Overview

overview

1

Static

static

1

商道货�...ai.htm

windows7-x64

1

商道货�...ai.htm

windows10-2004-x64

1

商道货�...ui.htm

windows7-x64

1

商道货�...ui.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

商道货�...ua.htm

windows7-x64

1

商道货�...ua.htm

windows10-2004-x64

1

商道货�...Yi.htm

windows7-x64

1

商道货�...Yi.htm

windows10-2004-x64

1

商道货�...ao.htm

windows7-x64

1

商道货�...ao.htm

windows10-2004-x64

1

商道货�...uo.htm

windows7-x64

1

商道货�...uo.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

商道货�...en.htm

windows7-x64

1

商道货�...en.htm

windows10-2004-x64

1

商道货�...hi.htm

windows7-x64

1

商道货�...hi.htm

windows10-2004-x64

1

商道货�...ao.htm

windows7-x64

1

商道货�...ao.htm

windows10-2004-x64

1

商道货�...Qi.htm

windows7-x64

1

商道货�...Qi.htm

windows10-2004-x64

1

商道货�...ia.htm

windows7-x64

1

商道货�...ia.htm

windows10-2004-x64

1

商道货�...en.htm

windows7-x64

1

商道货�...en.htm

windows10-2004-x64

1

商道货�...Wu.htm

windows7-x64

1

商道货�...Wu.htm

windows10-2004-x64

1

商道货�...ng.htm

windows7-x64

1

商道货�...ng.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 14:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    商道货源导航系统特别版V110905SC_0910/JuJiaRiYong.htm

  • Size

    20KB

  • MD5

    732baa1da909104a17ba606dd8822b07

  • SHA1

    fab0109a55adfa4724195e8ad5897324d1ebdc3b

  • SHA256

    dc0a4048a8ea6c0cb01ff3fefd42499a17703afa256cdc1754af60de575e8cec

  • SHA512

    6598e5a75443dfc070b533a6fc003e46546c01d7291ab77327fa7210f9a751ad5b4c8ddc9d12ebae6642ab70406a687c635aa6b7d9fca3170f62bbe58edf741f

  • SSDEEP

    192:S35MH26/pHCP78ijfe+gH/b//pyb8uuCLL+ikvSiR9AX3Sckcua:SE26RHG78kfe+gHVdayi1XCckcua

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\商道货源导航系统特别版V110905SC_0910\JuJiaRiYong.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2324
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2324 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2180

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    a57e745215525a4c4f8edf1d066b0b3a

    SHA1

    1860e89af647604ae8e5f0ead0ff06ae2744705b

    SHA256

    6d532b0d88dc2bcc9bcf7a97cd2456deaf27d0222f0d2170cb868264e089601c

    SHA512

    bd5deb955df32c0666de5d8a16e321310b8ac66fa05d71cc4031990cbfefd8654f6cfe3d41fb993b8d60de9da69d09c8cc02853d6a2c346d625da6f3c83e71a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b83d3eebae6594565ac3945c82764d7

    SHA1

    ba36c4750a49d034f5cbbee2713e3b2284d290f0

    SHA256

    7001877357097fc07830d4b2420810e897372d6dac226f75521c330fb5c6df5c

    SHA512

    9656a4a969a3bcb17e17947f0d397479bcb7b7cab0e60f99e4c8af2813115ef1299c04ed300bac2e9027a8ec2543bbfdf8cba485acc75677804c645ecdf02846

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7d01b5f1478dece5029abd74af18a7ba

    SHA1

    c769c7b24b4f5598cb0fabdc47bded6984a27f9d

    SHA256

    29414620ffb514ee9b6cf37a47cc1777d152fc76b64afedfc88d0dc1829e4573

    SHA512

    3a00a5747977cf31ce6fa00e70254c0bee5c28bca83b905b58886a1cba93346f620b2cac9d3758609a4783703833e7af6adf3668a9fb9f1330e1a3e152848da3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ac1ecf4f5fa6b34cbbd9600d0f28f7c

    SHA1

    6487dfce2452af84712feb0a870c52591e757f0a

    SHA256

    ae0b2e163665246813a46b16639c223587ea16886f6870dbee418eaa2e1e87b5

    SHA512

    4c9144e5f1ae50748d0b7b978d629ecd0723e7f5b7f2d34f317f7747a10dec9a5824aef1d778cbd11eff10e03f4d4c226d8ba9a7ad8947963261663502a5f841

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22fa515f7ba39fe9a01229257f7a8ba8

    SHA1

    d426f0ff179f18dab9c2c4676ba29bc9315c1294

    SHA256

    de131806e1e9e4fe936dd22fcb65c3c2c2b4a7905f75751dcb422ce222248b54

    SHA512

    e138f32a485c7409eebe52acbf684fd5283ed1ef3a5e2b6f21291ea9edbd7dddcfff56739c26a18e8b2e62687065473df549548f3b7940bbc5d87c98a6158455

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    635a47002825faf6bafe0bbaaacba0c8

    SHA1

    ca1984a6de8f0b13fd95ef9719fe5fbf2006f22a

    SHA256

    4b281c6d15be6b61f7cac48b349920f3c527197910d3055d46f1fdc6065e1e98

    SHA512

    749ff3d32aaad9fab077f0ccd4220f6d4e30b323385843105dc6da2bb37fa2d87b6100f4ba7027543ad4d42374bf3d1abea38386b1734fdad8749b8415fb3efa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    23e140079beaa8550e291b83691f69b1

    SHA1

    d2779a43f124327353be135da9b421cf656115f5

    SHA256

    f10e2f3e7a1b30f111d92859ad11940243f6870a03766608ad451a4bd258f0ee

    SHA512

    0438b14d8077ffe2bece9ffa464a12df64bb9e547da2f92a6fee8cdbd17d464a7bc200a8d4b86068b8577301a124754428faa81f76b7f7e7bf85ce79c4f48e1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a33ece5eaf6606641c81acdafc207c1

    SHA1

    317389cfd1d05eff199968e5afb64aa719da22c5

    SHA256

    2fe608dc8639b31e371d894ad5437fa9922a68ba1cc3a850473e135e46b2acc2

    SHA512

    7b19975449577da11dc6d34bec21c5ee8b59be36874f48e74ae1bd3480c8a81ca4f1ec8e65c9f5ed71addd4bb709b4ed8fd8f85e8ae475e4c174a200f6b223c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47179a94a90c0c8caee17263c915ae94

    SHA1

    4843f6c2648da31f7504c2da6a6499d964090749

    SHA256

    6668717978af8c903624cb4d6762839568bb9ab8408fa146a5e5c36545cb83a5

    SHA512

    e7755d1ce4e913e3e5819e71a34539afb48102c48dc27d595aa6c583bd041b90e30cbb195238bad56e409679effdb257b9b54fba63f5f7d15ad86ae5635b9cc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a40dddb69db2f1431941dd74a67ef08

    SHA1

    9e1a9dd341db00911a0b7b4d34fac6abb2b87fb0

    SHA256

    94c304ad871757c317616213896cd15a2a14cfeb71c0e581824e2f79d867c9a1

    SHA512

    62b939eb621849831ad932b5c1a8f67b4f5c758ca5cc96f47d4bcfa444799f4a9aadb79afb271df6d030941043038a6e7c5dfb9944117609d261c4e72338008a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04cf4ed4c2808543493f8050aaa3ba81

    SHA1

    4fd99a531182852ecc4265b152d16f5dc970e70e

    SHA256

    6b314a298196776274750ad4741450a1bb5b49f674c8dbefe52d730400f3e28b

    SHA512

    997729a70cf838a11873e14caaad36b94037d72fde0d122e7fcccc68643f73acd4021afb5aac4c587ed13e7873d6d0511636dc0a6c1e3c49d350c6fe2f16463e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f39be5277213c74af4b7af933a2a6d7e

    SHA1

    30859ee99849a6064d1607bb8a36df611eacfb29

    SHA256

    ff8298deb3943e947c2ee36561f866cce0a81636b128e37e76ce7f49720e7c51

    SHA512

    0b1b3eb731e9a6bfe48707de97c884d8531ab73b4f4e36ab653b1b5d375bc63231c787e45f66a2ffdb810a95215c826316e2257bb514967ccb71beba37c04d51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ad1306bba3db8b20fb125f0a840f1207

    SHA1

    304b952731aa82261972cbcb0a6dd8b2c5d88718

    SHA256

    ff3d3fd9b2099e1403d5462b3ded07663ddc11f70cd26d14eacf5805a504e5db

    SHA512

    1b78277abed342f385fa8f098f156c0b91ca80d0910ea0dd8f490b3b179e725a2ce87b9fa298644147d1a822d6c563fa465e85570e9e0cfd8a1f460333d7d4ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1894880a07894135a198649235606fdb

    SHA1

    94a99ecd223d423f3512d3a02e166fc1b2cf6eb0

    SHA256

    adbf2ef76786ab55498363913ccd9c73d3f67ae69b878094b8eec96853533c71

    SHA512

    288091ad25f62f2911a636a3593be113340c6248b120b2702e7bf8a984d842c43f07c92371817796937a9387943a16e2919861de91ebaa74fcb7f36d18ae55ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c218a0dde6d33e6d29818ba9df5c5795

    SHA1

    deadd76b0ad54031da9823c35fa9cde943668190

    SHA256

    627d199eba38bac9d4226720af8be43f957505e47d4d619e98a1c69335773b97

    SHA512

    c93eb849f61a2b40c6b6c7122f09043515a0688a8741594d4219676781f02a188e90eb7e10c78df4c6ede0ad6e5c990c6ac15145474c1987e78e71149cfc4170

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    478e579de66c4549f21987d95543a505

    SHA1

    0c728a67203b185af1af9e0fc379c011603407bc

    SHA256

    6c419525b79340c69d72f1e6f777fbf1186d2c3c476f9a09c6292c3dde7882e5

    SHA512

    23277b9758a962943dc93fdcea500a843c2f711aee5ab44e3a273809004a12b3547bd5e802eebd476441b149a430379ab6554358e446e3a0bc70b415d7846a7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    301bb1a9e6bd405e648a3d0011759bbe

    SHA1

    67f09560422b754c5f3d21a7bd2f73e72b8795a3

    SHA256

    7a482215b3066c776f9c12d370fe8a5af94a481faa34a587a1ea4d34f6e2da4f

    SHA512

    fea4b2afebcd2f39fbe5ee56562b71d9fb25676904bd1eb3408062b306a245cba7bb56947f0211541a87fa4e7e00c8e329239775623c2a9b3a2fac71c2fa0a40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8bf461ce3f3a86f9873915763e093dd

    SHA1

    5b921b703019378a29b9df34ae571ae5ff590c6d

    SHA256

    a620df75d1b8d928853a031388b8b451c9c2014289018a3693d33c1e4beaa813

    SHA512

    bc184847eb686040735fec92596b7c1f52d92f953743360794b240c764379e0605e1e556811e07f44ad627e26645734fb0bf91baf5393cee09ec7ef9ee4de7c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    00a60752a15593026c511feb9662e57e

    SHA1

    044bfc872f06609aa9a6e76e0a409ca96020aea8

    SHA256

    a285e4d3a14ae663191cf29e879c70de3d0eb58eb7cedda5fc3e6b1149f250a6

    SHA512

    21b3be150f6e4a9ee6e7d254ee7aeeac61fc3529f61f27a63da6194dc6057902b78a888b278c64499ec8ae35be330b1f9e38fbd2ee7158a26c4006a2a4d76080

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af74b65d799379ea2afdf8d909c80b9a

    SHA1

    219d26405da57a9b5bfb51a20eab46e1a0b6ea47

    SHA256

    52d648a0d0b748c3d1b09b249a757b4d9b0b58ccf21883781fb4f9d0d08565b8

    SHA512

    5240c8a567c825836ee4c9a7943a936863da58202252d9d8d506a15994e8d9a8f4c3c2d213671ff5889f5891a508ecf22ab68565330fdcdd81848f75aa11744a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    59fd528dfcca6ef58341ab2a9e5a346e

    SHA1

    acef2069769b60497a030e3ced2fb24d47048614

    SHA256

    3e9a8dd9d85b1d4ea334b9da912a15cc61a1411e26068ba56d1f0ee7cee5ae3f

    SHA512

    841c7385e980de83ff34816f99cc3acc02a6d64413d532d5688ea40cf5a7fcf89a600950f9e8a5860fe1b77fdf82c1de94736b142b08e42b30cc76c86515f889

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    6db39c86aee374ba2faa8a67c5b607f2

    SHA1

    80a3a0dcada21e591eeafd30124c4b842028c521

    SHA256

    e79b4a37d6bceadebef0d2e7de6096780bf9d4fee24cce7db05a9c3448b5a9ec

    SHA512

    eec8c3add1a2225a47119fd593d68812f713c20661bbe7d8629bd0b0ece14c763bdeb1bb3e11eace5f2ee37e0ff64550d74d9e939a6410c32d91b718a854ea2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC76A.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit