Overview

overview

1

Static

static

1

爱电影�...emp.js

windows7-x64

1

爱电影�...emp.js

windows10-2004-x64

1

爱电影�...wsf.js

windows7-x64

1

爱电影�...wsf.js

windows10-2004-x64

1

爱电影�...mod.js

windows7-x64

1

爱电影�...mod.js

windows10-2004-x64

1

爱电影�...emp.js

windows7-x64

1

爱电影�...emp.js

windows10-2004-x64

1

爱电影�...��.url

windows7-x64

1

爱电影�...��.url

windows10-2004-x64

1

爱电影�...0.html

windows7-x64

1

爱电影�...0.html

windows10-2004-x64

1

爱电影�...6.html

windows7-x64

1

爱电影�...6.html

windows10-2004-x64

1

爱电影�...7.html

windows7-x64

1

爱电影�...7.html

windows10-2004-x64

1

爱电影�...8.html

windows7-x64

1

爱电影�...8.html

windows10-2004-x64

1

爱电影�...9.html

windows7-x64

1

爱电影�...9.html

windows10-2004-x64

1

爱电影�...0.html

windows7-x64

1

爱电影�...0.html

windows10-2004-x64

1

爱电影�...1.html

windows7-x64

1

爱电影�...1.html

windows10-2004-x64

1

爱电影�...7.html

windows7-x64

1

爱电影�...7.html

windows10-2004-x64

1

爱电影�...8.html

windows7-x64

1

爱电影�...8.html

windows10-2004-x64

1

爱电影�...9.html

windows7-x64

1

爱电影�...9.html

windows10-2004-x64

1

爱电影�...x.html

windows7-x64

1

爱电影�...x.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-01-2024 13:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    爱电影全站/源代码/9ia/aiqingpian/41.html

  • Size

    5KB

  • MD5

    dab3ff4df5a2a35d5af85ef1e6ee0bb7

  • SHA1

    e52badd8fedc7b8c9a01a1ef6e59ce7104b38988

  • SHA256

    8ee8b5fcebc19e0012b6b270c4c069ca226b7ce7dbdebc517d3f3f1cc0ba174e

  • SHA512

    fa8c1a437e2d58120e9d7dd35d7da38db16b968b30b033cb9def967913c9483992261021301cd9d0b3d033e148591277a2a29dbaa391197cc8f353bf5143d2a5

  • SSDEEP

    96:r5Vj3LmI861BkLA/jHAGvzeKU9Qq7F35DouT:DWsjHAGv6XEG

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\爱电影全站\源代码\9ia\aiqingpian\41.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2980
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2980 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2380

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b0e7bd6c861c0316e3f459b54a75d5a

    SHA1

    03c2e9528e32fc7c63c6d48cfecf9536d8c473ca

    SHA256

    734d93495f34ca0312e7b3156ce1411e2fac31c48fcbc1275447750e97e14f37

    SHA512

    70b3c7d7f4f1397503bc893abf40a9f7fc8bd34af25fe73a059606a437a44fb5a09f52316aa89d114c442bcdf6aa0d733905793e8bc7fa16b627415498a996f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6e4c662e47ab8ffd2b984ca2c006631

    SHA1

    4de55138d0bc1f89f88957b642b2678d6c0c1f95

    SHA256

    a827e5350b43fc4759edb47392724c2e3c57c3477c33764b9655953fd52b5f23

    SHA512

    e0755eedca31d6f8256c62bf4b7eda9d215d64e9c042c15a133a14af2695cab14b1444cd7dee5050010e5af065a3d24481608ab099f243200e71690d21becb39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dbc0cec994bffedf1c40331d6772fcd6

    SHA1

    0eb8802408193cfef55544eba0da44fb4fcfcda4

    SHA256

    b3389646ecc0555246b460627daf6e658bec5573a807e16aa1449d9669a52e0e

    SHA512

    077d776a19833362deb843bfd10d66f80576a8cf6f17e988c964c1de4c2d0f8ac65a4e0018a434d9373f113de4497e41c7907b3c4265cc10e3610b97793e3738

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4bec98c722100efdb8bd5f3e58a3aafa

    SHA1

    442223460fa1784e724cdf48611b6902b428ec2d

    SHA256

    a3dc388c0ebd9693c041abb374e39c6382a3d926a769db6aa3e5a2369fdfee3f

    SHA512

    9927920e11325dff37531acc257ae86d071f5fad30b94484c60713bc5abf403811fdbf3428259b4896c5608e40de1d5c651e01c6072c1e0459c4b24929556f31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a80d8c3ebeaea0791cfd107d40166ecb

    SHA1

    5af0ecbf6063bd6516f6632ca00a79d0e8bfb2ae

    SHA256

    123ed19b28d5c50991c12cdbdab729b54f39dc1b65a135d354c39a2318724087

    SHA512

    583571e938dfb37241715a7393ef6be2a961e2f0f15c476d11bc2a81e653a8dc08ac627778730c952bf11b8606fabb62eb1b1910ef4785c5c353980471cf0a0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    42c9092e1a874c6dcfada1670835bb36

    SHA1

    af6b05b705c514f4690eb57e375fa78a93ee9143

    SHA256

    df8af83986f8110c0d7e99a78b72be7ef075f1559390ccf91dc58e6fe2653c94

    SHA512

    4ff5636145d634c35934a0dc74bf5e46e32a2eaafdf891fbd9874c356cdf157643e1bdd3d3fdb9d6d73e764e821983b636fc296f84a35dba4730a213873b60fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2648b9d1431574ec5681e6eb7b18eac8

    SHA1

    4e9c75fd9a2459e03427f3a7af0fe0f5da028a6c

    SHA256

    667a07581034be11b71e7fbf4364f6dad70ebe4efc97787ed3a4d7a0590b3d83

    SHA512

    7ec49bc128b8ad2960ba4feed1d997ecaa029b0cc50e03c7ae7f36e652516318fbd128f16817c54dd31202ad8043fba3f205703ac7733b92b20b15520ffbf0c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7709b0fbcec7a3eac122acd93f82beda

    SHA1

    f26b62dc30a62802a8796aec141eb51e088afb04

    SHA256

    3ab49dfadbbe0602ea1601f38aa59f3ed35f29add34954c4bba4a111d6eb8828

    SHA512

    9aee3c55c797d931b5a789064c682af5cde6ab60211198a17ce624c3c779ec23dbefb5008aec9381af488c7f0afd9df40272da85e75346ca71ef30168232926f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    92a209ad84da391ebdb865b08a578c44

    SHA1

    c42b5849b9e4b1ce61758ed2de7993558d17c722

    SHA256

    d77bb78401ffff370d5c258c625c103e7aea7a40f756dba032cd9db12f40cedc

    SHA512

    e8023ac58c64aeb294a51fc22fb39847d006341fe9c49749f45b930e59b68488e512bb4b17607020509e94af3b134c5812006b6cf3566df0452b0a44209e40d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9fea7469f9859b820b2d2be76071524

    SHA1

    123cc48b21dead5ed31047aea94fab0999609d52

    SHA256

    9000e8793821dde160983cdfc5b14f6c0f85742926bd357c86955fa511da757e

    SHA512

    5bb083f93a423e658429d9c05050fc5e82c43ee935020ec499642315f9ce800d490a209a05ab468be5522125e5a2b9b8cd097b6b1904ce9de27721f4f41624ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d706f6016aa76df3e41a1a536e70897

    SHA1

    076d34681138535180013f4931987e660063c066

    SHA256

    c5aa1c1c2599bf9aed163f7ef86e89181c7498e38a1ca18da5e9c4bfcf573caf

    SHA512

    0bf27560fcbe33336359dae9d1da2663551169ea27ab1676ee68609c97864a03ff394c60e884f85ab52a79be06fe44322b6210b4f15f4d892003f82f870f8012

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5484d7447b773f8ead71f2fe9b7eb282

    SHA1

    b1eb3bb80cd1024c863007fc308fc639a44fe389

    SHA256

    ba03fb2a27bc63ee3d1fdaa988be40c2232837af298c414df880d027c3cf1dda

    SHA512

    4e903dea66ef6df2bb2df3672aed5c60808b6bba530872cf8700877d1b624766e4151292eecbd82a79700135144c63a53ae3a329622dafcf0fe59b08fac04e2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    16f4841fce7f9d2fd7832239124434bf

    SHA1

    d2bb434a165c1e2b87f32e59508863ca8d606372

    SHA256

    e5ce97ee266fe445270cffb3b84cbd58d75de9b47acbf50b86132e7e57ba5c90

    SHA512

    003dd0e1472ee5508ddc86b86de520911262c055e08c83d3e0d87bdfbae54d4159b9fcc1825656f16dbb84602f160729c20df4d6469e215b4532f7c0bf7e70e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ef9c9b5a435408ceba728885a671c95

    SHA1

    682a5d43353a71fd00c5697be7272d9b2988abd9

    SHA256

    4d345ef2ac1cb5a16253effdfdde062e3fd49b38ba0bb85336aaef89f4d396c8

    SHA512

    a7d842e8f61786d9a6a07446e3030c0737b756a903476657e2f5d0882490d16ed8a27614ed8d50af7e3fa0de58cae47a27fc4ee5221bdb056da99d84730ce2a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb541ac8b371412cf96fe1088604fe1a

    SHA1

    ff5b954fbadb84c54f2741da926ce9b8af79253d

    SHA256

    0ed706e83239e714b1ebd997a798970d0cee1649ec6ebd68ccb6b10d322fa5da

    SHA512

    62cfe0a74fc9f38f902d2206d9d8c4a83a1c8d5243093c6bd6f3e4de2c2d4502008b9f94ef29ca7632499077fba1b619456ae024001891af1eaeea955ac7392a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d2c53bae42ca1a90556b078b65f77e5c

    SHA1

    2f3c1e829f6cd4540dc17b7c9e85e638ae4dd335

    SHA256

    321b7089a02f8cb726750d36de15854b5632fb559223905635b92c95d699ceb1

    SHA512

    ea0cf2bfe8dc960909b945f883bc0883a04318c73994ebb979d5024002e8825e69a4f296e0b0f8ca2371695aff2cdea2cc0df939b5888ee07de248ec60749f4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b627cfaa2ab543708a9baf58f014adf

    SHA1

    c7aaf8c53c564a20ed2e265abb1b4b434ba041ff

    SHA256

    a2d6c42cfc8e4329475779767d867a36574adcb8ca80a18e05c2977dd282545c

    SHA512

    50cdf41eb53686017e97402e74292d3c160c37f1197d3b8559d4c19ad9f5521697d99712ba0bbc699d371c809eee56f40f8f1a621cc4a1922c66585ec62027b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c4d37672dc9c340ccb597a9323f7362

    SHA1

    269422c2a38c90381d71ef56c475fe8891f9f7f5

    SHA256

    37ad2ad06eb532cc378770b5dae72959e43af230c67a3003e861963a063181f3

    SHA512

    fbdeba97215faf1ba47fd72925348da542fd426214c2cd8b26de005c0211b8bf5a480c871f8bb524c314a558a1c193fc163ab2146153473f3e766fb7e54812fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54607cff1c181d789d5f26dd29419c88

    SHA1

    fe8468be2d3f2be32c9024070b6d660176afd9ec

    SHA256

    e1c6406744d92136d0ed0b4646a624d88fbe25f234fe6a4598f49478ddf732be

    SHA512

    55b0f723e37da5a0dc936b92c01bbd69fafa99331995fac8df98361c6786eb58b8a1c9bbc07c5b485ce46d8e8fb69eb06c0d3c03c255abbcf1b44403d353ada5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab67BB.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar684B.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit