Overview

overview

4

Static

static

3

vlc-3.0.18-win32.exe

windows7-x64

4

vlc-3.0.18-win32.exe

windows10-2004-x64

4

lua/http/custom.js

windows7-x64

1

lua/http/custom.js

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...m.html

windows7-x64

1

lua/http/d...m.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/index.html

windows7-x64

1

lua/http/index.html

windows10-2004-x64

1

lua/http/js/common.js

windows7-x64

1

lua/http/js/common.js

windows10-2004-x64

1

lua/http/j...ers.js

windows7-x64

1

lua/http/j...ers.js

windows10-2004-x64

1

lua/http/j...ree.js

windows7-x64

1

lua/http/j...ree.js

windows10-2004-x64

1

lua/http/js/ui.js

windows7-x64

1

lua/http/js/ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25-02-2024 02:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lua/http/dialogs/create_stream.html

  • Size

    14KB

  • MD5

    c38a93ae302612a55ccf7f11bdb79c37

  • SHA1

    f6064e146909323276c6c43410f314666e35b5a4

  • SHA256

    fdfc3417223b88d2e8f0421ced4711760ab11a3c18a50dc05b805a0f4f1a5134

  • SHA512

    9c38a52c10455ffa179f0bad0d09d50defddad25d850248a4a15ebf5aefbe0165e12ee7eace516ced181362062b7651c9f246c4a1c77a6da867bc8ad978d56be

  • SSDEEP

    192:jvlSM2AtdS0E2jSC+J3kuC6qSSSKyf+yO3zy6CGuGek+3LbnAilKyc7aSCWM2kco:jvlIATE2jJAhuDqx3J0vHEF

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lua\http\dialogs\create_stream.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1684
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1684 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2896

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6147d8f3452431d2e21a9e766212f0b

    SHA1

    2fbb3e9fdc42f7be92394d353d650f011cdae145

    SHA256

    918a27286dbb4401856ac64393a848247210201f1d99a25ad6804ab065d82db8

    SHA512

    44ba17fdc491fe56f2360e0a3d71400bed40b978d3156394a44e1355b3cb05e32c327ae5b7dde90c8cdbfbe3f57e1f2670d9701726bc40d65f0d16c795f6426a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c0ba4fe20311aac5cc7b3bd4d3964db

    SHA1

    c5836b6b4a379b21776b0ad189e07cd50007d9f5

    SHA256

    a45b2bc18901326d475cb548c90fb1994363600d803498a3111731465fc6b1fc

    SHA512

    32c486fc15bf8def1b8099b5344c9ae3484f16c9df670f1a5c6370dde5bf04fdffcd0e6438436faa9f6b2661427ab2273a0085fdc37a4ebf91292d1e069a4642

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a84a1da9d377d2b1f0b445ee5555a76a

    SHA1

    a41ce6251e6f629f943c0738960b562d81af8466

    SHA256

    de99615b94fdf349d5c58931d1a7fc0d2ee60129655a993f7cdae35c10f7e55a

    SHA512

    8ed6ca1424e90e5460c01e6a37d7f9d51325cd9e818a830c7f0859260dc8aff496a4d59a3c0ce202bbc393e2785afa6e5169e4cd3979a0653d62fdc7d70574ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    736e53a42661007ee7d84cfde904ab11

    SHA1

    704ad9ea134080301ea4b8bc926fe83016baa035

    SHA256

    8824f5c0e6f9f9aad629abdf74fb4479eaa601e6b047a8efdeed1a62a7b5ce31

    SHA512

    6725edfdfa741f89f1964ce38bc92532c45c25ff13ce5e5e089ae54350f06a843e3d4c5959675707f0b787f4c746c8de07917d0d1baf15a5b98ca43738e82580

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1f295cedd8f4b139a2bea8de0ab6cf1d

    SHA1

    5ddabdbaba80e8297540b797f778e387c5714467

    SHA256

    e2c6fbde6dcea1b86dc44cf58bbbbd5b249df3f24ea87359b74b3cfb7376c5a1

    SHA512

    6a66d9e068c26c0ba2504820abd3110e20459a73a0241584dfda0ab7bc2829bc10ac13a892cf5bec518106f4ee8046aba58c89d3837d25378a407de22bca1969

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be18dc1de5ea56d0bd22c79fd5ea98b0

    SHA1

    979b8a7dcdc92145bec3badafdc7d4897837e85a

    SHA256

    8a0a2f3db5f8250efaf31aa2f1ab055136321583b22ab15d6840069c78c2e7d5

    SHA512

    7f4a65e8738e615b1e721ec17c5d7acd15a97f58cec1a1e8f290ce32a27480664657975521cb7f2d4baa8646a1b552cf8f253ac439a457cd5c30d7e67b914e2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0befcd9fe204d97da120d61b0dca954

    SHA1

    308826e0f2797d4f2bbac06c7c42b14fa08e0b7b

    SHA256

    91a172ee3c723b6b96a02d5dc407974d075c33827b203fabdb4cc9e93feebb62

    SHA512

    b93ae7e9b34c30011725a68265e8477b72b048314e5744639db0891297d0c6b02729786bfd112bb3a844cc0f74d71e94dc6452aaab37350e13cd828a1016e565

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4b66f3c237e6ee3a7da9bdd7ef502e67

    SHA1

    d6002a7a0cb536bb12e2aa4ac8fe33595c9f208f

    SHA256

    0115817af2ebf02382a23300cfb6d8d7db66e5a89c3e2d3251a6102c687d0346

    SHA512

    6d1bfb128de26769ae6e6f6b7e43ceef34e8338e2880a7255e7d1e810a7a73e31470e01f7d9101733cdcd0ed40197d4781405c8ee0757cf9c648adba898d43ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f37c3a2c61c391b714943111210e27fe

    SHA1

    e4b73ae1102629de8a462cfd01c853c1c02d000c

    SHA256

    086d2d24207a8c57d599c0507979c65bc378328b31cef61c95d60d04d396a255

    SHA512

    19f78a0a445b50e7636d2ab96497c4b7d92f42265c302672a0512df770380cf5e7aab93cbf57b3320c01e9ee655f36a0f8d877f305c7fd7e43ccb525cb71129c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a93ce869aff2210a7602bd331d283717

    SHA1

    ed17df5f8a91543ed4b6917c1650da0bb9e82def

    SHA256

    4da9de61b9e2e7bf2a14637ba69aef1f836e5d9f9c4b6013d290a20e1f9b06eb

    SHA512

    e154b688758f34cfe6db7b00e995647573adf96846283a181c5ceb75cd8789f50663e7fea3bee06f50af046151b186dc23bd8cc91c9607b2fb351933b3fe9ddb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a85426dd5bf9bb7c0508d951d2bc668

    SHA1

    34660b08a6d4a5a2e8a2ce29ba5901021e105b74

    SHA256

    1de73e840bab16f94e6c6c982a044aa7ce72789fdb953e62ff917d96d5f503a8

    SHA512

    5d73753dd14f8e8fc01255a42a23a4494f8f0ae82b3079cf1adf5085706ed0ee7dbbae72179a1c4a27a114df100c80c4d9b80e63a3fc27d61d73ec64b39a20fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be647e322d2c1b5a5e96eb0a96cb9206

    SHA1

    b365846cd84d67a2bceb11ba1989fff5233cfef1

    SHA256

    a97ced83b66be76c6b65a21ca3ecd23f9001c81db57ee8c6a9431af24b9fe3a3

    SHA512

    24b18aea91faae54094ab2df16695babfc9a205e2dce3ff93f2a178dcc9244ad566c7a09919771b4343ff3a392f6bfda7c42dbf5621ece8df24ed421692527e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20ae412bb8f88dc826bb460c12e5e98d

    SHA1

    84e2cca76a2d3c7dd2098c3e85de771384a0300e

    SHA256

    a7d970811e8d59e9245476d77440c72e175c3e2381f40ae1de4e359816579bdc

    SHA512

    a4c180992c3b4c86e84e7c0d0cdeecf332f6b9b7d1a07a5092916e87fc5687762662d866d58b8e5fa76b018b0a6ddd6674bb69d2ef5eaba9b7b1c76a5bb4a5b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    94f1ad5a8539cdf37fa96b8e0800496e

    SHA1

    cf3daa86e48296fc06242374b7c8be4ed827a368

    SHA256

    ce03672e34429957a99e50db30d50160830e063a6d3e6010fc119bba60ac53b3

    SHA512

    9ec13a90a6174bfc2e2cdea45776ff08dac0054b8f14ddc21a8c3cd8e0d5f53caec88aee4b6dbac46461b75450c9ec309af0512179d4defc9e2fb71bc14e701a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    26f43ac7e8f1643b5794afc54bd00c61

    SHA1

    7b5fcfeccc7c0c30d6fdf77e6a6d8fff651ccb72

    SHA256

    0ca0a69de04f12258c03693033fb56046bafcf381356ccaff53313caddc8613e

    SHA512

    cd28bf38900d0684e34cc3b8022bc9d6f06b0fe6d713a9f1d21b4554e1c6a2852e8b9a2cbe5dee2c08a1ecaadcb9fd529d72004f93a9515fde485d0d375df8b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e26609298e578ba80b76e0c8cda44ae4

    SHA1

    1a770353d6b56e78c11dd5233a207e550f3742f0

    SHA256

    223d109f760334ca56ab6be02f819901f9cfdeae41aac0acd7e976866e2a31bd

    SHA512

    3e2b55a8ecdf7515dc58419007f6247490ac0dfe7aca223a439965da530bc9f123adbb4aeb5f913019d28cb545e93c308db314c6b31136006d380af6147339f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    186beea8c61b08464f2273455af70573

    SHA1

    22e09f5d79ecbf4d37052e8b88be0ddd48d9705b

    SHA256

    5596857fef976536ff2a166d89e00d632a349f00f88b6ae362b78b4fd791d34d

    SHA512

    836742a583f938818a8ab9d36fd8164f7cc4737a37346132cea285937878011e0f646557ad7693c837b1fa85e40eefcfea5b44077411991f2f3faad95867a205

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34fc557744d9e8a826b39587409dade3

    SHA1

    1aa272ec212547d36bdc0c20c69b25d179d151dc

    SHA256

    92766abfb539d76efad256ef49ad647f9c488296f3ad54dd9b72f42f4cb0ef0d

    SHA512

    1b4d6c5c0f8066a031a1521f21a0b8fbde8ee2df7d0a2a9a69a37f8a095744bcb073d792f2c57e6ffd549fe76025c7f14bef7c2494d54b09be144860254a0534

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    12bee6b43477d1c7cc7509676dabf312

    SHA1

    7871e23f821b290a8e111f37328d9edc315daf46

    SHA256

    2765bc178fbc1b0fb2f5169be09d834f1ef0ed4874ec90acc88cec11f96b0426

    SHA512

    d6b038f45fe5ce0520456ae95acb85e644a964e911b9f473c9ae2138b0f4a686c9a7561968580e19d20ab7fe14a90b607e46c0233449804fae6b510484845c59

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC91C.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC9CB.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit