87ebddfccca71c84010402a91eb93dbe822eafc5f0cd18

    SHA512

    7bae93b179b12590e596aa63bba84f8fd2757a5b83ff4c432cdd9713bf6bbc06394ffc36e0e753c19f40c1103a791bb1c5c1bb7dc6f6eff256438dd9a8dac285

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4DD4.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4EA3.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit