Overview

overview

4

Static

static

3

vlc-3.0.20-win32.exe

windows7-x64

4

vlc-3.0.20-win32.exe

windows10-2004-x64

4

lua/http/custom.js

windows7-x64

1

lua/http/custom.js

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...m.html

windows7-x64

1

lua/http/d...m.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/index.html

windows7-x64

1

lua/http/index.html

windows10-2004-x64

1

lua/http/js/common.js

windows7-x64

1

lua/http/js/common.js

windows10-2004-x64

1

lua/http/j...ers.js

windows7-x64

1

lua/http/j...ers.js

windows10-2004-x64

1

lua/http/j...ree.js

windows7-x64

1

lua/http/j...ree.js

windows10-2004-x64

1

lua/http/js/ui.js

windows7-x64

1

lua/http/js/ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lua/http/dialogs/offset_window.html

  • Size

    1KB

  • MD5

    be2110a67187e5529b0b5c264d64ff2c

  • SHA1

    4b5d5f7c1ac90ad298c47323aa3e07548b9096a5

  • SHA256

    f0c8450d88f4a64396304652811c3b9d215b9cceb24c36a0753042e68a688ab5

  • SHA512

    7c305a2c9375f24e769a292d960f8e38ea4cf934aa3de2f80620badc6b20d68ab07adfe77840105d8721299bc3be794a27b1fc33e54c10f0b3fe52ab5de13ba9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lua\http\dialogs\offset_window.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2968
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2968 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2092

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    355cdc5e91307593e919c91ce96c914c

    SHA1

    447d2fe1c259c05ecb16c94522e245e6806db05e

    SHA256

    6695868253accb0a6701e9f2f13f21b9274124d94d18857e6476dfaac3edbc92

    SHA512

    e2357fc1393f900758a90a1ac4520a26f8b107a51a91a109ba83593e354cff72d66b28d221d7c6ce18a7ccb140600ba9526d73575457e85cca903beb2785448e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97ca9333c30ed513e1b95f1ba46ad46d

    SHA1

    857d466315dfcc98d0eb40673ec0036966cc1a5d

    SHA256

    8c4abafa98d16a716c7939c8cb8298d3c6572bf7d4ece4448189b44fc0d08c51

    SHA512

    1263ed47efc6618c8adf1d13404708d870d8a2a95633719d492ce4211bdaa01f70d5eb0babf3d9a27ba1199a16ec0c90a5127dea8dc8fb74c7a9617d1442cdfb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6e21735102a6cb8c78cd5f0a7f27a882

    SHA1

    82c412f19e506de438322d83702f23d77d4cf4b6

    SHA256

    1d55bcb310084559005ae5c75a3cc851acbd99a8ffddd1835df115ddb32f2c97

    SHA512

    741781d90aa61580da8bd160a53e8bc77ce1c83edba05d55218ef25b8a7638e0d3dbd6b4236e77f22a6201b442d20fa960df99614e7decbf8607bf480debf8af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f31f0c3b8bcc0b549db8f643b674e3e

    SHA1

    a399b137347169fd3c413297edeb5e9478fbcbcb

    SHA256

    134b8f98b4a1ca387c3c6d3246cf6830d4dd982542c74ad4ac88b776430745be

    SHA512

    bb6b7e0ff1c3ec7f664cfec5fecdcc40b1a3dfbfa72155b1cdfc7232d7c9e79e3895b87955d9dcabb44d4a05966894218b000da3abc0dc6b4f9fb717802247cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d05e3d2488dc97340c70c7614f5df807

    SHA1

    70efea7e6ea2441f0ebd148e4dce96276f2698cb

    SHA256

    bcacd1e3e193422d48103409023a302a8d5d8e50820f1266c4255359b6e13b94

    SHA512

    9a6c12be41f513b222503fcbc79f689d6c37fd8ad0d1c2e891d4af52c99a130675cff396bd6ad14a5db817c1155a21291618aeb400455b23437efb4dff1d9b4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    77bf6940ce30cabb263262d8d261dab7

    SHA1

    253f52c6463c581b3e03012c9c9ec642cec76843

    SHA256

    e0601dd7730f65887d64eb95286fc9b17222c123182b02e6baa6711fc6ef0ea9

    SHA512

    cfb45c03d0067b8cda612cc390636da92c147f019a55f5fbfbc95c92ceadf47aea6dd3335868e97c9c9ddf4b7b3c391002b5de764dc6d8848a7ff62dab348b1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb2f8630e0cefe69ae8764df1e5b9dd6

    SHA1

    559ce035045e6d681b7323dd91e0c6a716a0ffb1

    SHA256

    365522b20259b376e77122c932a5d727797b3cac158d8cef233d32adfcb5724b

    SHA512

    d0f88b33fc31a280f098244081844e103380ab4b213ffffbb8a503a8b68655ab65ffa7aeb2a69b0b32d9afc6edd9a17a6d727c1d2f66c2ba4827519e4ab98f28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    597b5ca35df1fe7bd1bb3b9c9515917b

    SHA1

    0fd3b5243ce6d7975d50aae47a6c8c5b821fce54

    SHA256

    4efe6ed2ecce51975edccf2a5e3c0c9f67019502a47fbb826bd7dd2e1a13da2d

    SHA512

    635383521a181d01119966736833d854b051d6b3bdba3bacd9082a418a6b846262cc7bf23c4606f3aa553215bac263a79ba7684a28b01827e5cb5d757dc7ddad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85d8e11c3ec6fb140255ba0ece08475b

    SHA1

    cdf1550b87d776b337f367f9a14b6a427833af84

    SHA256

    9eb30788214f0b4389e8cecc4eef1be48c685cc5e32c36afd8d49b3adb973e0f

    SHA512

    0fd3af4b66ccb4c87f50cc90875ef8fe63f09e7a7851da891c0d3c12c63db2780ae75572277b5a5ec30c5163f1eff44c9166380c2f2b13ae7b2bde9f8992bde5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ba7369663e1953d547f200247ebd5cb

    SHA1

    9d395a96adb7b3dbdd89fd5894738cbd178a67b3

    SHA256

    bca9f92e9ae32299308bae2850fce482b867d56f45fc2d00865e27d7f8b15ed4

    SHA512

    00dd5eb5371f98c9b3b50041fcaf59fa075c50f1009e66440660602222f156374399c8109e77efb96ddc86ef0ec29e4e7e27af9b4adc71e2c307c77321899952

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf97b6a86ae7d112d8df213ee25b3638

    SHA1

    c251cf58e6ea2d2d876496cb8d8c88174d280bba

    SHA256

    143aa5a11503444886355574cb5ab9f6e09a886257ea0d8308f341b21c93f25b

    SHA512

    b98ec2d32046ca97f8a1ba386bfc99f725edd9148fb7c34dce60722592d1380ca881af90dd1381ec24dbdfca3c62bcee8a4faefd42f0840120235448dc813edb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82b56d0890f39d236361938c1ea806df

    SHA1

    558dd31f607ac3b358dce6a21e8f5a6dc3982df8

    SHA256

    2f3033d96035021847b910d7e1be57210d2b55071c79db810b41acbd44f5172b

    SHA512

    7524edbf3ad87270029f9932aa942ade9946ca73debbb694fcb696413a1a3ffd234fdcb7eb94861bbed0318209c06140f66ef1d4e88847e57ed5368e7a22208b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b5b5adcb797010dce0f10123bf0ab49f

    SHA1

    def9d70686fc55101a4fb07358e0824de0706631

    SHA256

    bc268b30a6ca705097fe8303afa215f34d33deffc4294ab72b38cad5a24ab3ac

    SHA512

    9c9257dcd507883d66b83ab8d5cea294ca3ecc1a27522852588f0f78aa9e29c45b2a32d0da860e43c0f606e47489c68b8c9d50745840e425fb2824f8fc2c523a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    38b51cf7a95f2e1477f1e4fd42de8422

    SHA1

    05c003676dbeba96f43673261239470f40273ede

    SHA256

    f00f5500235d735f5850c17a17b6c529d7a8acd76d2e2e58474f25cb46efa2e4

    SHA512

    8a6dc3558de34369443ad42fdd23ae9282bd628994c7ee4ac80ffcb029a77de184d214c75cc5cbe7f67230a90da59ad10e54fbda3755ad3ed1e196fda6f376c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    562280afd2209fb71d8f0d7427feb5f3

    SHA1

    671d6d373fc6d492844910b77b34ea05dd84ed38

    SHA256

    40b3677bb85b9c90b2724f222079d5ab57f16299424ba347aa32bd54db376eff

    SHA512

    549972fda03fb8375f49c35890261f460ccfc69068bff65faeba32d742a8f8a8da5a096f225ba8824b4df729d9402d0ae7b7d3ffd12fcf4ffe5d9bc2c1387cb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar47DF.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit