Overview

overview

1

Static

static

1

商道货�...ai.htm

windows7-x64

1

商道货�...ai.htm

windows10-2004-x64

1

商道货�...ui.htm

windows7-x64

1

商道货�...ui.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

商道货�...ua.htm

windows7-x64

1

商道货�...ua.htm

windows10-2004-x64

1

商道货�...Yi.htm

windows7-x64

1

商道货�...Yi.htm

windows10-2004-x64

1

商道货�...ao.htm

windows7-x64

1

商道货�...ao.htm

windows10-2004-x64

1

商道货�...uo.htm

windows7-x64

1

商道货�...uo.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

商道货�...en.htm

windows7-x64

1

商道货�...en.htm

windows10-2004-x64

1

商道货�...hi.htm

windows7-x64

1

商道货�...hi.htm

windows10-2004-x64

1

商道货�...ao.htm

windows7-x64

1

商道货�...ao.htm

windows10-2004-x64

1

商道货�...Qi.htm

windows7-x64

1

商道货�...Qi.htm

windows10-2004-x64

1

商道货�...ia.htm

windows7-x64

1

商道货�...ia.htm

windows10-2004-x64

1

商道货�...en.htm

windows7-x64

1

商道货�...en.htm

windows10-2004-x64

1

商道货�...Wu.htm

windows7-x64

1

商道货�...Wu.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26-01-2024 14:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    商道货源导航系统特别版V110905SC_0910/JiaJuYiJia.htm

  • Size

    15KB

  • MD5

    88d99a274e13673ec1cb4f7efd760a34

  • SHA1

    c2763b70951dfc83aab06af80267f5bcd8c42cb3

  • SHA256

    66872bf63b4c2ed7f4b5920edf0c5d1c7abc3f6153310617c6feb476f611ca31

  • SHA512

    7521c9dc81694aaff7d4b2ad9ad6db1d4f0ab88734b22c1df672173e260662665195c2988b7ab265268c105a2d86c33172bbf2b24ebdccc897c30a8be8f415a1

  • SSDEEP

    192:SvpX8H26/pHCP78ijfe+gH/b//pyb8uuCLL+i/JmBJMLkcua:SA26RHG78kfe+gHVdaSi/OJMLkcua

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\商道货源导航系统特别版V110905SC_0910\JiaJuYiJia.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2296
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2296 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2712

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f5244ab425a59595aab235e42e2c9e5

    SHA1

    0917ea926912cf72eba0ce898e56243ea2da6409

    SHA256

    aadea70a710b469c8692b79a3b699c15ca1e59403dfe109eef389faf5f4e6c63

    SHA512

    8dadc61a7a0344cd61bab1d2ca65b2b08ded7dbdb7e9b9e41a0f1d97939e5640523f81c2b8a5ce3df9a13874fac15c89b251dceb35b115ae6cb4ab0eda37beb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    27a5032e5de63ffe0900936671646220

    SHA1

    fdd181bf0a0d0954586be72abd6371a3e1f0b97b

    SHA256

    21d1b5c42bf7f2496ebff0927a766b6f4c24eab1caa0da915c3fd1583c7e57e9

    SHA512

    9c537a1ec063d713de39d548608e8ea3f7bcaad49f2ef59d42216b968c36a4849b4a7e1d9c6568d8b7dd0bed35c0f5f8fcfaaae1757254d5dff527f86bd1ee74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a70949aa75a85fab85eef335d78bdbc6

    SHA1

    f4c4fd50d93df63c9ee26eda2013a692c6fa61de

    SHA256

    1ac0b2cd9e609e7e647772161f639912d2b37b4512344f0251b9fcd66ad5ad72

    SHA512

    242b50c3cf0e098ab996e5ed7d1e534df723b71edaef4511649b7a2a1c2096c9e1b2bf8e7159ef67fe20be872770f973e4b2a5858bf3c7be3627ee95ab4245fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb3392d806bf09bd72bd48b6cba0dbb1

    SHA1

    7fe02db4979686cb4f431a713ac179a2cbbbc22e

    SHA256

    c262147861a57bb6be18aec49eb1c8ab6dae699f1fbff2fa0f1008a5b6c20da3

    SHA512

    184ad35c42c9775eaae26a754e3258c4c1cbc45c3b834d39ab68e0cae811963da863f09a63467b1e1e606c8a8b5a4e1441726101cb3460bea8a10ebd0abba212

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c990ec9a27194a7a5d89aa847ee4ed89

    SHA1

    51cbcd5e43fcc0e1c080894edb76e2f0a2b09277

    SHA256

    88c04482966f3f600dd58d9491cb8e89d7a178c73f2a5177f498e49eb688504d

    SHA512

    e09ba4152b40b4f15e3999728ccacbf79b16160a75f37e286fddc2cc3479964cceb997b73955054503ebc48f6ac62d2a3dd2ed95db129fe3af6a17fa90c6fa13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b2cd0d5af641cd159fd5cd0f7a7b120f

    SHA1

    518866b2864890931b88ad9636e4c92064d3a084

    SHA256

    f34867d497fdd10b266e24453df4e39b3bb264e773bb736068507a0bf219c9c6

    SHA512

    40d4b2f7635964825f789d590b6a71ffa2d3a708f7e2649feb9f84acbf727f55922da89844fcbb898f2f40294ce037fdc93ddcd4961ed34db6064f0591ffd2d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c31b916987cd7042677a6771efd55941

    SHA1

    aa438aa2395c792e33aa7554da34af766359aa87

    SHA256

    e6e6912cd18e49285d633b5cc51e5cd5afeeb27cb753633c0ad21d499901507c

    SHA512

    ca2d96675d055161f3b9081a0967a48a58d2df3a38a48cb5a4c1ea169feb91da78a5ecc7313c67b74ead178528ab1d6fb0943689083ef87b2ab019657fe74eca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3973da5ace8764fb65373048c186ccae

    SHA1

    acae889c759d885d32d4339e2e539f734f508c75

    SHA256

    935ebfc6a8f710e7f6e460729f2a8052dc6eea31b37ed27c7fbf5772562a0b95

    SHA512

    b6eef717454e21daa6a37f74945833fd2b8ee900c26dfbfe688766f26b1bf9923b69c780da10c33e3a9393c40a60f15dc29bcac81395e4af3314d1ddd929edb9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2310cc98259c14ca930b2ecfd8b38bb5

    SHA1

    40234f530d3b9bbe4fcf19846860864ca5c57b9b

    SHA256

    65e85705a4db8c71b5c91536374ed2b716287fcd8a278e1085e4fec724f9a517

    SHA512

    62af6c17465ca2e6eef006fbbd52531138d5c8f39adc76c818364afc4948f2403fd970c597e9c329e569351c0d031b338c78b16ac9aac692cb6b0e3dfe59df2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d670c0f25fad1dde8f22a2e3284dd94

    SHA1

    434aa1c6ee66c76628cace9dbb6d6ab7618abfdb

    SHA256

    64103a8617628a76fd082391f9ceb24d101f4f7786cdd155c1a8460d8c6312ee

    SHA512

    603817a522ee762d01b6f31466bdb9fbbab700862288b28acdc95dde6e5f7be00490e6afdfc4936ef4913b981b3d013d293f53393f2c38cdc4442fe2998ca0d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bdfe254d004604e97ea3fc4cf0817966

    SHA1

    fc36dc7cf160026affab7859d244723bf9804907

    SHA256

    14e05c0a97391027034b6019ef7378907328a35a464d7342e63e79d10413c370

    SHA512

    662373ca20d05c443b19af7c1043a785ba16d1e3292dd8b020b05b8fe06caffbc32ef83cae234e0a0028a4ecb27669aaa7190db38dc30a63f1b0cecc355a9f7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f1476160fc210eedae19dc5f395ff60

    SHA1

    47204e45eb35b2d8e673f4d63407963b7085a196

    SHA256

    3f8ac40a09c2904824b46d7a7ff71805ddaa14263b4f69b878ba8bd11b413e86

    SHA512

    0e65ec0efd10bee35836b33cb3bbb3d32552d1a94ff8f24af49d77b01f1b3116ecedb99cf28d55aaf681c231b159de655cc404224b37f5babc2ccc712938aa5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56c73ff87190e350208ae7d2dcd83986

    SHA1

    66d9281c2a1cb705b6edd47190188010b6692535

    SHA256

    2b040176eca85baacf16cffcb295636958f9e25f40ab8c8e542fbc8a67f0bbf3

    SHA512

    bac282e43ad318a1c411d0a5a23656185e6363d02c1dcf25a7a0d72f183c10e971078bb71f4471c532602d328c7884fc7b53760da5711b1b9769492910dbc32b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b54634c423352610d7975c5f3e9d08f7

    SHA1

    991e6fcb6dc19676fd1ae2434e79fd3958747b98

    SHA256

    348e6078682215da18ceed45c118d995cdd7ca830fc438d46c852cad7549bf66

    SHA512

    4532c8a25c487a48fc517e91e3929bdb9cff52962f8c709908e007eae066c5c0081434361a3c065adb94ec449fb4a10261483b706c98e7190c66130b8971241c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4bd4dc253de1889dc9644450bfa4d9e2

    SHA1

    d98f8baeaeb3f907af1c868f22e5e9673bd5595e

    SHA256

    03ce899d8a051504c686ff4c3a6ed4a847ba7849b2c7f4c6294f2e2fc163d4d5

    SHA512

    d22ebae1c476a15672937b330cd4f24b24bda787d35f745269a0f865b20106dd02b5cec52e40f42141fda8bbca387291ed5ebc3ea6992fa51d166f82b19dabf1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    16ad13d3271f0412419e3ec5de492ff2

    SHA1

    76365e9324183f588e7338f0a5fe5bd7106571d9

    SHA256

    8cdb258467998dcaa71ec8b723aff164c1320495ef502088fa7a0ebdefaecc50

    SHA512

    c574f956d05f7515e0c736425d1029ea7ec5bebd8ec527853edc91da55a2bbc362992ffaa44cc92b74f2567e15aef402e4cfb6554471eae3bfd3e1c8f89bd0bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e41e15cc358521d38f77a2f18e9f7394

    SHA1

    0da1085e7d6e3f2678e2a7df38db20186ec9f273

    SHA256

    87c5d05efdd2afed96987241c5b862d19d93524ced1ad6a67d63895099aaf0e3

    SHA512

    d9abd972c00c16b10128834e7d65fe76cba161892ae582748585be0f82d756deb573831050d4581d06d4dfa06a15c28e404c1ddace9bed9ad324e288e1806a92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f3afe68ed8ffeff775fb21d524be4abc

    SHA1

    4988dfa3b663bd714627bc2e025beb3179b68aed

    SHA256

    c5c46bb11d4115901085d1af2f5fb9044e0896f2376b40c3c7e261195620221e

    SHA512

    2a1339ea06992700f6d04dd6c9fb1d4f41a00ec0ecb91ee90f37befc37e857bfcf6210b70df3a0e09254efe45848edec0c2b0f86112e5769a5a970fe0377e694

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    479a26d11a65823d50dc6a2c1ee87e2d

    SHA1

    2bdbf875adfa760eff1353c6bd29cc484cdce227

    SHA256

    4de2e6f3fa6655d156a4d5a43b1fecf5d28fbd5b4d76ef85397d3d028fadd65a

    SHA512

    0e00682604c981a64fdaa06cb2f44e37853e1ddd4d894affc0c976c91ae7f416ec99547966bf41404f018a6c931f09524adebea321495a9692e779b5592449c9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA50.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB0E.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit