Overview

overview

1

Static

static

1

money/about.htm

windows7-x64

1

money/about.htm

windows10-2004-x64

1

money/help.htm

windows7-x64

1

money/help.htm

windows10-2004-x64

1

money/inc/...il.ps1

windows7-x64

1

money/inc/...il.ps1

windows10-2004-x64

1

money/inc/validate.js

windows7-x64

1

money/inc/validate.js

windows10-2004-x64

1

money/index.html

windows7-x64

1

money/index.html

windows10-2004-x64

1

money/index.html

windows7-x64

1

money/index.html

windows10-2004-x64

1

money/mana...nc.ps1

windows7-x64

1

money/mana...nc.ps1

windows10-2004-x64

1

money/mana...der.js

windows7-x64

1

money/mana...der.js

windows10-2004-x64

1

money/mana...ext.js

windows7-x64

1

money/mana...ext.js

windows10-2004-x64

1

money/mana...ker.js

windows7-x64

1

money/mana...ker.js

windows10-2004-x64

1

money/mana..._js.js

windows7-x64

1

money/mana..._js.js

windows10-2004-x64

1

money/mana...dar.js

windows7-x64

1

money/mana...dar.js

windows10-2004-x64

1

money/mana...fig.js

windows7-x64

1

money/mana...fig.js

windows10-2004-x64

1

money/mana.../en.js

windows7-x64

1

money/mana.../en.js

windows10-2004-x64

1

money/mana...-cn.js

windows7-x64

1

money/mana...-cn.js

windows10-2004-x64

1

money/mana...-tw.js

windows7-x64

1

money/mana...-tw.js

windows10-2004-x64

1

Analysis

  • max time kernel
    156s
  • max time network
    161s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/01/2024, 06:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    money/about.htm

  • Size

    4KB

  • MD5

    b86c2bbd70c9fe41d8e772c08d6497f0

  • SHA1

    5743fadc9ccbb8af73d1eae35cbe212ea3cc039e

  • SHA256

    b8e3ace95a9b2b5ca432f90123d97e13796bbc744d85a1244a09833da7f579db

  • SHA512

    207f7cfe9ae564ad9ab9778977cf5fc7c3a2d6a9a242d1855eaeaa4e046ad26fdd880fa32a907f76ecf0104776c84a49f38a2f87878947206e40f222c0464749

  • SSDEEP

    96:BuxoirW8B4XV2S/Q95yYH9re8FjtgwSg6GudWyZdMNLpa:BCfafQnBdZgmaZYpa

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\money\about.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2944 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2724

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5b86cbbc464d74fd9bf445d3458d9a68

    SHA1

    96fd6c52385bf7546cc431efedc8779782918541

    SHA256

    4efac2477414a490c22fb8e08b0f0712977b047c32069e44e2cf469047e189bd

    SHA512

    1e1d8c629ac270efe5d14fafe068322d074cd2c3f248d21eb8737ad1a4151c35b0154f00e385ad2a89fdea510b5d7f743c89c025bd8eae6dc51dee82614f8214

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3d2ba9655d7471ada6d898751157e9cd

    SHA1

    ea2f99add2eed1ba5e1fa2769724cec618f559b0

    SHA256

    0df84e75bc71b95396657ba5219e96227e80cee96e77302611d5150ec7fdc355

    SHA512

    125d6c46d0cc10bec37be6f691b2cdc9b23f671f9a563d4e51d1df8f62e05e134199649bab33e080c1e58a2cee2024f0030effd90d980cf9dcfd06905918f65a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    307adf383e7a5561a1febc4a32725200

    SHA1

    67cc38e4386a0f00d7aed80287c358d2a7cad73d

    SHA256

    1b1cecbd1e7dc927e299d8d7324aa0c31e1f36c89e29cf6d927c3767d2d61d9d

    SHA512

    e038a9efd179d5f7898f71cfdfbe7d50a810ab8c101717d6e3816a06749c02e6e3f22c6d3f52068adbe82c4c809ecb05d38b8e03bee8d4691be50210c3d14da0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a95c812f02fb99f1d76e62f80200b4f6

    SHA1

    8bce3bf293b5f500be243734b41778fcc9d05c62

    SHA256

    d973c69ea238d1987c64fecce3f48ecda9def620da9e2c9828c6b935117955db

    SHA512

    98d44cc60b21608aacf401e52571cb96b9f6497ab8c01217adcc307310aa06d929bef9c4d7bcc9a01f2bf22159db3fdc44c5950b48ffbe7c79d37af7e52cb107

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    afbcdabdcd998e3175a89fd46cb39115

    SHA1

    6a0b3a0bf386b8c98faa18ec3f01fa275eeca7fb

    SHA256

    8670162b988e0fc7afff9e8bc00a42bd2178a74e9ba91401a5e3d371f6ac87f6

    SHA512

    c595502cf35c7144a104cdfdbd992026d0ce8f031882f029d6e2b72d694e53bd5f9b203133cfe1b37a4d4683e043b13a6dc33d2107c95aabc34cdc25d7d18c04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8de217f923c70f8988a4bf0ca8de4bbd

    SHA1

    ae5177234bfe43e817dce4c9ce585af4f2de398c

    SHA256

    5fa22694fbe9540a985913086c18c77238a03f54d65735014a89eb5de2788644

    SHA512

    16990e7175150b681b61ae31f1ae6101573845ee68569e270c76cca9d366dcf021d0bef60155a1be5a6b3a40554fe938c795971a8d7050f477c8d953b4ae836f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    510ee2522f7cecd1a201c251b27917ce

    SHA1

    40a1f15ae8bdbf54c7960b7e0d91adbf1b483541

    SHA256

    1e401a7387d52ac355d2794c627777abb87446bd868aca58cff515bde376ec54

    SHA512

    6cb8e91041849c47aea89bae6ed5127c4e6a6834b267346c41cc1b69ae7a261476a4357c054c83d1a8da2a83ed6afca65fc6d20e52979d1d5418e1822bf1b47c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c7471ea33e96b1c78468f13487ee9632

    SHA1

    bcab24f8a077dccc5a2cf623ad1a6426a1a101fa

    SHA256

    9e7532ccd59c94d2c957e9ec31d3972e735b8257f6b0c0f351a2244f340597ce

    SHA512

    2536b817cdc2b44b35a7f9103ad17a6f74a8f073a4b98c5d02e90f8386db3f3fd52bc4388c1b71bb196f35ced5dca2af215ef8b04f7dff8d796b7180e9491dc2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9C52.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA72E.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit