Overview

overview

4

Static

static

3

vlc-3.0.8-win64.exe

windows7-x64

4

vlc-3.0.8-win64.exe

windows10-2004-x64

4

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

axvlc.dll

windows7-x64

4

axvlc.dll

windows10-2004-x64

4

libvlc.dll

windows7-x64

1

libvlc.dll

windows10-2004-x64

1

libvlccore.dll

windows7-x64

1

libvlccore.dll

windows10-2004-x64

1

lua/http/custom.js

windows7-x64

1

lua/http/custom.js

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...m.html

windows7-x64

1

lua/http/d...m.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-02-2024 14:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lua/http/dialogs/create_stream.html

  • Size

    14KB

  • MD5

    c38a93ae302612a55ccf7f11bdb79c37

  • SHA1

    f6064e146909323276c6c43410f314666e35b5a4

  • SHA256

    fdfc3417223b88d2e8f0421ced4711760ab11a3c18a50dc05b805a0f4f1a5134

  • SHA512

    9c38a52c10455ffa179f0bad0d09d50defddad25d850248a4a15ebf5aefbe0165e12ee7eace516ced181362062b7651c9f246c4a1c77a6da867bc8ad978d56be

  • SSDEEP

    192:jvlSM2AtdS0E2jSC+J3kuC6qSSSKyf+yO3zy6CGuGek+3LbnAilKyc7aSCWM2kco:jvlIATE2jJAhuDqx3J0vHEF

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lua\http\dialogs\create_stream.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1700
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1700 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2944

Network

MITRE ATT&CK Matrix ATT&CK v13

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    099655d41d353060a9f6de1405e32354

    SHA1

    a1b15a6567766ede8ac4f67c0d6f36f7ef67d9c4

    SHA256

    a3cb6bccea7880d7876f3df372319073f71a55f29a73a17da886a3f36b17736c

    SHA512

    946af550463279955cbf80a8ea62f6ccb4e8cc7d9574277c067b44d0e5ef53b85a3f108d65902d0ce5342939ec003fc730d0187c64a7a6f07dd4eaee2c5d6679

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0012dacae8c512e9a3fa40188c4e4a39

    SHA1

    0de728ccd52dee2e8c3ab4656139d370bbb58a8b

    SHA256

    ffa471a281ea0606572f643c3f9a4a37a1a86799f5970c5aac350f7dfd2d190a

    SHA512

    27150c2ec2f709aa967969f402e893393e526178fd9d0d4d08e9bb2abfe19c39627b8daacaad741b50d6fa52833a5b2c0f1f25558e3641ff36cdc2d6e6925347

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    babf33f755d035aaba8e54492fc3bbd8

    SHA1

    397a68a94b0b999622f8c0b803e86275b0ed2e7a

    SHA256

    e8eb5f1eb2390c419ad938a04cc9c370fa2f35ab876b99e8a9935cf56adbd229

    SHA512

    27e28ededb55658b0002e4fcd6b61a66e53aae92bfcf33041dcb49d87a9ea5a4382fdf7faf1a03413bdc3ee9845c94354f0d44e76f790416ed95c1e9e5e0fc5e

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b13c5be841298a30397b3ceec2dfcdb

    SHA1

    3bf21fb9563e99ace702c0b926a3b62bebd40daa

    SHA256

    86b3c170206199c692d8d823cc14c981d2bda56af0aeb278e52e493438ac46e3

    SHA512

    bc079744c2324b93d9b7631a7c3692ea13ba5c3acfc7ec1cf032a347a602e89fd478c2d5ea6556650baa759430c7c86877290ef44612bd9452af903a1e47c699

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a3a10ccbeb0cc898cf5c2f3c32949a3

    SHA1

    a8bcda42c08c78cab2909ff1616246256ea417ab

    SHA256

    96502cf6828172c887eb974ba1775310168fa69afa1875ddfd02826ae7171813

    SHA512

    88287565a98dc4b4ce29f13c2070240ca85924dc4d4f75857dfc4fa8e05542bbbf07c919c0eb746e96ad57f39d14b9531c1aa39ebe5aaf9d2b2dceabc035ca87

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8fd93cf54b356119c9911b3d55b66f7

    SHA1

    1dd24f8cdec4c00ab049c1098083f0e43db6151a

    SHA256

    9f3b1b03e78772c5df6373bec36556ea055434d13173ade7a95f89c7906754d1

    SHA512

    2cf04787e8608997108ab764abed78c39a2a3f41284dde1e91362f58cdd68fbd0c450e7f41024f297f1f1d96976b04c266dd541f85c9ade51314fd6bbcbda3fe

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e3efcfa07ca5e52613d8eea0fada3f3

    SHA1

    5bfd3de16cd1f627c371459198daf5e52c65f738

    SHA256

    dd5032c570c3ae38180618c445a71945bfd23327af5c2730e2a0e3cb86f20179

    SHA512

    39bf1b63a89f3a5938b35e85063b1d1ffa309aa2069c76db0e7732ac4313ff6a520e9440484286e46470a2d6437aed62e5c9941234b5916ecf8e15c8c035b881

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3528183cb68869178d7b3ca41eda7a8c

    SHA1

    e34465c5e80161320b899f048db6f9b3a47fb4d3

    SHA256

    7f6af497fd8dea56a23d6cf80ad1f91e3e85dba12b5bcd2b15d8d174ec24892f

    SHA512

    a5b18fcb9dd05a6894316e327016a2824eee1d99ef482442e89450ba4571d0906c5b856a8d2717f4fb5d9303b35a8f5f6f3ffc479d21ddc04d96321c6f1d1b5b

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15efa54c66d768b4f8b46be0e1f4e326

    SHA1

    3ef1b0ec8d768e38a0f75695be0fe7cd2e9d46d2

    SHA256

    e7ec7e35dcb9effa084955cbeb96b241061222fbab2cf4d2cc8967b7e17fb063

    SHA512

    852851ea5384ee6557e4cf9e702ea4bbdde9a57e3ed90949e90df0f3c5457b53c09dd9e97544f6e9f2af4040d2db4a1406fe7f31b0bb82e9158891aaeae9ed44

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d6c2eaef343108bc9fbd97adecfdf2ec

    SHA1

    d75d8f8694c479061a61b9cf0a471e0790c7cd2e

    SHA256

    afc2e93d2ccb684eba29a88b9bc1e9aaf713b34bb81429bbe1bd3eed383ab723

    SHA512

    db614112403f24a6eda5e961133bde96637656c18af2feed2486e5a18b38824b285a6045119ab0ebc6ab81a9d945d6e6751137a04cacb6afb71906fc5185c566

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    42e3831de1cc30f78ce1393dae8daf2f

    SHA1

    fd8d76eec82f2dd45803b7c6894c051188afd69f

    SHA256

    0615e6e9e91d8c3ce3f1da41cdfba3c211c86817bef3d8c1b53525cf9c5c315d

    SHA512

    1f90dd0b4be8be85af3dcccfffd4a2f2cb890cf64f4e1d0ee73b2155428ed5b17558e8f5bb64aefe25ecb8dbca86b24dbb14bccf4003221221769d2d27d897a6

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e03596688b914e8016a3d01958862488

    SHA1

    09a6ddae5c072145db9f807b6e8770d00612f21a

    SHA256

    b472e717900354799ddf31cf22e8a697f41134f7041d94a4a6474767ab134d8e

    SHA512

    b6afb028ade479814fa148679aa9bdb46df3b28909745d3c8c5d6a96ea28f722c4a4a3ae2b89bb49b8e196f887f22914ffad122d28ce3e037c00fe1a989f93b1

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a817309210d7016114cd3b0bb979a114

    SHA1

    92253944f710f5c6d40f2aab4e8e2584c62909b8

    SHA256

    5908c7bc837d0f853500d4a3b58f6e8b6264e7c8aabe5cb11455a80441b4e5a4

    SHA512

    f654b02dd70363c9cf081e66ac7d0555bfa7f84eff3189331c9fc0fbaae154bff53ffbbe29d5d6b0bf4883dbf1790c74a1e8a5aaced9f185d3558e87d56cabff

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a6919641daa714aac5fd682a2f6fe5dd

    SHA1

    8d6d079c672ae9c57865c60bf63b6ac025901d02

    SHA256

    7c54a8c39197c35f4f414659345b99169a9426dc6461275a5085801647e789b0

    SHA512

    296acbb84d7bf94c770ecfca0bf62ce46b0f81df8f37294f6f119d92cdd22839e536d8186634c1871a6da25c22f31d7791013d074bf1fd94f14a0a3cb28af951

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d85563392df336dd6c5a962f80276f9a

    SHA1

    b48555ab476b17fd9fb3be70ae45ddc2040d9c1d

    SHA256

    c2c0d928422ac1fc50e84d253aad09f0c78db8ac923a547420c45c498c92fb1c

    SHA512

    7577bfafc6a60983d2db2dba168cc83e9128ef87fb475e89b4a2fc8ca11139905f9b6b668f53da027c8e7854b594682b57673b34464293e94a93024cfb7ff5f8

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0f0018edf39ed3b97a54a50a50d08a2

    SHA1

    382abfec07fba0d13977c5537b7a363a1b9d299b

    SHA256

    7751e5e4ba9d832522fbb7f2c117707bc841656ab57121e842f446e2466781f4

    SHA512

    b861c85340132df432795eb70ef380bf63c62f80053cbd5956201af58b3665e86835796f73adeebb9e753c7f40d0ce72a15dec0c6431fe20a7fe42b64fdbe8f3

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    03d9299c65600d455d7710422a008baf

    SHA1

    86992cf756c7df0837072923fbc994487109e6e4

    SHA256

    73ac226d0f4a9eac0e38db833d41f63f7658d17dc90dc234de3cd7e47c7e4dac

    SHA512

    b376ece01129ac2aa1037cbe6dee340aed94e59c04dd162ec32a2af56370d090d4d97f4ec7381582a24c3e9794c6db5b9c9bc444fb99fd85bb03b60e0380e6e8

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b611b39327e7c92577d9c610d633c918

    SHA1

    0058f8644fb954572dcbae39090760b68e00b38c

    SHA256

    efb5c1b920bfa04a8d3442f47e73f154c3f5e56a6e691b6dcc35327c19ae2eab

    SHA512

    c23dfcb296ef31eb5708d277c919f4dbc105e1707099ab3f48f2161366b756a555f3444acb9949d4d93c6a4d25ed81669c60576af825b5eb9ad9cbd84e0f46e2

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Cab3593.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Tar3672.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit