Overview

overview

4

Static

static

3

vlc-3.0.18-win32.exe

windows7-x64

4

vlc-3.0.18-win32.exe

windows10-2004-x64

4

lua/http/custom.js

windows7-x64

1

lua/http/custom.js

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...m.html

windows7-x64

1

lua/http/d...m.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/index.html

windows7-x64

1

lua/http/index.html

windows10-2004-x64

1

lua/http/js/common.js

windows7-x64

1

lua/http/js/common.js

windows10-2004-x64

1

lua/http/j...ers.js

windows7-x64

1

lua/http/j...ers.js

windows10-2004-x64

1

lua/http/j...ree.js

windows7-x64

1

lua/http/j...ree.js

windows10-2004-x64

1

lua/http/js/ui.js

windows7-x64

1

lua/http/js/ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25-02-2024 02:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lua/http/dialogs/stream_window.html

  • Size

    4KB

  • MD5

    042337f0f4a68ce50bff9bb174f1f148

  • SHA1

    dedb805ec6b0ddab566ad49ac44d75cd2fce676b

  • SHA256

    b103c0d7778d1694fdcab3aa28de6ee80aa9a10288355d2f47ee9ecf8a2462e6

  • SHA512

    f906f16eebf05378668ef3b472631af90178f469f3453727c95552091a0ef95d3c72c41bea6887bbbcd07b5781fe8d4244fc78e941b7a95abe0eb2287e12f14c

  • SSDEEP

    96:I3cQXljXrc1tXrc7XrVkXrSwzZb0hLEOXrHTBXrKjXrr1TwXrXi9XKK0Z:WcY1XraXrSXrqXrJghL1XrHtXr8XrrNs

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lua\http\dialogs\stream_window.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2660
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2660 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2784

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    462c6204cbeb356a992530e6d2ed9395

    SHA1

    4616afccaf0d98a919864d7b5ffc06c29e14ef8b

    SHA256

    9f9964946455a6cc7146f2a9699a1abfd50b884294d877fb6334faf2e6cf34ea

    SHA512

    78b4eeef1c1db2330f621fd01357cb6fedbcdacaae8b9d6dac01e736b6836440fae3e9939a05b2c4828fb7522740aaf807acd2a51c614818e4d7c2e7c5415fa7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d95090646d50dac5d5135ffbf7bd7d6b

    SHA1

    6986503d9cc0e8ed304585a28c2ef7b8b9722f26

    SHA256

    c831f3b8b948b74faabb806d37b5a7179821aea9c9897a790e30212c2e3300ef

    SHA512

    4a90ef1029223ca2a0188ff6086bd49f110c9bfc8728771fc6d04b16515b9ed0e57037e2e6388c7745650433b087e718dcfd913b9db81b941a0afbe0b121cab7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c918cfa5c83698ddff8affd1e1064c7

    SHA1

    70c31dbf060bbb3b99a080915b32db5adfdfeef0

    SHA256

    bf59c5f191ec9283957b300280f1fff81dc910278db34479279cc4241a918a01

    SHA512

    0ad4cc66a5fff1e883005ebc8784e0d0519c5909883d03f27fd835069624fa8b157ac8d608a0a7760e7d1f9400146d7988774d83d23f252dd54a56be1c879238

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    40e92148e5c9e3cd8c862787161a5b74

    SHA1

    e0da2051699bbe8e0adc92206f1d2d90ef2e7a0c

    SHA256

    8993660441ea7e468ffd151a1642bb35c3fb55f64c720c9746de8bba4f4f11ab

    SHA512

    d17985edda5fcb11ab8e8b9260d7a3204f102d739b7601b639dbebda852e602dd1f19789c9829976c584c4d5843b00deacfd8adcb437a2fcbc807390c0a3b24b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    258590aff655c9b22ef03e761f203ad4

    SHA1

    327b5938d5a98ef2cf6f16139a3637ea2f639daa

    SHA256

    8494ee294297680dd416ef793159cc993904fa572fe70068a5098039804310bb

    SHA512

    7a08f8e0e1fcc60d71ae62335fd371ec9f4a5d2cdb975953cdb4d33879f58a7a13bd357a60e4c5503d32f98e4dad7f8217c5fd4d258878b9bfd1fec7dcbb5794

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    360a339b3504e761e46f494bf303dc42

    SHA1

    47ad8f108e063e54183567f4365266aa33ca4704

    SHA256

    ad3781e6f1d96bf04c755de9bd797b7182e83f47a3a184b6422f5660611bb3da

    SHA512

    85e4539a396b0a8f74fecbaf56c749a9c554e35422777ad52613db57194ea5c2487b67214841c88257d3de228f486180dc749cfd24528dd93e5a45a0818ce30e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0659ad28d7e048ffc25162290b6ce908

    SHA1

    93899bf84f76309388d89e1e37dc0757fb55aa14

    SHA256

    60a3336fee965c8bf1fa801e23a75739c196dd272a8dd5ef78944ae4165d3fad

    SHA512

    68d26f6850d3566f3c258e7f1c323a63a010fbdb2f049e21a57d0689703da27f67148d501ba2709e0de825ccfe89f7d32e5e46231c45da0d3df4ee743d5a0b32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3795d862f500a5f43cd1d0bbf74a6736

    SHA1

    d4f0ea2168f8c9c29f5d34320a0c02efd2e3b706

    SHA256

    a62d5fbfb39d5e99bb9c47431ad3dc8432e6710a1cb45e0de5b77b854da870dc

    SHA512

    52d462c3aa87eeb18238c020d51b5c9a1faae2e5ac26895b1096d6a96c34b97f6fbc25e7a93d9f03e90f75cd6abf01909d265593cc4bc66a24a37f824ede864c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5d287a70aabbd0f0c26db2f98307526

    SHA1

    b4f9fffc33d1caae14ecc76e7b475f5ecd28b149

    SHA256

    c45271f66dfda682f0ddec2b74d675db886b1d73e63ee55e6553898808fe4c14

    SHA512

    167ccb8fbe15999c75cf79e206d2b096f067d6b5d63611ae0d76de5cc801d23fa8d74b7665acc82a017185617c254c72df6497556f4e043dc2e7e6c2505e0e1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aafe997006fd7a06407994ca01db19c3

    SHA1

    b7ce81645e2d2b3da31beaac7b49da18a478f810

    SHA256

    f4f762351b90afcc4ec53bb5c2b4506a3594ae41b0968958f31ef4eb76501343

    SHA512

    51a5e2be995fa1a8fe3f067b681dedf9a7510d9a86000575b0dfc1a98ae490c61054c9b31e506d4c2072eb4202c83bfa00482ef3c60cf8c581626a1350c1fc11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0c347d832929db2032487b855dc9e69

    SHA1

    aa3561e44bb26783cc9ab3f90965c0ac720ebe87

    SHA256

    60a6c3cad8c0f172b93c5bdb1b3e176771744f0b347a33f53f4b3b7d76da69d4

    SHA512

    66302a29d189152b1eb65dba26e09f4fc150a64dadcd98acb61002623e256c1e2383750ad2486acbc6fdd546d292505019cc22f4443cc5d833de75a9fb12b86f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5557ec3783fd4a3b3544df22f528d45c

    SHA1

    b046f35c5e80865ff8d201ca98404f8cfd447f89

    SHA256

    f3d6cd392a0f986fe18a0ef84fb832a683affb6b538be2e104c7bd518bdde6af

    SHA512

    167c9c0b9b6cad2768e9ceee36781fe4a7fbac7ccb88df970b0b5cf60f651609ec7c213389ae52895b94791bf9fe4e5b5e785fb2485933918fb43f7861421d6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98022fe2beeb88752a76fb88778d4582

    SHA1

    62649c1fbbedcb473998880f6796f0d5110e5ab3

    SHA256

    198827313713e4b9b04444de3c60843ab42a83ba7bb3386b46ab111bed83e8b4

    SHA512

    57058e8cb848a87ae0034a4c8eb889be41c6aa1e901b8f7cac6970ec788ce17b3895a8b86833a31299eeed401ace9922e157543f751065d6e48d5f3fe30b7128

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ddd6615a94bdf53b9132be2b9f85a1b

    SHA1

    38ed902d2c9a609fbef2190f7d839f6a4cfb83de

    SHA256

    c1403b83afa1b3b5090fb1463b894aae3ce5e25f8fa0ff9409b4f1ac642a2fa0

    SHA512

    1c88e72809cdfb50de7dd8b8ab118d2e1a4ddfa65cef52dfdc7bf8817418160ecf5538860aab4989160e0f2949ee631f0baaa8ea3a0a1d4900547dcadb9a1454

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e5c701ec52bb738988f57346bc080dbc

    SHA1

    78e0f2cb1b4a8e62303dfea9648513667f69f865

    SHA256

    d3c525832305ea1fd48b6d166bd69a3306fd37ab1c6331f6291f5fa41f31d0eb

    SHA512

    8bbeb53d7cf22df0ef56e781d0204c67c6dd96536fa70da375b599e96b0ee503a473b364afa95bdd83a37d9dd8f4ac38b7b86bd004c09a8adfebd2cf17a19b46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe8269cb8a8bf04f163928b84b8f09b2

    SHA1

    fa0e46c3fb6690d1d9a6e12fad2759368a383217

    SHA256

    a2650cbe6f2e5e39d686284683241ffdcd268999a500b42d19c0d722330a5404

    SHA512

    8fe3f955bc778d4385f2f24bad1ba49b8dddfa7cf0c8cc662a43caec1bfae3761df843b4172dcf382d47034cf8d018f41846e644f521b14e9faeb7e0bbc6941f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    407b52bd30af05cd37dd43d00444286c

    SHA1

    195e98fe85ad834f8bcf63d0883936323361faf3

    SHA256

    346258da93ca33db960377cdf335df809a8710be86993fa3019c31263c57b0bb

    SHA512

    acc2e59575b138772efd68e527ea45e37a352d1130696e85a45f0d78d4db86abba5ec021c60bdc2c57b30815f22d5cdfd1b452f4b2e6c8a92044528392300454

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fce60ec7a4a2748528110408a8e0fb05

    SHA1

    9b72919501d8a69bdd05bf2b54fb3d37799b70f4

    SHA256

    50723a57a677fd839f9a8dd7e37eec21dd2d92c2bca3745daf3ef1a6511de50f

    SHA512

    692c76fa9db673f5f2cebe9372a812171f15250391e155726b56d6498596bcedaf42ca9e0e32d12c0c10478d21d4aa721e7a3970f4ce0b2820a21ddbb994c303

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9244.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9360.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit