Overview

overview

3

Static

static

3

Setup.exe

windows7-x64

1

Setup.exe

windows10-2004-x64

1

jre/Welcome.html

windows7-x64

1

jre/Welcome.html

windows10-2004-x64

1

jre/bin/JA...32.dll

windows7-x64

1

jre/bin/JA...32.dll

windows10-2004-x64

1

jre/bin/JA...ge.dll

windows7-x64

1

jre/bin/JA...ge.dll

windows10-2004-x64

1

jre/bin/Ja...32.dll

windows7-x64

1

jre/bin/Ja...32.dll

windows10-2004-x64

1

jre/bin/Ja...ge.dll

windows7-x64

1

jre/bin/Ja...ge.dll

windows10-2004-x64

1

jre/bin/Wi...32.dll

windows7-x64

3

jre/bin/Wi...32.dll

windows10-2004-x64

3

jre/bin/Wi...ge.dll

windows7-x64

3

jre/bin/Wi...ge.dll

windows10-2004-x64

3

jre/bin/awt.dll

windows7-x64

1

jre/bin/awt.dll

windows10-2004-x64

1

jre/bin/bci.dll

windows7-x64

3

jre/bin/bci.dll

windows10-2004-x64

3

jre/bin/cl...vm.dll

windows7-x64

3

jre/bin/cl...vm.dll

windows10-2004-x64

3

jre/bin/dcpr.dll

windows7-x64

1

jre/bin/dcpr.dll

windows10-2004-x64

1

jre/bin/de...se.dll

windows7-x64

3

jre/bin/de...se.dll

windows10-2004-x64

3

jre/bin/deploy.dll

windows7-x64

3

jre/bin/deploy.dll

windows10-2004-x64

3

jre/bin/dt_shmem.dll

windows7-x64

3

jre/bin/dt_shmem.dll

windows10-2004-x64

3

jre/bin/dt_socket.dll

windows7-x64

1

jre/bin/dt_socket.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/02/2024, 04:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    jre/Welcome.html

  • Size

    983B

  • MD5

    3cb773cb396842a7a43ad4868a23abe5

  • SHA1

    ace737f039535c817d867281190ca12f8b4d4b75

  • SHA256

    f450aee7e8fe14512d5a4b445aa5973e202f9ed1e122a8843e4dc2d4421015f0

  • SHA512

    6058103b7446b61613071c639581f51718c12a9e7b6abd3cf3047a3093c2e54b2d9674faf9443570a3bb141f839e03067301ff35422eb9097bd08020e0dd08a4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\jre\Welcome.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1728
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1728 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2668

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    924aa1b46d59f899f09a35ba1bbd18de

    SHA1

    42bf2ceae4783aa1a2d7d4706c271a025104eae8

    SHA256

    9dfd0b8b5b0e3cd9157f3762b7ea502c97cf137418b876a1becd6828ecfd0ea0

    SHA512

    a3b130ffce317164d0318fea55123da6762ba3d0d0b0ff20dfd765685392978fdca57ae030271a1134f1d17db0e14de33ac37a3d9abc306154bbe98d981b8792

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83c232b3cf9d3ce9370f17cfae562d3c

    SHA1

    d8f76236409cf935a78a4623b54625e8fdb60fd1

    SHA256

    43edae698f1341d29a31e6c2015d230ec31e37dfde5fee484e13aa2061f88490

    SHA512

    650b7267e8b09fa0ae6114ebe4b7a52fcff652946ea418fc4bd1b32d50f43fb0de260c5315fa6b5ceccd7568d0ae4c3d0322b698ca2cf6b077775c0c9a7ddce5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4c0b4fa4d726aff94fa01b910d63ceb2

    SHA1

    b8a1bfc369c61e5a42f9739a4a2c7b86422fbb37

    SHA256

    dfa62dbf524fcafb99767eea4a7851be911104532b54fd7b3078ed81c4c92561

    SHA512

    e54e55b4d8df6539145924b4c0da1f77d0b6a477a5ca232b62bdcad752712c87e67c82d5640387f3b6e44a5becd96e0e7436e77d0a0b955d28e4bb56a34c113f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04f4bdc2179fc67096638fdf19a3568e

    SHA1

    69404a40d52b813c94abf3e9088c88f0f1501305

    SHA256

    fed97092af8e2582d11f92b0590a5ef86edaab0c84f575c203aed70ef6ff729c

    SHA512

    66f99b4a67aaa858001fdeb7cedc813281f5de0d890c4550723e9ac8158a87e51a2834b8d7d3c7c2302e7ab962bcc1b9f1ea3eeac5f0d4724f0c727fe78fef98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ef219d941a38fa74c789baf1e9a1c0b0

    SHA1

    dca9984a515c09fa26ad89d994f6c2dcbc1a2ac3

    SHA256

    2a477ad776b9a37efbfeca8de0cd8321f72f8385279e49551b9781a68c927d5f

    SHA512

    fcf45d14ece0777fdb0c2d26de254a3f3cb07f2fa1df70f324ec480595e3ed74a449d397888ed23a29e19f5b7844ed43df95b3cba698cd71619aa07bdbbd01b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56e86c51ccd827517523c28e74330a1b

    SHA1

    9b5169cc86e437069aad595bc1020764834201fb

    SHA256

    7d9b9fca7d904c5d5e436f523cc1a398ae51dd039e24f6b70d85f04de2a717fb

    SHA512

    cfe0540d0718f180953be653a841eef37e2b9d49065214e1da8d5ab732281c65b2417956aa5dc78d6689fc2ec9f5d65da7f4a32d82cb8f503c5008a723b0e8eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47c07fb772e7f589c382476cbc17e08e

    SHA1

    5b33aa95b42a16eec4b74da0ef130d9801b3ced3

    SHA256

    047ab7f446edcaaf1a0d06e77e86d6a9453db19d4ccab3919393309accc93b32

    SHA512

    f3670de49e1a0074aee5e26fdcac5e7f844ca42cc5c1288cad87f2a6bc6318188fafe81861b0e1b0b849ee0f01eacf1b1083dd06af9130f6603adfef3e637580

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    991cced216a106868ef3d9f713d3177d

    SHA1

    885b33265f995e96bdbe1b30cbc3ab120af953d3

    SHA256

    6958b98077d15f599691e240bb57e95de770465b8e2a946067297f030f2da32c

    SHA512

    463caec6e2743e8ec8e88904ede4ff866e5a890e4e1477fd4b80ff50f40f7aca10031b9561124f92bca9aca4b047d251a049f51cefa6945e1d9935ff4f96f361

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    821bf0a228b1d18b0e46fc85d4425940

    SHA1

    6742b8e32d513f2d0e6098e88b9d62a2165cef25

    SHA256

    383085e1eccd06683d49bbfda747e4721b660de582fbcf5d40a7fdb5456db740

    SHA512

    c948123e377fb87b75fd0ed533d6b58cca11bee1268fdf6c7a4befd5ff95dd58ff9a6ed69eff5749de0599569bc618500950634d90fd290f42bdd032c6e7124c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09e55f569503f2ad69cadd2634cf501f

    SHA1

    7c73451a7571ba7be52d045b08b93b475cd3920b

    SHA256

    0e85539d7bbcb04cec80d22fd63a5e54e8c84f8942c2ef33d0db283fd986a439

    SHA512

    5cd056864fe972aecfcd4993f1ea888994029707aa6c5e0afffcc4207dab4f796cf0a38bfb1ba59f80e17b599a3477acb77543f8c5876ef09a8a9b7d9da90635

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d6dea4d3f517d11bd55c495bb8231937

    SHA1

    1b96d4670619324ba81b15e0000433bba4faebf6

    SHA256

    fa9923b3693b2c83267568050dbead6d2992ab63d8b2edbeb3d0bda2e44b66f9

    SHA512

    a739b6b099dfba32196a363a888c9accd00f0333e17892aec6011c7bbbb63cbc6542926d216847f29f42d5c1aab9a4303022d5d7d9a6ef036c11d810e64b0ac8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    92be3d17e315968e9ba603ed4e644c21

    SHA1

    b695d74e5433b6ad1a553806b1450382a370737d

    SHA256

    b806f60cad283f261e740e447ae8f617f0569e9994e3e08be02b1e556210fee9

    SHA512

    ab61440e8e56d3be761c5f86ec6f2fc8ea9c0a57aa73be984bde08d5a2a9395e5d32758b87256151d5fc3abbffae298df97ee7db206405a36497201fff99ba44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    732ff2561d11413f05e3768f6422307f

    SHA1

    4529d6f3b8aa73eea02fff975a7361718cb1143c

    SHA256

    1f72e091e51c3a261d23f6543ad111b590ba4d3e1dac5ce77587c9ee082f3385

    SHA512

    1eef113889f010446bdfef6e17b08732d7fbf8bcda2f8cf3abab846a77844356b453bb0b4047c59752792a670bcd74d79c79c057eadbeec72093be1f4612e01c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    23922a0e2d7e07d2d78ed8a6993b0825

    SHA1

    528ba83ad051245a4e8050d5cd034af85f1105a8

    SHA256

    393ac37970c122c7473b387be141466c83901d14fe21c9c412d34f266c82c397

    SHA512

    2d99603c328913d1e27d54c0bd3bae52beaef476ca8420b4102d495909d18fa61a2b705388cc0140b66e369151e3568e0c0ce4fdb307fa40d7933da0a6ed2cda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3285e05d7bf8a8092edf52cd0e9f68c7

    SHA1

    71bf5506cdd723011d9052566836adba6a79549c

    SHA256

    cac0884421bdae6633863ce49285d5a44964cf4e15ff2dd7c7f478249cb12c63

    SHA512

    189a4e587c39ac4a8dfac1a5c5efadaebc04c06d36888541b07dc616aca2b84c3c7dd23b1bea794c9b534a7fe72035efa8e7de2efe1bf359a5bbec37a6e55478

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b214d614b10f77fef1137c0fb68edcc2

    SHA1

    3cad6a5eca2135f399d508ff5ad5c3698aaa2c8d

    SHA256

    973de72279a1dba3273b1773f223988968c4a372f03cb82cac9cd36da853420f

    SHA512

    72b6c58deec7fed0bcc52bebf5ff2cbc8ee6390d10ea387bb0b04a409329ff0662630285d563a2bd4b65ce1357551496fc4d87b7b09fce243bb060e00f56ddbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ab9d76f2b4593241e7a844f0ea26650

    SHA1

    273361c5906cbd293ac4ef9647dfda618ae7fce5

    SHA256

    31d314f3eadb139b70c7405705b12592cf3915124863a3af1277d866086fbae3

    SHA512

    12ea2986f617f7f5e0d94ef1bdf28703909a14bcfe1f13e2d3566ba295e5de2d0c902e98a7be68c885334fde96acbf880fa747b3e88e07508c87542edc0118c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10ca5f71db7c438bc8157739e5d8b426

    SHA1

    d4ff87d71719e756351f721148d779290fe274e9

    SHA256

    3968aaed7575ec9649d60554451b3d73dba8fe16b89ca428d6ca2ada21171dbc

    SHA512

    c50ec6caf5c1d29b06b78a54a7ded450c5c85208709591cf467b07207465bee67f306ebf38fb877415409b7bffa75ce9e8d07cb87ec7459ece3247cc33630e38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b8f1e33949195f4fdfc1eb5636023f2

    SHA1

    46ecc38cc855686201d037a868daf9cefbde5060

    SHA256

    9edf2cb732f8fcc820a6fac8063f95f74a287a948e9a9d977866f7a31b038cbf

    SHA512

    32006ff2e3e5d27dc2ff4c057b2621a70e932c4e39efedb83574dfb43316c34e1008cac50cb586010e24bd530dbc3b77423bcc59450718fbd8c0e21e0d7fb6bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0903e20bfd91b0ce91aac43fd319bcf7

    SHA1

    9050e0352325220081ffde2a776d3692a5a68b82

    SHA256

    68f935c54d03f509a13b82e95bd3b52257e1645167c0600b0e26aa6b155e86d3

    SHA512

    3a05d26e0879aac85dbd5a28737ec1bdbe4ae2163929d0d854b5815070eb5475445fc75b1f2c7772613577ba5a57ce66098931ef51495adc9860e1b9f205f4cc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3B20.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3BBF.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit