Overview

overview

4

Static

static

3

vlc-3.0.20-win32.exe

windows7-x64

4

vlc-3.0.20-win32.exe

windows10-2004-x64

4

lua/http/custom.js

windows7-x64

1

lua/http/custom.js

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...m.html

windows7-x64

1

lua/http/d...m.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/index.html

windows7-x64

1

lua/http/index.html

windows10-2004-x64

1

lua/http/js/common.js

windows7-x64

1

lua/http/js/common.js

windows10-2004-x64

1

lua/http/j...ers.js

windows7-x64

1

lua/http/j...ers.js

windows10-2004-x64

1

lua/http/j...ree.js

windows7-x64

1

lua/http/j...ree.js

windows10-2004-x64

1

lua/http/js/ui.js

windows7-x64

1

lua/http/js/ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    143s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lua/http/dialogs/batch_window.html

  • Size

    889B

  • MD5

    f32ae14ca9d7673ebb23fc827d78076f

  • SHA1

    ff5bff0318296a910740411201cb8a4ca206b608

  • SHA256

    5189cdb57f5b2e8c3add7e6c4487f5cf8a018508c612f35c8e1305512f2176e8

  • SHA512

    f5e1994188c34753cdc0dc5143dcdf66a86e56b3a040c1f4b67f01fe5d443fa52f05abfdb8717e051284e5697d4a0ac5f46d2ae36b2c518c0d5a96358f5b0f67

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lua\http\dialogs\batch_window.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1100 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2300

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08fab7ce21a76169acb9adb359e9dde1

    SHA1

    b4c5876326328e0c1dc1b999c9d5c2451550ee52

    SHA256

    cdbe4e00ebcc60357d93014382546fc4f7648a9540b3456f79551920399e6e24

    SHA512

    e578a735782c34cc24f36a8dbf44d0d3555d2cd013ffedcb52de8c029d515db94b2fada723853f6377b60a4af638fce8a8961865c0532779d1e5c20d58bc82cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14f304ed95f8dd443231b66cd324496e

    SHA1

    d7190a5fabd5cf70b101adbde65d74ce0bdd96a5

    SHA256

    a3db7600a99964443d0988befc79c63f7a2cc266764471239987791cf37461d0

    SHA512

    237cd9a96f2b25ff06ce15f40988b7d2e9f3fdd2da11c84faac1993e286cb88b41f15171233f623cf4b385c4373c2f232baaea1fd1c1907689005ed89eb0ff7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bcb65966b746ccd34512f7d62c06e112

    SHA1

    685855beb197433dcff7c2fe7e0e2c094c60abd4

    SHA256

    935924f946b9d5ada12dad41a003b136812e6ee940b049cca70934f87eec7a9e

    SHA512

    e5ea37078e630edbdee99520d3768dfbbd49c3e685bb1d68fcf96544f66798c426f6c3b96d621ab0ef0f96dede6ded170687a3b7219a4f0823ec0f8c496f2886

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    73459bc02cfb3ef5f17d0fd45c902df2

    SHA1

    d01714f44784cb9b566781ca6a9586ebbcadd4a1

    SHA256

    7d209825aedffb91a734802b1ed5c9e4ac0d79fb6fe5e62400840bec8a5dad8e

    SHA512

    fd25e63d7d6cc43000713fc56e44284af4bd777ccf453451e2c1b3f2cc28650b226a2db287d65439c769c4aad0568f234c83e0e2689558741149d911630ec345

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    16aff935a2dc326f085486281c692a96

    SHA1

    f39ed7dc0bc43542e50b4ea8af8cf7325484d02e

    SHA256

    b34f9f413e71b27d623d0b86549269b0f96dd8f133b921e7cfa7b860a4c724d0

    SHA512

    6522f20e3fc40faa4f4b60afa99d476ac0650c5597d9a71ae8ac9903a628d924a96866a53238d33d1e5750eb02a93608abc8884e497db0bfec20f82af7f2a442

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c070f4c13e24965e1d0b76170a2a1a43

    SHA1

    9217990568ddd4fbc82ba262d451a31fdbd0259c

    SHA256

    6b4c196deec97468072f9ee04f7a490030c3d75acbf7fa1a5e96832692da05ca

    SHA512

    4925a379b1cc712f4dc6f082ef3ff69619919c09a768c13b2e30da4a0c9677ed20fda5c30e67f42544ae5167aab3951b29f6cd60f08309cd923cf6f7f0e8b9bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3070798f8f22cb897d005f3a5456574b

    SHA1

    39ee3b21413dd09529214e41ad1e3e90f13b7027

    SHA256

    605f1c9a617a4ee47614a1e190f680a8945ac74a4816ce7bb2ab69eb0ecf2753

    SHA512

    6a866b71a4d7dbb663571d8ff0a872b0ace8068cbed8320370ff7bf4807917b5a069a6e1303ae3bfa22f8a447c4c8d4c11d951b776ddc0614020d1c1410b7521

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1fbfe97523c1c179f3923fa356fcf980

    SHA1

    4f4ff178a0b9f7c91c7c2bee5da0a2d73809b47d

    SHA256

    fe0b1b645ee3647b482275a70b490980ccf9f4a338cb46cba195d4f1d72e60e1

    SHA512

    35726e59b40c6aa0e7f03d4dead17add9d2da7c70946df4980c6b18157043041bac70e0ee4d032e318e2cdf836bdcf63def3ed456d9c8679e1c8377c6c0c32d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d138948507dca29e291c87cee51ccf9e

    SHA1

    ff606ad3630307839d5d4271173f4b7edf484baf

    SHA256

    eb2133235ab6aa933afce5d17977893cb375efed1907a2ba7db68da27282c86a

    SHA512

    09156b4c27b2246a707ffd37567995b09e4d3bb77c2dcde8079c0af1e931374b250370b5476dafe4a95518947624d40a6955eb28ed721b2912aa4f2e8b9acb48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02375716798461cc9325eeb4fac5e218

    SHA1

    50e95e14101d55f5949a8bc20c19c31f9ea5a2a8

    SHA256

    54f7e13e233ed77483feb3eb235357f99d4af6c36d6a67413bf814e8658daf36

    SHA512

    0baacab368752cc7b03bca44d112fb16a3163d605bf7b7b93ec2755dbce325e26fab25802f59649c36d6aafd9df5f262d543344c12ae822b89a59de112c1a254

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f45ac1d64c1e23959a4e2adbf5fb2038

    SHA1

    6b15e323b50f71866ba2f7ca58b5206858605428

    SHA256

    9669513eb61346088dce1b8cf2412727a771283a80c15b2f8063332289d7b7bc

    SHA512

    1713cb5eafdf94fba9343e9fddfc139bb2575aa8de90fb7731f176e15c392171b98b3f1f4c4586c9722e275ba43c59136c8e8ec6e93e46a2eda04dd6ac401ea2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95ec7be06c4ffd0bc98ff912d292163a

    SHA1

    bcdaa7001491749d44b58e4ca46d6d7191b6de3d

    SHA256

    5a994677f024425422ff16ba17e1d6450ce2ff4a792a18c061c27ae202798b6a

    SHA512

    c3f09db399c008b54201443f916a6c8f91a168a851c3917c20b6e1e204c34911638cf2d4981f5af4f1f46700173049a19708b71c4583a8195e430ad81c54a5d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8265b27c55dc64d89ed4e095d42eace6

    SHA1

    e032c8f653aa54e1b07d0f90445238706b62ccd6

    SHA256

    7dda4a4bb298abe6980ce04f410a12aabbc832208a0fa12d255c0a195b45853d

    SHA512

    fb43b854053d8c972b26643b3762917439e05a3c5bdda216d798055d8fa0d21841a5af95940675f91408db461c84adff8b5909c9a1f017605666b9beb91e914d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e79306910b92fde97e5d8917ffeae501

    SHA1

    9b5cfd0c5664a59b00fff597bc347ecff59d6d2f

    SHA256

    6c6e7ba7ef777ba4cbfeaa4f0a136e41e8e530df277448def7aa29fbd7d73279

    SHA512

    60cd6e5d59a9a8e0d997264830973479c34921ca78f4b1a6d018798938e12e769e2ba41ab387e9879ecb1f87b5373d17a7583f9f7d5d821887a676a700c3852d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d780af274078c9db77d0fbf9cbcfdce2

    SHA1

    983159f1674122e8f1b174050114b36a5c8b93d2

    SHA256

    2633d3c1e56167ba9b59be1312f179834398630c99469f5cb95b27dd67c6eb3e

    SHA512

    e957a43f5ee1dbbb56ece00d23d728fef457a130d766251be557082ffd8bbad55550cba4afd270f24fe6cea468d375d20280986812e23a797e2eeac3acba3942

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDE8D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE0D8.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit