Overview

overview

4

Static

static

3

vlc-3.0.18-win32.exe

windows7-x64

4

vlc-3.0.18-win32.exe

windows10-2004-x64

4

lua/http/custom.js

windows7-x64

1

lua/http/custom.js

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...m.html

windows7-x64

1

lua/http/d...m.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/index.html

windows7-x64

1

lua/http/index.html

windows10-2004-x64

1

lua/http/js/common.js

windows7-x64

1

lua/http/js/common.js

windows10-2004-x64

1

lua/http/j...ers.js

windows7-x64

1

lua/http/j...ers.js

windows10-2004-x64

1

lua/http/j...ree.js

windows7-x64

1

lua/http/j...ree.js

windows10-2004-x64

1

lua/http/js/ui.js

windows7-x64

1

lua/http/js/ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25-02-2024 02:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lua/http/dialogs/stream_config_window.html

  • Size

    1KB

  • MD5

    2ff24c036592efe309359ec7ee613d86

  • SHA1

    44cdd2f1d54c36772d6daad1657802c7ea7d6a58

  • SHA256

    1ef2a9fc7005712cd18effe0c6d644f6e1badce728c4bbbcdd675cd67d4fb9f7

  • SHA512

    bad05f89a5d52b3f7b92f4340f13398a8cca0512b06bff2cdac8e3db6bc1ad824c9d3440d0a9397d78c8321d6807591e5bfa6f883ec04854f8f41fd8cdd72d83

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lua\http\dialogs\stream_config_window.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2076
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2076 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2136

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d7ef484da82b5acb3b4ae9ec9fb4f9d9

    SHA1

    5a4cd35068d23ade2b521ad0331c8ce95ad83ffb

    SHA256

    a7999551133a0fc6cb3234f0a062082c289b1d6907cf7410dac0ebcd6747ee53

    SHA512

    727417840da6beef9dd8a1744f248a3a18819c78ee802f0715bbb52c0e6fa29301aee5d0e6b9c28070a17a27fb6b1d9fc4b2ae6b59df706ddda4917f2ba91f0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    562b31b8a60ee7dada551a8cb53c9494

    SHA1

    9683907dab814e105c044ffc3ca7238d57a899e6

    SHA256

    f2ca9dd8a36659333281837fa0a02f6896d855d5b628d5f9de0d31ff27f64ef7

    SHA512

    c5dc77de8761b857aefce83e201050814c8e994d6c52840348640f471e70b0571ea00ed0b1b16bc5995339eb75261d4aa87a0bfc91d619ce19a574bb8f22f44c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    deda54272b6901caef56b87fa86fba0f

    SHA1

    db62d3e8b5afe1017521715156b8927dd9c31980

    SHA256

    87a67ec5973c722bdafc78e88c9ec97bee1bbe453654c870ed9bcc85c24a2a02

    SHA512

    72cd772323bfa08a56b369be82c6b52fd1803de5af1f1ecc469707151e8a3df22eecda586be68b3aea24b818aa5344ed9000e31119303c41039585164fa2cfa6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    29aadc07cd62f7ae4d08eeecba101ece

    SHA1

    3d42e4f400d0e3fc0335718c38a2fe36525cc2b1

    SHA256

    5b6b5844e23277d4186b6aa99bc18bdbcd520ccb20bb8a82cd4772ec5584dc8b

    SHA512

    aac2961ff64845d42a592fa8e90fa973a02a059549ba18abb50e6f72b98075092b1593ddd0cdc32b59cb25f95d05a3bd5bb8d033deec73758142ce969b62a941

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    43286cfd623a1061a9a5f4c81356be2b

    SHA1

    dc98612bb7ea9786cd17b5e3530b32354e9ccd01

    SHA256

    cf70af01ea6c557a5bba8cca06c4332d7d3b67251dd2e17f2572941db9c72bfc

    SHA512

    52e7fb5e177a0786cb6566cd24d35e9dc607ff6119e8e9132bace71ef231a826314754d6dfa55e8c60985465a1daa1e62a51eecc053fef0b8d252c07c6cd950a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d1a16da51236fe4fc4b2a70656331a3

    SHA1

    75902dfa7ef2678180be2a9d49d3279be2776d46

    SHA256

    5287d82be4c93208c4467396f5ee5788a3e6316774583b6708466877a85bbdcc

    SHA512

    b8fda9ce8a9cb9a4090c9de11aa5c717c226b17930d51bc289f3893146614cb1bcc6fd706d82434f4dc2607aece7f3b4c7b6ee7ccdea159791a51f72f0bb04f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    796125940e5aca5a0d5b15176f3ae848

    SHA1

    5dcdbcc4a3b9301b70926988e49f7b1987892aa8

    SHA256

    03eaadeed104c9905b85548e605d13d482298da245e338267db72fbbfd436b4f

    SHA512

    462cfaeca1c4ee3187a505ae1d221cf6fae7473f0275691272b70bd2cbc47a6ef26ba5b830da28ce30dce91fa0614223cdce7689c0c76a0c5ff0b9528478ad26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    05049dfd25426585fd55d8fa7d5683f2

    SHA1

    3d653876dc65a6dbfb90805a76b9cf13079401a0

    SHA256

    921ce0e1c2fd01179d5363209b20cd58d46ada8ab6402072d4254e83bd20dcbf

    SHA512

    d2b28f24a40d2be309366b9cc9a403795c64afa1035db59ab74659d860f3f308b9f2445d51462a27f006af2c6de48da3978df0e389298364d58a7fdf54537b13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3574a26e809bd476c219e40b2b507fb7

    SHA1

    f03296ce176e7ca648e8ac9d3580bf1b90a9e376

    SHA256

    46b0864d7e534f7a63b9cf03f1e7d8b46bd7bb0cdc8c1cbcfdfeb5bb30153240

    SHA512

    55c560f2bb2c724bffacc22f2458160e7036c16fc736086481eeff2c7bb6d99cff7e8bafc340a5b2a3b1ee48197dc4d04e3d903e4a4815170a3673371f335d1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da6ca6a88cb143871e3c476445d4aa5d

    SHA1

    8a5518f8c7dc123679079a2850397f68567a3c6f

    SHA256

    38b1c5512c8c001f22f08a485205f4f64a97f9f77c25eceffcc6b07a083bcd36

    SHA512

    e423f1332be6f08f8e4625ad4233136174e1ff35c6f5233094220c35b3d9fc47a2de2321deaa59465e1e707af52fd2400889d05ec63b12917446a3380e8168ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1101ae23637ab210ec9b4b51f98e620a

    SHA1

    dcd8890481c3bd3dd36d77f0dbc2c48e6ef3ff72

    SHA256

    7219aeb074e35d608015c52a66146f1bb3c7ca7ed13c9e09527d65a7ff7e439c

    SHA512

    d263ebb62183a54ac2ab02128426270a7354d7d9d66413a35c103651704e196889f15a69d38e8e5081f9d2270448c48e6498480b4c2d74525871407f0b4bed02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    554660b989eb8171291c3edc711bcf3a

    SHA1

    cda410c46888363bf4e7c610034017d2cf973ae5

    SHA256

    25bc323cf69ab60116847702ecbc10b7bf8d558dd48eb9e8785bb760a185e34c

    SHA512

    7f9a71c77e3894ff3c54aef0e7b1b35c1a4e3be1c9b603e386206a5a26f1d8cd1edb37d1313129ec3601b5651b6ae322cc015b37e30252012c0308e09be15ca7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    347f27c1b83e13bcc9e9ed1c26ea2374

    SHA1

    961ce934baf9c86fc29e205e8ba8c9a70d8e00b4

    SHA256

    b1c9747f781f2c4232348a7f3202185a0135696bab1f07790c98beaa69579919

    SHA512

    c57a43d93c3e0ac87b1ddef548811fcffe0fdf947419dc0224950005e4d471c8e92ff50eff88e5a88e11f1610948c9e4050f0ed9396541a9b3fc12c37040c897

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    620708368305bf17f8857e4c40910228

    SHA1

    d5fee79780e29b12fcb09851c027c8114a6e525b

    SHA256

    dca4b6ca61e7d3add9669cc422904ca7de8fc62272db2773c4bb31c5c2cc1429

    SHA512

    11f96ec19092c7308626a883ce95cbf7e7eb0a6b6709c0eb1473caad3c7f682ab04109612100d2854698ed8e4629f818244fecdeef695cf5b46eccf4488fe9b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    738da4ab29b79fe81490b7886c2750ae

    SHA1

    64e8506ddb416eb6446fd326c586c6de0168e4ab

    SHA256

    9ab9a141d009b893febed1237d9299106f4595ac1f54ff6b4480a7a7e7b1cdb5

    SHA512

    8d89b04cafb06f40176e7c9bbebd5591e227e5a8b253e9c093b141b21252fbaed7f4851e0dbd8e856d5bfe4723325de372edd810da1d77b7bc65012d0bf52f4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    988855fe22e44a45083b5169c2aa951c

    SHA1

    8394fcecae52f1a1c2e0e3a6586cdc640183e897

    SHA256

    6941c3e2bd94a036aa87b96d7a6c415377b8b80016965d4c8648ec3082b86e2c

    SHA512

    5413f7ec297bdf4394b891306009b4b9df9b2152f35a5e551b37a3b911a9be99f149318d33602699725e02fe67dff8084678797e7f930e2a56d84499e21e5b39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dedba19d9692701534c45fde56d245e0

    SHA1

    32da32d27583574905ca8a208712d3aea4a2d3a1

    SHA256

    f223806ea22ca06eafedbf3c97ca8415732c97e04b464a86e96432821750b4d3

    SHA512

    3fdf8beceda1fbaa6d5d7fa0265a6db72c5c12c2080dfaa3038950389832a6b18830d1b11c6263bca6a13cdce7cba53d954b84161c9bd47aaef8dad2bf5432d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7375bdaf36cfb747959a2fc05aed6ed3

    SHA1

    a8fa0a9e19baef3190be6f309ab9fcbe7626a1bc

    SHA256

    5ad4f0767c7256b16114c5ea42225d33181d022a9331c3ec50020131dba07597

    SHA512

    efdc78fa74a092dc1b5aefc5cb6bf954a2d7e32a4d42d4368cab0fa05c2a5ac7ee3fa47d7c91757f4246ce28e70d1b7e30d63831a2acab6899aaf7465753d2d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    30a8ba4a26a742208f0bd3955cfd3f06

    SHA1

    ca9f43ce5d13c616418b3057dbed2c45fcc6df52

    SHA256

    774b61f5a2468b99a7cf4e4f726941d3ce6ba4b240abb39a58dccf73bf644b21

    SHA512

    9ff8f956b3298862f073caf9c666de10189dfb8015e6b75a424054ad2aa8c99418c0a43ec677c23656aa20ffac3c5f025e060007d1e466c41f481c4c4d3ea632

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8538.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8A0D.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit