Overview

overview

4

Static

static

1

UploadFile...14.doc

windows7-x64

4

UploadFile...14.doc

windows10-2004-x64

1

UploadFile...41.doc

windows7-x64

4

UploadFile...41.doc

windows10-2004-x64

1

UploadFile...42.doc

windows7-x64

4

UploadFile...42.doc

windows10-2004-x64

1

areweb/Adv...ol.vbs

windows7-x64

1

areweb/Adv...ol.vbs

windows10-2004-x64

1

areweb/Adv...dt.vbs

windows7-x64

1

areweb/Adv...dt.vbs

windows10-2004-x64

1

areweb/Art...Box.js

windows7-x64

1

areweb/Art...Box.js

windows10-2004-x64

1

areweb/Art...ple.js

windows7-x64

1

areweb/Art...ple.js

windows10-2004-x64

1

areweb/Art...ut.htm

windows7-x64

1

areweb/Art...ut.htm

windows10-2004-x64

1

areweb/Art...log.js

windows7-x64

1

areweb/Art...log.js

windows10-2004-x64

1

areweb/Art...lp.htm

windows7-x64

1

areweb/Art...lp.htm

windows10-2004-x64

1

areweb/Art...in.htm

windows7-x64

1

areweb/Art...in.htm

windows10-2004-x64

1

areweb/Art...op.htm

windows7-x64

1

areweb/Art...op.htm

windows10-2004-x64

1

areweb/Art...de.vbs

windows7-x64

1

areweb/Art...de.vbs

windows10-2004-x64

1

areweb/Art...tor.js

windows7-x64

1

areweb/Art...tor.js

windows10-2004-x64

1

areweb/Art...up.asp

windows7-x64

3

areweb/Art...up.asp

windows10-2004-x64

3

areweb/Art...ig.vbs

windows7-x64

1

areweb/Art...ig.vbs

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-03-2024 13:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    areweb/ArtHtmlBox/Dialog/about.htm

  • Size

    1KB

  • MD5

    371988f5be0c33053503154be3bacb77

  • SHA1

    01b7693fb7367ea4ceaedd360214be0ae6779f07

  • SHA256

    c41d426840910935030d8d7019e2841849dcf4a790bc2d069ad143ad10575b2e

  • SHA512

    65b45bb64deecdec034e25cf1176285fb2011c8459aec367aacd7e2365e09f7fc38e7ae349b0e8189c98b251f83a45974e624d469f3e2eea6670ba8c3a9ffea2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\areweb\ArtHtmlBox\Dialog\about.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2504
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2504 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2548

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b64f74a7025a91dcde9d98dcccecfc18

    SHA1

    a2595cc2ff51ba3ff464b60c537fb42538a8d3d1

    SHA256

    a81a99442b2d507ed24e3a40e889103fa4194bd7f97daa755224f1da4db91776

    SHA512

    00070b4be98ab272b8078298a5f7fed64685c9cf5dd1f8c71406b1b5bf9cc212898a3c1fa4783fb3d27bd280f0ce4a9a4e6b513fc1a82bd5d0a6cd8499596553

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0421ca255c6f3a8c1b0384cbc8c21d8a

    SHA1

    32ae0fa9d39d7c34c5cd5cef4f9ea121d95a513c

    SHA256

    d3e1318681764f158c4b622add99c2767b20e09068c81550293e89440c571e77

    SHA512

    c5b3020cbc760856626c192fe2e9f82fef5ff6989281cb033ac7bb4b99fa091118dd9aaf3063a9fdac9e1072c8eb229f8cdfd574893fadfe551388443ed21ebf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3192a9c2a20b5ef8699785aa7f8ed9c9

    SHA1

    db3b3870e1d5e2e85cd82aa79f8278a62fd1cfee

    SHA256

    2ea1dae0c22771793b2da6663a1b8f10ce0ff899c8f7be926d9a7df67c606bf9

    SHA512

    02c00f30e6f3b20dbdf27b9a33c1b9ef057b315ef199c02e169fca058e9b090d04b0ce79bd1acea8b5ec3b53dec6fa9a3fcdd24fea1af0c0a3db6a6a33780c36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e8e1f91b8c14269573df8e163cc756c4

    SHA1

    97babb39531b188b2ecd212ed033fc5049bbb416

    SHA256

    60180963610d847cf5b4516b7be18f7ff0368945fb28ce10aa7c252172fd0b29

    SHA512

    48e966ee2d47581d99f33d2e694e415be0faa8567cdb0bf26b2e0fcf9113d56ac4bc3bddca99da7326246c46c5ba8a589bd8bc065558f7709e7abfc15f656190

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b5779a2549281165739d25faa10d3ece

    SHA1

    94fdc571946531b97ec498cdcfbbbcbf5710352c

    SHA256

    116b8403a21ff2fbc98429bbbe2a7323c82131670550b6401dc30418b3784f0a

    SHA512

    cc2f8392bd58708a913826df1a88da4aeb1eab8aba54c35f12747c76bd40d9f45328c76d4687f47298444954422cb6f647b5a14afa7242963bdbe6f3d8eb87fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9766b16701e6a5f1ef813d355c8c9f25

    SHA1

    abb11cd4f5c64b8c47f7def92ca4abfc4303ea9f

    SHA256

    bde124fc3fa2a804fbb21ac10142b91d08c2e02b4fe21166c81b339b16583858

    SHA512

    5f0f96a8b2593f51746d14872129e0777bc7f678ac3f6e7d963c3339eb39ac2e8aa6a4bb022ab74418d8abe4d4bf652809f71bcdee07a299f881629324c030c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e35cd8266f36e007c33349d20cf57b79

    SHA1

    07fa72fad2e1b97d9de44a8010e5af156275aae4

    SHA256

    d4e7307bbdefd2355a6f6dbc2429879ef577720f91cb8da1eff021b0cbee8ecc

    SHA512

    43e892d29868e4418b67d450e2c9dc3b28f70f63f3be161dda873fd420667495d35bd49fd223cd09bac70fe273af510abb35952ca2e042b362051cf4f919af16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8199d754a2eb93f890947938201aa3f1

    SHA1

    4e4b72b3dc2e3590f23e4b0e563eae77658953ee

    SHA256

    225a0169e305be261471a78194856672e5c6547db455cbd3c45a27f2b2500b39

    SHA512

    6c4e707b4288f5d0cd0a36b111149657ed0dcfd79f4c241c669c55602ffd557db7c57c5c98e8dfb0b36789304121123aa8c31a9a31aafae518584a286c8d5ff5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd8a3c4a312dd0537253c661fe3cd213

    SHA1

    4fcfa67acaf892f9b48fbf4f7142e910c95044bd

    SHA256

    a0c37490b08c49b3f8ea9c04a2689426e063772d091ce330bf53e28b6ac60150

    SHA512

    295dd9ad8fb5e59e385299dc1e2864726bad12320899694558471710805bf71788cc210dad69bd7b3315f19895d1cb74f2fea574d910a3753e4058c4e60bab7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17a4ae5ba5437ebdb126c14982ce577d

    SHA1

    97600ba9903019c4de0c86efb12b519ebec744b2

    SHA256

    9ce82b6070286dc2442c5da015b636b5f3fa084e72581d2bdeff5f5d9a3dbf8f

    SHA512

    47602dde8f976d15b3e24f32514ec6597d005e1e08af1b4febf5237d105542ae55c9ae3e70776a44dff673f8591dd2fe085faea87efd31d068532445943dea9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2f4d7c38e70cddbb8c2e5f5b5cfb298

    SHA1

    5e294010d5e30cadf3448fa23c076149b977d7d6

    SHA256

    8d8aa0766646b881c793552ae5b19d072c23554309f94442fb5a8c069a813463

    SHA512

    63b39e54c3cc793ca6f3ca973ed47cc77e3bfdf1d8cdac15572f4cc3d72f25762f93e2ef373b05b95935a396a4572a3bb8d86826af6f0c1e964e2872f4c9d68e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    224b6575b4a6378a1689a4c9744bc46a

    SHA1

    c2582bf8b5bc373340219386b24f45e82e49f7ac

    SHA256

    97bac460739a99dd736258ae6ae2ec54249fd0068c30b466d607096890f9942e

    SHA512

    2cf9dd460a49d15b2e6d4cd00aef00a1dd3338fdd05014050ab3321ba00586ace97a82633015b61015b880d387363b856592dfa8f0b960d65628d682ff20764a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3bab8006e9c028b3109086edad4d26bc

    SHA1

    b38bc990b5c4f87aecc15227ffd31f69b1de4338

    SHA256

    29bb5578a64e941620c02e61e723cfd48625223ac8e290b9d4665170ed7f4292

    SHA512

    c5dd78914cef1bdac7b60c8dcc389aac275ea719ca1ca2ffa2b61463686de7287822651a8689723dbad84378a75b5e132fe66010a73869a98ef79d5413046941

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b07b089f16ed008a0bb98af0d3d110bd

    SHA1

    59d2b6822951c4bf103d4e5188d54487c320102f

    SHA256

    e8992c1e65c3226efbc754b67a1fe13229adacfc4c6dfc9d2439bfd1f1ddba23

    SHA512

    a6337e96303f86e2f9d73fdef570d076182f944b24011bbeddfc06351cd33f382c72ed40167e0e7dddfa5f425a87fde6169b3bdde172e4f2325be8defe4dc129

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    59ff03c5e0daf29d0625419050a71b80

    SHA1

    2ba01be5774413447ae73dafb119de704d4c43f3

    SHA256

    f035dda9b9d8ccd5dae7af1a816432fb879fdc083c8df1a9580051955a3064b8

    SHA512

    23c3697adb852479b10df3720671df9c13ef1bc006052ddbec6b9c98d631b822e0f74aced2861d6cfa8e65feea7c754ef3e3b28c2885b8fb322bc27568ab044d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2b59bfd42e15d6132ec43f2f004b6403

    SHA1

    19a7a5c133479820bd712df9691c9c2f0085b0e8

    SHA256

    7a708c83e5b2e0b46335230794db62e7c3c03acdb47a78206335583ca401527f

    SHA512

    04ee5cf3ae15c9fd5e59a79971135b10bdbd9491929a922dc45dd14caaf76fa9c7720a5ec85014c3076a1a5a0b7a060c233b45036a629ab39d2dcf522d2e3349

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2aa4532960fbb5764f6b6fb1db2fb488

    SHA1

    f2bab84d975adfe02860be33deae0b06bd1dc1a9

    SHA256

    a79c4da46e1626e773e1c6925a2cc83b43d5c7d1bc063efd00dc7909f83f9b5e

    SHA512

    b8c2ddf8ec355a9470984084859c58d3987044c059ea273e3b21001fc895344cd02b5904a84eefb003fe182a2a100d3635433e27703ac6d2a41b3cac791749c7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBD77.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBF82.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit