Overview

overview

3

Static

static

3

喜欢此�...it.exe

windows7-x64

1

喜欢此�...it.exe

windows10-2004-x64

1

更多精�...�.html

windows7-x64

1

更多精�...�.html

windows10-2004-x64

1

金山词�...�.html

windows7-x64

1

金山词�...�.html

windows10-2004-x64

1

Analysis

  • max time kernel
    65s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 19:43

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    更多精彩下载.html

  • Size

    238B

  • MD5

    c1c2aaa54740423e5ce2415575c9abde

  • SHA1

    c88b9885c74eaf138b83743d8d34118c65208317

  • SHA256

    d187e927110b11bfb3cab4a50558a0ea4afed287b1ef99c5d9c1128300972ecc

  • SHA512

    c2d9ef6ab5557ea4c2cb93def35133389df3c806c791786c06dc57af52e969e6b247a121896c52bbbcf5327b9910b551bd1205ff22649e8a01252abf73d68dde

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\更多精彩下载.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2660
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2660 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1908

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          eb5357c36fb7269dda9e5de9eea6e271

          SHA1

          78c50138a1787bd40feeb28cfa2615d5f643d479

          SHA256

          f31ceb21941489de43025a6ca953f5d339e471778e4c4d729be9c7c680d108bc

          SHA512

          9ba2e66b552267703f3bb8dec654ebbad5fbe8a3554d2db50d89f3c1c3e72b873b86c5ca413b032f805bab58408838fbf910822b52be9d03ea023ff3259c2211

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2f4770ebd41037853114f2ff3315460c

          SHA1

          97e9b7e92a7a5a40dffba22468d05a2eaf87f220

          SHA256

          60003bcde44cc2cc2ad3aa57717e6e42f34006bdfaf34844e98c25b530670005

          SHA512

          56b76b931e70aa71139a8cfa838c34fd1778e39d5ece601f5779fa8ec0b38d6b0638440220cb9137bb60de46c8767d83d5d2660084ca639be47fd916f9fbd399

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          16a2c1815a33b20123e9d698d36dccee

          SHA1

          7f49ded15c5f592d1315bd09b98a543dfeb2099c

          SHA256

          62f72655a76ab7ff7bc8cc48826eae7d9c1ab99014511905d6b9466b21f142ca

          SHA512

          61784c315af5ef67f9b6e7ee4b53a8ec6c68ba9fc0d059c3c52e68d97a9fcc8ea643c2d9f569082da532eddaa315ea3e38420bb7efbfc1000746a2f00829095e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          75ee34a3225410cd181c44211f123a92

          SHA1

          6c1ddd8c3ee26c4b8e402b60aad3195cf64b5654

          SHA256

          685f5331dc07720a037dac5294da42e1782cb582b563ad4e44700058781dfb1c

          SHA512

          3d46b0d09d7ca9aa3a4838e7436cc4a534d541b11c9a7079b9fde03863da02770bb22fb1d97931705ea8de7f7c5a66b8d6840927ad9db752bdce4509e329d1c1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b3c1c8373b201b283350e7c43cad7dad

          SHA1

          58c6737a3dccb26c2865301744e613ef522bf6fc

          SHA256

          595397de5504c1d2537788bfffbc3966bf699f69f144610b06a213eb8209acc9

          SHA512

          f6321cc083bb6f618d07242a5871396f8c7a1f1223ef1ac09bcf695b6bc712f469c540e4c8431119d542b717bf5b9a8747887e40af9ba2fa14d4c0908cd6454f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d9e23fe3e60914350ba25c2ccc3d2e55

          SHA1

          24d05966a42ab164c1f074a45de07ca65893b5bf

          SHA256

          e76070558ac5d00850e6f3e45892b1d0fb64c052842d04d64cd32ea792758766

          SHA512

          65751ab54d2c39c040a9b858c6fe8f7f2ce2fd8a4dec883244df0555ec058d32e22521e2d269534b2f9bb72293f48e91bb7d1be974a8251a2636c9c04f93c682

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          78451d37ba8be96d5244360847a2ebd0

          SHA1

          dbd964a6d06b3d4e0229d7deec02940c3ac2fd49

          SHA256

          d7fccd59c9f7267e910516692e50e11f78acc7f875580da4f951685bd5b44304

          SHA512

          f58f665e0b14af54bdb6e5ee19aef3a349c563d917b8b6fcb7e91cc117f3ca87c25234bb2f2c321722d7e83772366430d1721d4655616d8e6204cfd0c8354579

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6e3a9c9440fbf8129b07dba66cf1925c

          SHA1

          955185196b99093a9d892d16667c136ea52f62bd

          SHA256

          82d9c6a2ca8e6aa47dda4840a4bf58b3ac4b691e7e6f5f15debb937d005c1e2f

          SHA512

          8d783381175a3e9d1d4ccf8b4312509d6506f31096510b24b2a97d4f75b23543122f2c14975e601efcb717969ef15a6bd2ce1ed38f605fb830cc19ce79ed7894

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c39857a9b41af5e9a5ba54273fdbfcc1

          SHA1

          d3c0eed42674c311cf4e487b752fa6582854bdd6

          SHA256

          6041cae60bf24be362797b9a286d4fa80aa8f1104eda9960c491ba55f1e9a559

          SHA512

          9dda8064148e9f52ae5a58263cce74dacfd22ada7a75bd89f131479b8232f9e62aea12e1feaa766223bb04d666034ee41c08c8441a50fc72f2bdc07eb489314e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1c1788db7cab4852d54d15891bddc121

          SHA1

          36094ddd1e95ad84dbb58f0e0d5d7d8a9faf26fc

          SHA256

          022f04bcbf75acdb75efa3e3f9393aad4d31d14eb1c39222b7ca27c225d36dd1

          SHA512

          ccc33998073dd795b669c456f71278fe80c5da1a5b3ab807c40fae421cb99f60527948b41f67f4cf1124a743b15e214bd43f9427c8958cfd10802f2ad349f0da

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4fa34e78f4ba86602b7bde9f66c5717f

          SHA1

          f3d91d0d9418f0d3eb5aa8fa264dec494c2ca8a7

          SHA256

          9fe385e581eb33f43c3116d0a35a1e799e090a065b7c7390f4bf9aac482839eb

          SHA512

          af7971aff7a58fb87d49954a9435f7b83a3f4435e02a565a0b893840dba457c83071cf753fe35c9a5910d7169816bfee1cb8af755ae30f0f1ed1bcd380791304

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2764655a93aa0e3d7e478cc23118c102

          SHA1

          06f233f4fee33d506cf1f9f2f0f595e30e8d90bf

          SHA256

          2354808da47ee48bf83dc0248ea585b88a325faea990d1663dcafb417b40977a

          SHA512

          3daf9df8dbbfb54f4faba3ecfbe5aa739f14bb597282dbda43c81f58054ee80d0ed03d99cf1ebd85b7b1e4a1a5fd3913c25ba3e8e7fa8568c12133d2301b20da

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          541ec47d6dbd6378acd0f5a158c97cdd

          SHA1

          9a67430083d8a02d8ffa5c413a486157c0e179ec

          SHA256

          e257c4fec8b9cde54cad5443ac4969a6eac1658448bb99a928a4b3ea811335e7

          SHA512

          0ecabdd29c6b689e1ac88f0e2e272afc6a730f01b326fadea21b201c4609c452e732d0d305d1f5171538aa39c1eeed0b681bec568330742919fafc1e0e84bb0c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          6b2b16d89057e4b9086a3526c9dd2115

          SHA1

          ca3b5b741d69995584bdd22d7f6b85e1f7df6a8d

          SHA256

          25675b5b25b79d8e5babee7152910b0f4abfdf9fc132d4fb71e15ad87fafbbe9

          SHA512

          fddda70a3980ae296878201b1888528792c4419bbefc06c484629d2f5fe2d1ccbe03c41acf5b87dbc9ed7f173919646e22c58f86c1332e66af381330fee9f90f

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar2800.tmp
          Filesize

          102KB

          MD5

          eb137c3e47c0904f33d85f7aa2901f12

          SHA1

          87993afeb82971dc3f3d502647b308cb6cfedbb7

          SHA256

          bd8d5efc19284990c5fd82e00056392a2909cd45735bd5751a12fd6c725c183e

          SHA512

          1a754ac50173ea2addd66f729f9eaca5979c03ad4da63820bbdf1a9823251ff0093a05c57544e486396a5715ea10035b0dded9b0b67f39935f550fa491c512fe

          Download Submit