Overview

overview

4

Static

static

3

vlc-3.0.20-win32.exe

windows7-x64

4

vlc-3.0.20-win32.exe

windows10-2004-x64

4

lua/http/custom.js

windows7-x64

1

lua/http/custom.js

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...m.html

windows7-x64

1

lua/http/d...m.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/index.html

windows7-x64

1

lua/http/index.html

windows10-2004-x64

1

lua/http/js/common.js

windows7-x64

1

lua/http/js/common.js

windows10-2004-x64

1

lua/http/j...ers.js

windows7-x64

1

lua/http/j...ers.js

windows10-2004-x64

1

lua/http/j...ree.js

windows7-x64

1

lua/http/j...ree.js

windows10-2004-x64

1

lua/http/js/ui.js

windows7-x64

1

lua/http/js/ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lua/http/dialogs/equalizer_window.html

  • Size

    1KB

  • MD5

    06ac4c0cd41f6d82fbf3ac0053567295

  • SHA1

    5ddbf4e9f947a42819e00c3b5801ede0839ecf4b

  • SHA256

    62cac570011b9b07e0f421612571a1ce663e49dd3b90a16cf31d8855f1adddac

  • SHA512

    32ddf815ff7de04562ed71a0f2484770bc03a4730662a35cd93c42f0771742d0ddce1292cc96bea06251c97380291a54e9b89563cf078b36b684b58dcbf7ea72

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lua\http\dialogs\equalizer_window.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1028
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1028 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2556

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1f0d3a4b0bd7c5d568f5cf9ed94328f6

    SHA1

    b15e6bf12f29ef5416b7af99e2a4369e964888aa

    SHA256

    b4bfe887e480adcd029262a5b604dfe70a416e2d65352984569356a63a8becaf

    SHA512

    362eca7654fb9e1d7e6b7e1f702a87dcde2070ce26b89ab2ee197c78ca2a60c00889fffebfd2932026b16e659c033c3a08fa7ee6d54427d50c625d6464661095

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1de2db2b4011815c7d9583895385ce23

    SHA1

    ee7a1e787d31dd158a5010cabf7bcfa293a79e67

    SHA256

    d77b0b150afaf4cb0dcda7c1afffc4c2544ba76f79b3f3baeec166b1155b0376

    SHA512

    0fb076a8e343cf7be004906d7dc050dce92441122d165b33aba922ef5a89c28afa98329183c190cf71b3ad5f7b2437d0403f1a0ca46075f69d8122d1563a35ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3251ea0d21d86354f541c6eb444081eb

    SHA1

    f4ccf4a0f6585154af8d271d0d4c0544ae3ddd2e

    SHA256

    05c55411a7c496e9226d3d2c431fe691a3c92a74145135a12351d76161ab695d

    SHA512

    6e0d3dbed0dd9c5234c9a4aa1dadee8fe96676edba91357ed20403e02b18960f85449058ea8434b91dab37c7f544354306e2712088fe9c75421f46483118ea4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2afbb2105cb4ee79e98bd6e4388cc76c

    SHA1

    c0d3c8b25da5a778390b036ae41567e5fb752a65

    SHA256

    2ea73aa102f24b565272271121b019ce0064141ca9896daad7f41f1333145bbc

    SHA512

    aa77491c60c3fb99f5725693d1fa6f38690b596d793f8309426d01dc6df0bf71e0acd8d39867f3258c99f053338f32d1f540b80fa97146d0ffd3b2ecc03d7072

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b50b25ffd186a7f291166fc124fa10ba

    SHA1

    9782626d20a1545d94cdcf98e5a2bd6ed40cb9a9

    SHA256

    4de5fe56d8ca32655c3922bea2c86ca91c063bbc12c9c484a9d9dadbaaa9d26b

    SHA512

    93335d0b16baa4cd18a58ade61970fdb4e9bd65019929380e4c2b7b7dd8b812dd7f9acbc889875387a2fe4df169959c05af3a089ca02ce1ea46389edc01f1f07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    37d0e9dd2ff40b4db760e234f6d8d4e6

    SHA1

    ced8d47b2d7977ad06d6ffa08ec6e7d1e6293bdb

    SHA256

    bfaff0ba25740ab7df6769f7388e4222d1f3ad5952ddc9e77a0cba5453b3623a

    SHA512

    a2d6356521ee16fa030e1cb02d191ae26e71740ff75e6ac9b8b3f0ac165b01b26b102f29320e0da7bf6bc5e8ea332eb2b7a87aa90edea46a22da100746d4d350

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a36fe3924482db5ecc49b049697eeea6

    SHA1

    a51c19f4229ffb9aec95c864ae5a3063d38adfb4

    SHA256

    4f68e988b2ef117b3e0a24bd538daee1f6f0567160f07ab5b052ed0f0a78cca2

    SHA512

    a96323d959980888e82df913c84305ba8bb8bc4d278f4b7932ef72c2184589de349c6da625b0ff282926c0e56b92b12560204f0b7181ac5316bfbd696e7542fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    396a75e7f6246f0fc5bfd38b76ac0283

    SHA1

    316f70e595ad705f7fe4c8e575cbfd79a42c4e94

    SHA256

    b100630b2dbb9993b114ace7212b39f22358e0239ef399e2967504fbbf55c02a

    SHA512

    e90b186dc8f268a5a0f5fdfcb57da661e98a3ea4b07c549df9a91a75ed572f34bd9f416a5ecf588494673cb8a3070110b0412e374559a39efe85af97558e250f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1fc77d8c62fcbf381d11c491c8cff324

    SHA1

    5d233fdf240be2f8b4c7e848a361c3f192e7961c

    SHA256

    e21ec450a3037179b7e839b01f04f9288183d33e8370a3bfaf90a20db31546a6

    SHA512

    7799fc41bbe07ffecb48ffdbf73fd8f99a7d7e61ab59159e85910b4cc60da4a6cf532eb9ff6802fcd80c8f44065146e7b3fb4dff68609d6f1778d0be5edd9cc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f79f79c82b067e9544a9957c68958dc

    SHA1

    518b93219812a632ce895e0b829e423d7f7ffd69

    SHA256

    f5b436bec8a176f88e4274622a01d67bb1dcb982f5cd7a152174705748807390

    SHA512

    9efab5b0b7e363b97d536c5e5efbe399b93dbfb0d82e3f8fdf55199554b45a1ff2465204e28f354e43ab3b6baacdc37a7b43575aaba146d45aff2407aee7ee20

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC999.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCC10.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit