Overview

overview

1

Static

static

1

商道货�...ai.htm

windows7-x64

1

商道货�...ai.htm

windows10-2004-x64

1

商道货�...ui.htm

windows7-x64

1

商道货�...ui.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

商道货�...ua.htm

windows7-x64

1

商道货�...ua.htm

windows10-2004-x64

1

商道货�...Yi.htm

windows7-x64

1

商道货�...Yi.htm

windows10-2004-x64

1

商道货�...ao.htm

windows7-x64

1

商道货�...ao.htm

windows10-2004-x64

1

商道货�...uo.htm

windows7-x64

1

商道货�...uo.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

商道货�...en.htm

windows7-x64

1

商道货�...en.htm

windows10-2004-x64

1

商道货�...hi.htm

windows7-x64

1

商道货�...hi.htm

windows10-2004-x64

1

商道货�...ao.htm

windows7-x64

1

商道货�...ao.htm

windows10-2004-x64

1

商道货�...Qi.htm

windows7-x64

1

商道货�...Qi.htm

windows10-2004-x64

1

商道货�...ia.htm

windows7-x64

1

商道货�...ia.htm

windows10-2004-x64

1

商道货�...en.htm

windows7-x64

1

商道货�...en.htm

windows10-2004-x64

1

商道货�...Wu.htm

windows7-x64

1

商道货�...Wu.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26-01-2024 14:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    商道货源导航系统特别版V110905SC_0910/JiuDianPiaoWu.htm

  • Size

    14KB

  • MD5

    31869a0c322583c23d16a3edd1de56cf

  • SHA1

    7909adcefbace659a75d98829e0ee6ab9519165f

  • SHA256

    f8fd652271085331e24f61d28447d6f56bc461bdd9418b464177a064b5c29d75

  • SHA512

    34360d89bf21eebe67eaf7fada79bdc049b82e9ae331690c537e6bd4958ea94d0498be77394828f3b1bfdd669f55b63756f2075db9c9d9d908396c43c4435c0b

  • SSDEEP

    192:SYs926/pHCP78ijfe+gH/b//pyb8uuCLLiibRUkcua:Sb26RHG78kfe+gHVdamiFUkcua

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\商道货源导航系统特别版V110905SC_0910\JiuDianPiaoWu.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2328
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2328 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2536

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cfcb80a825a6841c9683fd111be41121

    SHA1

    7c6504afede2a68bac73414752372e24943f2a3a

    SHA256

    744e52036db2fa79d05ab16d642e4e2c1dd3737ad0febccb9fe0560d1af6e2e4

    SHA512

    ad4cd498efa5f9a7dda512d37c6708881dd2fd96dfd976cc8fdf51de2ae8436db95bcb847ec430161cde6dbcd1f18b59df8061fc425fb00b9c3a1ddd7e517508

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b4b8a3c67933c04ba784cf493fdd27a

    SHA1

    79b3b46aafe2251edb418b5306436a53d1934507

    SHA256

    01df88cd29061e73a5f51f27233b9445c3883a3d99eb6f7ee0c8ea1bfb4e68c1

    SHA512

    7f8021b24dc64f0833f7c8bc1c8d8cb4ee899cd501bd122e49999342ec819d6fbf7e7fc098171a1e4e3b0f7f4e4f7f45e43fd8703761bf189735cc80b7c66e1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f31e7919ed7ebcb8d874592064339c51

    SHA1

    6ce6b656c2edbb448e2613063339a6e0569fafad

    SHA256

    3003663fb77b7c6148ad74a7e4ac0748b7cc81a18d8241531b9e352928c022b1

    SHA512

    3a590305f5b82ab4956d98e251d5ac1a8fcea1d8caeed84e2b3caf9308055430f87529d61671e22dbf1d89ac4b651ca837e78300e3a5aef0dd3c9fe14df02cb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ff0802337f881f3bb92e2d558843d74

    SHA1

    181f3b6fb1a92647258cb77ea7a2df981b896743

    SHA256

    55b4abfb170040afa54761194663c9404cd4adc46589dffdea9ff0114986a36e

    SHA512

    c20dcb725f9940750a19e66fa1b2517176ffdd252139378bd052d08c3cafdc788b8d035f7c9b828720fb9ab092e6d8194c1209ca19e5252c4066195944802302

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82c01ee66b5930ba5143c61631330ba8

    SHA1

    df4b5f755d61656cbc77ddb573099a8ebb281e98

    SHA256

    98b98b70afd78b428a4850cf5c52605cc32b896e40fa14dec661261b62688af8

    SHA512

    2ad7eb91874720c6e277acd18da0f94c814d14b8d2313bb2d81179f26cfadf4ddd5a56947507dbd7d0bc5cd7e8469194362d11ae14dbccfd37795a63768698ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a7bfc43aaacf2706ea13b83375bbefc

    SHA1

    ccc76286c9f447238b579f7a28bf5a0ff98feac5

    SHA256

    585f25820fc23257a604d714c7704ba24a411bf881eb6807721a7ff2a11301e0

    SHA512

    14203539aed626ae052f861a959b469cd98a9b9ff14fa340c7fedc4beee053c970a2b17d43d29f9c26f2d4027f1d1a8fba6e2daef27d7b84421b31264517579d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ae34626f70fcaff2edd7d77b41f312e5

    SHA1

    4688e85617a9b4c34adef9656fb00d442bdf5c8d

    SHA256

    94bce7d9ed0bbb62069646e9f04fb2a36b969b2992a74f43f7ad92efd60a6215

    SHA512

    27a5faa433fbfcb144e6cbcd73db26bfa5589f788d0725a1674b9bf7aa65de8ca798958d426c1b2cdea0a3a7fad8cfe7da29af75a6a019ff13ddd066597a703e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e9f17d3453db482933e1139b7e9606d

    SHA1

    c135c07ee95b26abfe9e54358891cda49a20edb3

    SHA256

    19bedb30b78873415ee9baffb2d9bf2dc42c4c15432bff18c29d0acf31ab78ca

    SHA512

    b0bea59c4ec62353aeea35d4470385a3b8ea769d0be271fcca3d46605804189809c08b0520f13767cd15f150842074106376b65d5ea62c07b639a3be377cb4ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    810e75cbd55188d77f54518b680aa1ce

    SHA1

    db86f3f0b79e0c2e61360b09c9e064521b8c3af3

    SHA256

    0e02868918862c3bdce184a323631a5f66c3f15a9e0f180a501bc8cbe4ceba16

    SHA512

    fa00192bb8740acf8dd042a902fe5d75a645709e1b36653261c9cbeed76331446f9ab5a8938ea0c6f13b5f311885e3f328ddaa3a04870843d3c750e026f99c34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a817b4c45c64bf6f0027c3c7c738eab4

    SHA1

    e70fd7c17413bca0e2c510b0fe991cf664579982

    SHA256

    3994f692b2258b5bae23946531a7d21290a928099574b282d2061e5e8be6830e

    SHA512

    6d1b5753f6cdf67df0441fa99068bfc624580cd3d12f3abe46f36f4ac7ebeff2724fb3edf45a82c7ad2e772e842e89301f38cbf5af26fd7f834c5660950934ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b1445d167de24acc12360368b27dd9c

    SHA1

    d138afdbf4e63c7a12663f60332220881a5cf775

    SHA256

    045f20b6710192f7a8c947277b50052c1ebede602614673dab02f511a9bbe9d6

    SHA512

    b58897ec4eb07c3679f17e4caee451fe6e0b3be3666723946a389127585c4b3f0c2106712f253e13641f8819d2e71254fe966abb42fdb0eefe4d585553d93ce3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    770e795c3d60b871e5796278f7742b05

    SHA1

    a567c27b9e719ee77aab5465769f4eac332358ce

    SHA256

    6a3bf94a6d7e84d927951154a6cd8bebc376fa5e74c5a5c7ae7d2ea9abf9944e

    SHA512

    54d697a401ad14697dd34c777f97cf340d09d8243d40580e935ee6ed4c35c87b5cb307895b06cb3c4616cbbed4b5edfa72e17c796205499b50541871e22b934c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9bcef5baa7230d32abd86105a5ccb349

    SHA1

    fd4bde5984c66d09ac41eaae5fd2b570206e7789

    SHA256

    34188ae97bd89ce7b1dc1d13b0d1f7379b285deb8ecb71643fa84d89383456c1

    SHA512

    234f34d60231699f41d12c1ce89970428cb10786a532838c6d1d064335f671a82da9ba12b0356e3d49244b931a377922a8691037034792ef2e6f365a3a38b344

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5673e16aeee49cce3432b017a0e3f6b9

    SHA1

    00a56f31e9add0df696cfc438bd563a73eaa39f5

    SHA256

    11a4b4029fb0d1087267e8e70efa0a130f79eb9e709ae14494e0e78b5d374321

    SHA512

    21953b4ed33dc17abc8997723db9f5f0596be0d5a11c7e7fa46f8050d092074c052bf56272e6f44eccdd56ddedc75865d87ab7c9424ba4c176cc1c94e68590cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    656b2c1e5475ef3fcc639f1a25ae0747

    SHA1

    fd1cbea3a070e8156acd84b42fd89eab7cb36ca7

    SHA256

    6b84ed2bf9457fded679cedbbcdcb2c7c5c9837559f9e8262ea28eacf29971fd

    SHA512

    88d2f255dff511c142afa79e79403ee3a840ae8419e3b865c628242295addd5a1f3db7795067668fea1cc25c929d7ce4b7aacd8a57ef8263ac7e2eebe3ebe3dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dac3bfcd7dd971c52e92ebb879128c56

    SHA1

    7c49ae73d546257229703b1dad74482cf026a207

    SHA256

    ffd70032793b6d7594b9e87d0b56f81bd0c60711afc10b652cbb933c6cb418a1

    SHA512

    6a5bf79a518ba58f8aaf42c3f10a6d9b031cb1f14213f8f136c7b2a3aa0fe5408b4dd4c171485febc85712221a1f9676b727deb9b50b0ba5aa835004310183cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    35c6b3342e9dc9ab69760b5dfadfc139

    SHA1

    fc85efdb6d15705108b5b1670b60781da2dcebb4

    SHA256

    f2130b21098b6b44a94f409115df3161f4cc11dd53c02fa042b6f32c6d6c9c81

    SHA512

    3f81822836070e321099040db936c2d8f038707b414248224fbae8ec4b6e09607e498d5dcb173c774044b0a394be270bd6d9ff63df3d21f7ea5c1791af748540

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    020f2af3366bebbf2a3cb388756ad1d3

    SHA1

    d54927185bc37cf8429e83b7f25404082f077eac

    SHA256

    54c58479700d527c7d65c09ee843b3edae50be96c5ad1e995bd8bf586cd8ba51

    SHA512

    6eeabca0524e9d3b13024f07c08eef260273b58250c14fb04731aaad05ede7691d0fa10a59f1ee84e01aaeba25469e51d737f4f2d0ae492955a54da86c8170d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a874a2704d72bcc70ad842cae230c91

    SHA1

    d63a9414cfec1fe38c8b2aa61546f24f46d1b6d3

    SHA256

    e5e4a3837f692ea51e3987801487ad0231ecb935c865dcb5ef84e2ea268cd265

    SHA512

    29a6da128a4895d41f35e3da4b336d6ede332af59bbdf3794cf22737a423b78232a26934b9414457ac8021e10262f343af489c9cfa7e2fb18068b398ed09f238

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD7AA.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD83C.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit