Overview

overview

1

Static

static

1

商道货�...ai.htm

windows7-x64

1

商道货�...ai.htm

windows10-2004-x64

1

商道货�...ui.htm

windows7-x64

1

商道货�...ui.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

商道货�...ua.htm

windows7-x64

1

商道货�...ua.htm

windows10-2004-x64

1

商道货�...Yi.htm

windows7-x64

1

商道货�...Yi.htm

windows10-2004-x64

1

商道货�...ao.htm

windows7-x64

1

商道货�...ao.htm

windows10-2004-x64

1

商道货�...uo.htm

windows7-x64

1

商道货�...uo.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

商道货�...en.htm

windows7-x64

1

商道货�...en.htm

windows10-2004-x64

1

商道货�...hi.htm

windows7-x64

1

商道货�...hi.htm

windows10-2004-x64

1

商道货�...ao.htm

windows7-x64

1

商道货�...ao.htm

windows10-2004-x64

1

商道货�...Qi.htm

windows7-x64

1

商道货�...Qi.htm

windows10-2004-x64

1

商道货�...ia.htm

windows7-x64

1

商道货�...ia.htm

windows10-2004-x64

1

商道货�...en.htm

windows7-x64

1

商道货�...en.htm

windows10-2004-x64

1

商道货�...Wu.htm

windows7-x64

1

商道货�...Wu.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 14:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    商道货源导航系统特别版V110905SC_0910/HuWaiJianShen.htm

  • Size

    16KB

  • MD5

    b6cacbf7798e436c06d7a6e4f431dc29

  • SHA1

    82129d473f746d112b40df940dc2742e500f742f

  • SHA256

    597352c74449a56b091c0cf46146f9b8709099d26ecb33dd769ea53d53ea3601

  • SHA512

    71d23a4e5c14ff2f40c478149716e76a84b5f0a4897fca0375a1f1ef6b0c9f9d6ba9e3502db8dbaebf262b1dc965b6c145717cc3474b0c35efa25a9e7dead057

  • SSDEEP

    192:SqCdH26/pHCP78ijfe+gH/b//pyb8uuCLLpiDQikcua:Sb26RHG78kfe+gHVdalisikcua

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\商道货源导航系统特别版V110905SC_0910\HuWaiJianShen.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1784
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1784 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2708

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0f64ae9b37659b959eb30978727be7e

    SHA1

    4eac62351ea0269a1cbb65e9e4e28d1252558460

    SHA256

    a61faeb8bee80c88e365923c957ac58e86dd0b2dd8d6a9ef66851e73d3235910

    SHA512

    132aab238b84e72d8292ec965be5524aea8e917f3c6727d92317f0347934cf190a970e72dbc6136996d1047323f98d04395e416daca5dbb3ef8071240c6ca597

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    415c98dadee883710c85602bc6d575d5

    SHA1

    eca3664e67d51c0cd0b637a2f99aea60db7dc4bd

    SHA256

    d0297f27063c437bea447a33c5220e09a4e34a2294e7a964b7d2d54f115b73da

    SHA512

    de1594a0f397cf1013ea2738e629962428a116bf5773eb47a6792f621cb1cc5e689ccab92c5b10906eab5f1930b6933f90210718f6f89128a8243763834938ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bbb0813681ab0d045f49e2368a1b8798

    SHA1

    0c511ec59a0916ea1d8f2fb1e7ba7cb248355284

    SHA256

    45e4750e4dc13531f65e7c0f2d91e155db26570cb8c73462ff60f16fb97621f8

    SHA512

    f1d3451efba2dd4d58e689e2d0cc36991f7cc1e852872d24dd76cf75e4e97f0c4a004f2bba0e9f1a0b8c4b448d567c6a40e34b788762c2bd9ea85b44c65545b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d146f16e8c3801cce8f49a82fca75e71

    SHA1

    aeec6ed5b618cc711c54c326fe3e71431d4fae49

    SHA256

    e65a2793e662c09c209f9f30064bb8e7c5bf456bcbd19e31b03207dc5126130b

    SHA512

    607cfb75a7d434260d52f3873f6504a155c30d7fec9e9f0f186d73dc77d9f49b4b0bfcee52dc64ce353c7bfcbfe467fab9221b21ab92cfd652ad4355754e841a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    344d9191e561c5cc72b1872ae2173cac

    SHA1

    aeec7de66b48b91e6d13ac92bc4cfb90b091bd64

    SHA256

    245bb82ec62e54244728a1fa9814db22e53958589a1403a27b2f77eb572706db

    SHA512

    f3b5fd81d089d1a4e6c7edd169e79bf7410f14170881790c1dcb6a78a35abfa8167f95dd9761c10147268815d3d1da153af2c348d0bba86d0c97b732d60a06a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10d39a5c9cf1f407fe15b8449bbbc73d

    SHA1

    d5806b4196ebb37b93f3003837e742a4800c1519

    SHA256

    5bd334e5f1f3b392e1303ce67629cb725d6f5642e7054c0ec02ac3acf1c9ff06

    SHA512

    a7cd7439059c8d90bb11ccabeff9610b4f5322731a74234e5716253a3f0ab4c574ca67211b153f0ed78901c591ab610a6dbeec9e4ceb85e09d59f328731f3dc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c640ab0456b9badd39dfe4c66240c6a8

    SHA1

    6e05399c63cfb25595f9e362dbc339d1ac901b06

    SHA256

    c64dad1c7a33ff247eaafd6d8d5c5f0d90cb94ee90e29eb45bb719d5cb8f1bfb

    SHA512

    5b47248523f043ccdac293c4586feec90791344b274ee88f4e42e11dc0dd57ce0afd99e8d172c255a8e5873862213128e4aa5326a6b39076f6dd1ed412d88a70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6cf968c5dd2bdf23cf2abfcd0f8bca20

    SHA1

    1a0bf540e36270f24fdaca66f8ad40c7d2c5298c

    SHA256

    b338af269f4fcedcc68bc11e8018345f096dd59eb3d6450206ca432519e9b300

    SHA512

    42fa6879d17f47689cb5c2bb8ec40ea5d43f1322a66e5701e8ade37cedb2c9569f0fa139b45ed72417edd2cef7acdf53d9a4f8371d1010e3ccc0b735df513048

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e44238f425a5000de1352ede92012f7a

    SHA1

    6e3244e56bd73ecfc0f79505822f7c1cc8f3065d

    SHA256

    58dfe3ab4556dde4c1c1749b6ac8a0b185e73066d48667dd4b2a5b5c2e03522f

    SHA512

    fee6f5d05fbe86ca1fad124c54917c944628120e5186bd10f51c107c15ebd46f51cd2b6b16be14f240c2b50b3a474b891449886ce0d0ed5ae888b637a918d542

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0cb6603fec969d1c999b3afdf876c2e

    SHA1

    9212e87fe3bbf057ba87e4ebb2b166da4160db16

    SHA256

    e723f3357beef720c2497bd96b5cc8cafb1297bb8292a46d8ab5a984c73abc9c

    SHA512

    52acf151230780c9102441cf54862a2a4efee14db0d08d86836c29a0685800c29db0de4d17b98224a0e4a43dba312498c9bb36d12c689948548b4b63da00956c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7846665a239c0cf44c3025477e3db6a8

    SHA1

    d84ee986b4c4440f844436e4223ca4c2aec2b16b

    SHA256

    4f45458008fa49578fea0557fd50aac372b5583b543defca542bb97a1582987c

    SHA512

    c41dfe30894cc9a5ab87bdc444362bbab6f04d33f8730cb1ca951817e20f51bcb4e7277fe98082b655abd1f50442bd90b9115036ed0e6de0d6068998d1c62886

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b9905d17d13edcb4950a05bff174c27d

    SHA1

    68eedeca1115fc57771a9a5305a508465f19f568

    SHA256

    350beb71c32f7f540bf1b2bcc5ddb2485555fcce0bb0b3a69a5d53d5daf7fcb0

    SHA512

    2c4aeeb5e53793ea5b304a012c750d4c831f6dbe376f8374c7bb04007a89309cbafe8bb623066f174d5c7910886a08f97cec48038ea36c44b5ebf466f696b501

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9293ffd16d12eb7d9532ec4a64b299e

    SHA1

    77ab599d6b9f514a1acbdfb9d7dea33f954498f6

    SHA256

    6630ea8165af2820259da36dff6e348b38f7c7034eb702ca749399ef3c0e61f1

    SHA512

    bb3b3d55b5820b828ad141b41a73ce7610949c928e3e52934267d8140cf14431bbe745e28d74d2e94950ca6ba73362639b40692a57ee4856ac607ef198af9d45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f1951e57b9648ba353515d944f421569

    SHA1

    0fd01cbdb6499491002759284845b39edf0c0f05

    SHA256

    29838be546745c465dafd48a54c0694228d3660c7cda81d4b1f73ea820b44632

    SHA512

    53c52a647a9c6062050fa873a7a8a2b004259df20e7f42731cbd80f82219776609ccb80c8eeb86753771c3804459162f36d045f5158b9ed9eadc7edc702c6793

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc8cf6b58a1419e3e681d22c23a698ae

    SHA1

    9ab0923323620dcf818aa3beae3cfdce5c6bda0a

    SHA256

    6c45d41ca47f7826436a16ec063b725f8e4f8846656407d64fb2fb5c558d75a4

    SHA512

    6f5d23b68a37d615c809782911d4e23600827e9821447beb02b9fb01db305834209d0b6976633f1c38c476285f433cae41c09b56cadd47acab310a656284ef58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    33b2413fead95982210c0da98e2ef7d0

    SHA1

    57fab2c84568ba15664181f3de537fbc51eb8e47

    SHA256

    2ea2e332f75f95568bb2a708a22b8a7889b179070fe91fd1cdf9192f79fb0c09

    SHA512

    5600112f050014eb8129f899afbaadabc0138c55c1aaee760e4c8099cc882b5427efc78e7b6e7c4b731f2e47969f55f2515508e715dd114d32b6f234d73ec7a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9b6dbd03c4fc8312d2bb5eac88e9397

    SHA1

    df66c135e23c865700d82f17b4e25c6b3812a4c9

    SHA256

    eb5dc1b3bead9b8caed8a133af3c839858462d638d618d07b876a8c0cc78f788

    SHA512

    7bf4d7ec9941b6ff6c1ef0134a49674fee6d3545d45ba061c05e0281ed9654c921c7c1ddbcdf8377c7d881af46bc7e359890ac11c4abc7dfcc05dc481ebc5579

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1bde3559d38ce8cc28e0ca004b8639ed

    SHA1

    682afa72179ec4bc7394f7a1d0a61817040c9333

    SHA256

    9d9176c4f07448ec0ec4c47d07d22deb5e2352aa4705f9db590e834104435624

    SHA512

    8c688d0c8871c9ae06c1355d13749bcd336ecfbc1594ba4125ec9c89069a39494c627b21f129f5f191461fbb2b657693cd6b4589a9161b75f4ee6f28bf25afae

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD07B.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD10B.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit