Overview

overview

3

Static

static

3

app/admin/...jax.js

windows7-x64

1

app/admin/...jax.js

windows10-2004-x64

1

app/admin/...tem.js

windows7-x64

1

app/admin/...tem.js

windows10-2004-x64

1

app/admin/...t.html

windows7-x64

1

app/admin/...t.html

windows10-2004-x64

1

app/admin/...t.html

windows7-x64

1

app/admin/...t.html

windows10-2004-x64

1

app/admin/...s.html

windows7-x64

1

app/admin/...s.html

windows10-2004-x64

1

app/admin/...s.html

windows7-x64

1

app/admin/...s.html

windows10-2004-x64

1

app/admin/...s.html

windows7-x64

1

app/admin/...s.html

windows10-2004-x64

1

app/admin/...s.html

windows7-x64

1

app/admin/...s.html

windows10-2004-x64

1

app/admin/...s.html

windows7-x64

1

app/admin/...s.html

windows10-2004-x64

1

app/admin/...s.html

windows7-x64

1

app/admin/...s.html

windows10-2004-x64

1

app/admin/...d.html

windows7-x64

1

app/admin/...d.html

windows10-2004-x64

1

app/admin/...x.html

windows7-x64

1

app/admin/...x.html

windows10-2004-x64

1

app/admin/...t.html

windows7-x64

1

app/admin/...t.html

windows10-2004-x64

1

app/admin/...g.html

windows7-x64

1

app/admin/...g.html

windows10-2004-x64

1

app/admin/...r.html

windows7-x64

1

app/admin/...r.html

windows10-2004-x64

1

app/admin/...a.html

windows7-x64

1

app/admin/...a.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    162s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 15:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    app/admin/view/system/pay/quota.html

  • Size

    2KB

  • MD5

    c4f3f8f6add8ef6c6b4c790be1d438d5

  • SHA1

    267ba76f45675bf4624dc61d9a847273e4ed5ed2

  • SHA256

    bbbe39a4b5b3ff1085a52c734b09338076be3ca2a5e4f2a3818b83a1e47cb645

  • SHA512

    2419731c0e0e526749e18c93a0d21f0797a22247610faab47854be159c37440c1d22f8baf99e6d89cd31326d73af3e12a9dcc20f97c46a5306d5ea08bd83b5f9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\app\admin\view\system\pay\quota.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2900
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2900 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2816

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b12acd51010324d0bcfeaf7c6cdf52bf

    SHA1

    d8ce91368746c1e67b58e769765e0558b898445d

    SHA256

    3a2be1d5d993a3a79901e68f045256adad610327d09a0a1a5853c8d992999fc6

    SHA512

    2709086ba40771f4fee2c6291a81fec1cbe6be5988ced46beb399d937acf00fe009e61b655c6e64fde80e1ad1640fe9b52390e09b361c4e32961092bae2347aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    020fa04b40335552532ad25626648e2c

    SHA1

    f2c50c7ec33a861090bd650fc1cfae8aa35d6dfe

    SHA256

    1f4a5625a92a04ffb0e69934b5a52168f2a8b56809bf9c316b04f1659dd96b8a

    SHA512

    6aca630e53860c55a04006c961d82f8dfbe21ddbc41dcc4860f32882329e74159007a66834b486380129dd62870507f8969ec1886353b336706c34c586c659af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    443a3fa6dc6cef3898d4e6c978bdbd1e

    SHA1

    f008a55b6eeca1f49f248c7795f5984f2cb0e559

    SHA256

    8d80764cbd4ba677a4c9e302bb7c68d6e450eaa7ca580066e795af56814c88f5

    SHA512

    3e7112234379a435f8445ba545bde672151840fe634729d090ec0943d2d36823c375ddd958a6d678fe4167f8e82df5f6378e054e72a9ae821d1e8c2dbd5f763b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a68cf3dcee21490ab8115cbd5e34dc7

    SHA1

    f1da855db9225216dce7572b7ed9861d02585858

    SHA256

    3b91311657f8ab07eba82c7b145010a28dd1cf2fdf894db6100ca73583651166

    SHA512

    991b69bd5589270c8599cb599a593bc3daa9011cf752db754ddb00942c9e9590be89973d1364e4b49f8a8289451a732cc5bf9755ce0ba53ccf364a9439fa81f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da1f77c4fb8cfe66a554940a66a4cf8b

    SHA1

    3551e474bec2108fa8a6fe7c9d9f54c13922b962

    SHA256

    19b6cb95402870c67793cb09acd47a226f6368fddebc1d4a68fc25dce3d24ae5

    SHA512

    e289b4711868c0c4d3089792b83beb95a16669b2eea6364524427319b3961723cff85b6dc6702a10e5d7eeb7580c31f6d3ef6ebdf120c95ed723ce9c01c7f600

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cf3fca4bd37257e6931ad2bd04e7a3f

    SHA1

    6045dc11105defb3727832462093aa56d2f2f161

    SHA256

    273ecd28c2c3a3eb2859adc5b762869e5f8f8a19385ba8e22a9793c37cd98484

    SHA512

    725cc3b53af2febd368bb32c181808a0fdf7a4e44ff1477ed6b6f2300e38e611a572e6bb4481cda160d6d57f8d19c2d19b8c26287a51fc86cf3c1dfa7592926f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d7024e8067596a651d35b1c8a8908bcd

    SHA1

    eb159d01796818dd46a0c7d56ce82f48afd906e5

    SHA256

    5b511ed47b3597aae9029619bc76f586a1dcdab57a5c8d7a3b70f256ccb72c4e

    SHA512

    b8ee3164ede4f5ed3478db6139115acce2b6777e8424f771dad796a0fc42766b678ddcb731b7a1829e0fb5ca90f794d4363ea09e29d974a3e6d33c54b709fe9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab35ba971fcd1b75901ea7864a0ff502

    SHA1

    f2f592decf97da62a5bb26889ff443d89aed64c3

    SHA256

    a754d0ec34c60d84cebff80bff11cf9d34e4835889dc1c0baae2242e465032c8

    SHA512

    6b0ebf1890e425f37e2a99347786796fb786420e31cd723a94ff897f692ef7bf967b6212fa9a793b8b3d3182c4041f1dc43b551093e04b81edafad7b3f6497e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    70c88f23136744a8fb03733bc531ab4d

    SHA1

    67c7ee020a03bf0addaf74a54117ad1a283e1148

    SHA256

    0aab45ad8e13cbd7da1a6cc90c08b530e72c14d7dfc79095d4dbe5ea74ff5990

    SHA512

    d7b4c39f56c7f23e29546ebeeaf36b8f721ae725627c42e4776a5660eacca29960c1a17a4cb21c7da7776a6f55c826aae57cffce919ba0a031a6fe4fd630a6db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e739f500c8c6a1e66c3daa686024156d

    SHA1

    24266f3726a2ed7832351780b341800f347f211b

    SHA256

    b1279c4f69e96c316dbfc77436be37bc8341adeb564e48d5ba50cc78995d69e7

    SHA512

    2b0970e66a500e81eaba4d42793b8b0216a1efdad73b28f92387ac6926d34074b51f5cb418004756c125ed9ca0afe033de4bbc6a708c15eceef00fa013f7a290

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82fe1e47b1bc6eee9480914b1afb9331

    SHA1

    4a20b316703551c9e6310153faed18e70cb3f51f

    SHA256

    6e791f08b5a38b70d9d308b915e8c3e6db59e402ac78deb4b27f116a26c79c56

    SHA512

    3ce32e618a28b2248c99d10d73fe0fc2b119c558b4d23522e83a667aceecc589406a7810f984e5057fb6461b1d3a4b92676de479155001cf84aac23927de06c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    370f2426ec92b9bbdb267b59aa33b889

    SHA1

    e18de54f847292a105eff9f08e908693ab67960c

    SHA256

    eaac2d77ce31511debec7d321f52ae09c0ebbfbea6b78611e3639e65eae36389

    SHA512

    fa260d698e6411048b7b2cab5b8d3a525780f28c66915d560804e259ffebe8b0580f5ab8619acfbb8b5d7234dc0c90a62ba637782461caa7ebe46850001030cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb73c86660e4a2f15b8bed5ea53a6abc

    SHA1

    8df77605faec8cfcef67bc391dd9d46702d0b332

    SHA256

    701b9bfd92bac846eb4930c22f5ac65d49022e84a23becfdf503ed719a7351d8

    SHA512

    16797dfdfe9a484324ae3608f5024e65f2e7801ea8d379bfc602b05cf70aaa8bd0bd69e5174b735c2c0e052cba7a5a3cb998d787a75d07de11503f451d1657a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c35c7752b6019d44d00799a55d9e9f1e

    SHA1

    f36e8b23949a2b99198c9e0a0117f23c18153d3d

    SHA256

    c3986896dc8327460dde82f29d7f74ae782a181fe2da07b7709b2c26b506d7a1

    SHA512

    c3567a8c92a6745efe92240086db8303019908d674a42996737cbf13cb7e9627cea79974583bd5a38951c8c3679daaae314dd8600566cbe6c406bba7bf204139

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9bccc7f8a1be1d19695da53ec3664456

    SHA1

    ef10b29c1895ba5e3e409eb1849c00b1b52525cd

    SHA256

    abc0e86895253bae808ef384f73ee55e80b7a54cfbb2c39f1599394412df2852

    SHA512

    ff4546cf5a1caf20161bc0b5083b04e057eb54720bc856431c95b6c731f6ca64b184ef7805a786607b1286ef8e3bddce04fd7c42024fd08085e6615e40b05a02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    141fa8311c996a79f5625f61924a893e

    SHA1

    9a28d46f93c1a8cdf72e2973c7feaf1436dd3c24

    SHA256

    20d9b175cd9decfcec84a6e00cbd016084dfe6f02da79a0670b42bd462c7fc75

    SHA512

    8fcb50fbfd543cb5b5b9023e8fd5443ed251ac98f90c7fcdd36e52bb0cf0311c39f83eeba09efcff695becbfcd22d4590ec0cc54136d9740f90dd16930f055dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9187a2471eddc9d84326b53e19b28096

    SHA1

    8e2d0d26016fa403c127620fb29cea682a5911da

    SHA256

    d62370fd9ce4c19a1655f96aaeb2ebc5a85dc46a1c64e00b4c09ba6d8fa45f1d

    SHA512

    617caf2586019c707b7c9203fbae7c5b250e5e97de4f28b1d6501e7a5414198d3ee096dcdc8bf3394532ad50e850ca961cab684349ca17c0f850ce86b9c8aae3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    119a9923701e3b18a9c33a1ca4ed0e27

    SHA1

    ca97d94cc1d6a35497c4068aef37290c8b219787

    SHA256

    dd737818eabbf39ee8af3e2d3afb92deae9c5fb84b44af957e714b745d071162

    SHA512

    73f621f84f49f6ce909e033555fc82ff83838d58b3672703befd8c4be1e521d19a925aeea8c8b5c89b0082857555d05ba8b7631e47f2d99b09dfa6c0ea0f4239

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE025.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE0C6.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit