Overview

overview

3

Static

static

3

alixixi.co...息.js

windows7-x64

1

alixixi.co...息.js

windows10-2004-x64

1

alixixi.co...at.exe

windows7-x64

1

alixixi.co...at.exe

windows10-2004-x64

1

alixixi.co...ar.exe

windows7-x64

1

alixixi.co...ar.exe

windows10-2004-x64

1

conn.vbs

windows7-x64

1

conn.vbs

windows10-2004-x64

1

dele.vbs

windows7-x64

1

dele.vbs

windows10-2004-x64

1

deleuser.htm

windows7-x64

1

deleuser.htm

windows10-2004-x64

1

edit.vbs

windows7-x64

1

edit.vbs

windows10-2004-x64

1

index.htm

windows7-x64

1

index.htm

windows10-2004-x64

1

login.vbs

windows7-x64

1

login.vbs

windows10-2004-x64

1

login.htm

windows7-x64

1

login.htm

windows10-2004-x64

1

logout.asp

windows7-x64

3

logout.asp

windows10-2004-x64

3

password.htm

windows7-x64

1

password.htm

windows10-2004-x64

1

px.vbs

windows7-x64

1

px.vbs

windows10-2004-x64

1

reload.htm

windows7-x64

1

reload.htm

windows10-2004-x64

1

update.html

windows7-x64

1

update.html

windows10-2004-x64

1

alixixi.co...es.dll

windows7-x64

1

alixixi.co...es.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 07:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    alixixi.com/ichat2/ichat2.5正式版的视频聊天室程序/1_85Upgrade1_87/iChatNetBar.exe

  • Size

    244KB

  • MD5

    3616c10ee4c9d530e53e4da6728c1aeb

  • SHA1

    42306056df7be6dd64ebb08f07c30229adb151f8

  • SHA256

    7cbe6d6e5a986c38c1e13208d8159dcb2371e31bcecb1732de9fc6072e9bc536

  • SHA512

    4739992af75257297fe9806833b4a3eba2c42a4a5f6cc54f4877412b6ad266c07a5f8893ec5112776baed6d91dcd849cf0b25699e2959ccefc9c38e52df4b7bb

  • SSDEEP

    3072:APzBOJRtWODDo1kBlra8vmQkaALRdN/f0YdUnWUX0ytG8fQJxm4oiXjVD9janUi:AbgWODDaoagmQkh1nTdr2arVJj

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 3 IoCs
  • Suspicious use of SendNotifyMessage 3 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\alixixi.com\ichat2\ichat2.5正式版的视频聊天室程序\1_85Upgrade1_87\iChatNetBar.exe
    "C:\Users\Admin\AppData\Local\Temp\alixixi.com\ichat2\ichat2.5正式版的视频聊天室程序\1_85Upgrade1_87\iChatNetBar.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:2056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2056-0-0x0000000000400000-0x0000000000441000-memory.dmp

    Filesize

    260KB

    Download