Overview

overview

7

Static

static

3

9ad5e1af79...b8.exe

windows7-x64

9ad5e1af79...b8.exe

windows10-2004-x64

$PLUGINSDI...rs.dll

windows7-x64

4

$PLUGINSDI...rs.dll

windows10-2004-x64

4

$PLUGINSDI...64.exe

windows7-x64

4

$PLUGINSDI...64.exe

windows10-2004-x64

4

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

Docs/Contact.htm

windows7-x64

1

Docs/Contact.htm

windows10-2004-x64

1

Docs/Contents1.htm

windows7-x64

1

Docs/Contents1.htm

windows10-2004-x64

1

Docs/Contents2.htm

windows7-x64

1

Docs/Contents2.htm

windows10-2004-x64

1

Docs/Contents3.htm

windows7-x64

1

Docs/Contents3.htm

windows10-2004-x64

1

Docs/Contents3a.htm

windows7-x64

1

Docs/Contents3a.htm

windows10-2004-x64

1

Docs/Contents3b.htm

windows7-x64

1

Docs/Contents3b.htm

windows10-2004-x64

1

Docs/Contents3c.htm

windows7-x64

1

Docs/Contents3c.htm

windows10-2004-x64

1

Docs/Contents3d.htm

windows7-x64

1

Docs/Contents3d.htm

windows10-2004-x64

1

Docs/Contents3e.htm

windows7-x64

1

Docs/Contents3e.htm

windows10-2004-x64

1

Docs/Contents3f.htm

windows7-x64

1

Docs/Contents3f.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14/02/2024, 05:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Docs/Contents3b.htm

  • Size

    1KB

  • MD5

    4dd91ce475730a46286270055c1cd90d

  • SHA1

    fec27b82908bf1df42dc2e67c7139f6d57353a83

  • SHA256

    ad7fe0f48b2a46efc0f366c7658fe3de72704d0962de166db1462ee01bf7c372

  • SHA512

    3bfc5cd0ed08dcb8f595f96a74cbe0acde545b59cf5ec8341dec7d6effc52c35bf8491b17332558803630b7e82ef74bad95ec1db44a09089f76b668036c79919

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Docs\Contents3b.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:688
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:688 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2144

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f99f28403584e730d391cc435517662

    SHA1

    4b26520e8eca4f0750d730776bfbd630efd4a9ed

    SHA256

    8e7fce75336852d9ee7d2c21e33f47ff4a860cee1df814fcbb35ee1878f46853

    SHA512

    9f5e60f71318c2010b3ab20d9d52f1605fee5ddea41b152360fff12c7fa716a5ab68eb0f21f4023faf69a8da764607559e9d86af82598f3770a9f3320e115e02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b55ce019330a62385e90a618ef649652

    SHA1

    53645e4abd6e60ce98cb81ce16c255a12450e964

    SHA256

    83bd206ea880a8a650537f58d413308f2c36df7e0d5c556bdf9e59e3fc0ec321

    SHA512

    c7dc23e5e4111071cbbe71a3a8a36232ade4f3d14d0abc604155803ccaf6cf8378b7631c45ab4616833cdeed11fe480879d9a6b296a5377f5316939439e8a57a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6021f742e2b5d1984e8f185551782adf

    SHA1

    bf43cc10d4c722cbc010d997ae5870e1e7370114

    SHA256

    c0f7a4f0ab2f0744d26541ea1a0b0ed95273d5bb6b2d307232b4125ed2d2d057

    SHA512

    5e4cba312d012c6fadfe5ef81918968af58b97f0a17261ecb4d00c072708414a787e019320db3801aaaa413fe03fb7e71478c053f07227dd19ce7ac4fdfe8645

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e18238a6094887b6ae4a9e395344eb30

    SHA1

    443e9c2d6b241b0f624b74dc76e1d87c21fdb70a

    SHA256

    63a429ea451f2458d9d6850aad2f59c9053ea06711322102b67f0401d07d4e15

    SHA512

    038c39088ec884141617b3a4080b1f58767e2dd2f6f8a6c5a584425887a340b20e1fa62caf25ad89d5c6cdf70c07edd3539d7e817065e1f95f89d33d6a1df6e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eefb2f4065495e9ac753028891b837f2

    SHA1

    0cd5c348069e1011c49398aefdb0050f121e78a0

    SHA256

    b26489cb1f98a92b8c3c75bf54d30d1dba3601eb764ded3fa1179fd73053aacb

    SHA512

    a8073c2e29cab45c7cd36732d5bb3cb364eb95edfc9213e123a9181c725477e198ef10de5c9caf7d73d93adaba5c082ea08ca00fd647c3edc77308464e40be05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97d612524dc97ef60221e68606d3b1cc

    SHA1

    81630208c7428ec5fc8a12cbe3497d6883c800e1

    SHA256

    7cc6accd6c5748415fa756a9ed357527ecbc01132a9ab32351d24758d4b8032a

    SHA512

    f36a60656257afcb32476a39d6491d2b4ed3e960df1f29fe7ab0696461666cd0cf468068dcc146d2d3e181838c329447730cf87a89678915e662a55319cd6734

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2a2664f7fc673656c74e6f9fdb44245

    SHA1

    80442b7af684ff832a7abbace33c0869ac589be5

    SHA256

    81d32d0ad2287cbfb7f0fa4ba1f9de049684d2935c7244752d213374fdb66947

    SHA512

    b44efd109f9e16df61ef744c681c06b396049fd9176a63a7fb39a5d6d90c16e0350f66529ac70696859e8b3bec9715430f744f460cd9415ebfaa65da3a7614a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c663bc678473479fadb3db71d647ea7

    SHA1

    325c3f478cc8b514b48385f90fea9de105300e15

    SHA256

    fe94b9c15b43bc591d4eb1441be97735ee76f74f9161a3a74116bb859cff806e

    SHA512

    6c19cdcbf8bc40f8e06b7b87972228b0eee59ac0aa4ff7e6dfcd407f3c32a65136656ca46501f2242b81c03d3515a6a1a03a092574e98f155a34d206a58ca216

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ac4b54cb1c81229006c4ec8ad17ee32

    SHA1

    0c11e222e398d2a09f15287a3d5556e0537a9e42

    SHA256

    f084d69c640e9a260036e03cf54c160e4d397f2abbacc9373d19ed4d60bdd5e1

    SHA512

    9487105cf2e567906a09cd454e4925d83ba4618d7455404a1de269c35bd0505b1b215549afa6c88e7249e2a9d58343f4815eda7c9d6e3e6bcfb47c2a36effde6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24cd45916141cc250c8347fbfb3c8c98

    SHA1

    1407fa7435cd166d2ca8a92eb336a71c512dc0a4

    SHA256

    c4f0f8427b9c1a2b686f1fd36b427c0731cebb8ed953e5476da38d00c2449633

    SHA512

    8d4450926779cb6246a7f175733460a5d2bd1c8aacdb8030883d7a0b20c30b8f40faa8952180982a1a5758f1340a3f65aa97bb78d9b9ce5ec38b8cdcb26b7f95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d95858adb666b07d8ccaefaeef23ebfb

    SHA1

    0ec4616e7779aa76162413bbe7ec7bf2e83c2203

    SHA256

    7b194a3661f8ca48ea2b3028df56dc1f83a9cd56c68c4aa9a98ce6262cd4ddc7

    SHA512

    79ae30a851facae795e9106aaad589ada21eb7fa7181a40c53f427ea6f3e1e61ae4fb2a34113e94164e225f8c8443c80418097e304f8d867a5d19143446f8d17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b8a7a98ab6de4a3b84f1f24cf299d047

    SHA1

    5a59dbde477944aa769a72855c296ca54f520b33

    SHA256

    a3efe9ad768f14e2a9e43269386df943b459a923be612bb8332d81d8f3bb64f4

    SHA512

    74467f18f4d11bc9053344540a9c159338e2efa00d1a4d00f8ed544d4130ca86a1574cd5fbb03e74b6c92f4978d5835b32b31b90512fd77ecfe77f40e7112a13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    03902eb84f190a20f5568d2396a3820d

    SHA1

    f0672e34c1e1771bec5252cf17bbd6aca474d141

    SHA256

    af9eedc2813216acae42fabe779e2add17de2ada016407c02b70529542b897d0

    SHA512

    c2debe097ac4c8c77b915481a5f9c50290e98b7cf4d38e59e3866f33640408a599163af770bb6208b5d08c10c10b6f0424e2b3bf6f10d0cfa43408e1d8a6f22a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d655d1fb990a7ad6033c297343ab31ec

    SHA1

    8d3f0a747ccb5d15487d173e58148d7cbb97a3f9

    SHA256

    5c7c05ef862633486f08ea1e15fccf5d7d02c3ec6971b9c08d12042888677615

    SHA512

    6c59c9668807769cde7f60d7f9c76ff5df321fb1fa080caedfc74021641695c526a2cb6ebf64126ba2d8375bce0e96e033d742c74e3f4cd49e6cbdd57397806b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf0e6fe35b8a1951de1b9ebe8f5402d1

    SHA1

    995cdd5bac4cd573fe4410ef00a304564dee333a

    SHA256

    1734582ea0d27c11ee00bab9ce48ead0dc2944bda5a40d88076b809d90a95134

    SHA512

    633f80eaed4d75c68b9f129f799cd4ad5f8a741ffe5f99a812c96c0bda2508aa0a10d09f39d2f6271ba9da275661775f5b11a30bb6041fe7764f2015143948bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    867c72ce041c7261d73bc01a4f97ee64

    SHA1

    7aa40d77ae00b3deb0575e85dd5664b41b92c74f

    SHA256

    8bbbbf58646124b6ba819d458dafc9191e35962b27718d9b02843da7f166d811

    SHA512

    945f4f5d5cbad6cbeb5d391b9b2e5b01cd54f08af4a3ff4902f5bf110aaad225a2e4279399102fcb49c8aa4d724005ac85c34d9a33a676e69c629438c6b717df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72c60d11be2fa61d5087fb7ae6e37912

    SHA1

    3085c1d73967df5e6742fb28ab707697986d0833

    SHA256

    4f6d134405cb0f7f0f187189ef641b3d461a618dd339ba2b78816a69f18ccf5f

    SHA512

    fe98455f79b127dd1318a3034d0ca58f176e413b2f9244a5dc6d68d55d4b5d6271a530e49583230ed2f93f6f7405e94484f8d7c2f0485e8ddfd040e5c729330f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee5d68df67de9826442fa89e30a18727

    SHA1

    7fa2b66cc5cdd5ea7a8ba1fbb0b9971e6a15b5d5

    SHA256

    d2d838b60c85791e4bff714f620dd7cd3139b8bd2151cdbc94e0039e80a1ccfa

    SHA512

    064f1198c006a6b6fcdc310a2af1ada42824c40ca099ca15c4e28da9406e4701f21829bb572b5774bdd14bb30bfafaecbb674026e47e428a8c89a78812cf7ca7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7710fea3eb114d230bb40eff07027ea9

    SHA1

    2077eef8f411cccb52759e090728342912936e07

    SHA256

    efb00386346cc4929b71bdd699f0cd0a42df16c7f62f3afb76e59f4cdedaf890

    SHA512

    5f8eceda8b281d106e11c144f1b6bae451865395f1a4a593a94163733cd87480d7d1b02e1f8e60dd5cee34b9a36fbe31cab7b7d85617b21ac4eed94ae187da8b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA315.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA3B5.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit