Overview

overview

4

Static

static

3

vlc-3.0.20-win32.exe

windows7-x64

4

vlc-3.0.20-win32.exe

windows10-2004-x64

4

lua/http/custom.js

windows7-x64

1

lua/http/custom.js

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...m.html

windows7-x64

1

lua/http/d...m.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/d...w.html

windows7-x64

1

lua/http/d...w.html

windows10-2004-x64

1

lua/http/index.html

windows7-x64

1

lua/http/index.html

windows10-2004-x64

1

lua/http/js/common.js

windows7-x64

1

lua/http/js/common.js

windows10-2004-x64

1

lua/http/j...ers.js

windows7-x64

1

lua/http/j...ers.js

windows10-2004-x64

1

lua/http/j...ree.js

windows7-x64

1

lua/http/j...ree.js

windows10-2004-x64

1

lua/http/js/ui.js

windows7-x64

1

lua/http/js/ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    169s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    lua/http/dialogs/create_stream.html

  • Size

    14KB

  • MD5

    c38a93ae302612a55ccf7f11bdb79c37

  • SHA1

    f6064e146909323276c6c43410f314666e35b5a4

  • SHA256

    fdfc3417223b88d2e8f0421ced4711760ab11a3c18a50dc05b805a0f4f1a5134

  • SHA512

    9c38a52c10455ffa179f0bad0d09d50defddad25d850248a4a15ebf5aefbe0165e12ee7eace516ced181362062b7651c9f246c4a1c77a6da867bc8ad978d56be

  • SSDEEP

    192:jvlSM2AtdS0E2jSC+J3kuC6qSSSKyf+yO3zy6CGuGek+3LbnAilKyc7aSCWM2kco:jvlIATE2jJAhuDqx3J0vHEF

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\lua\http\dialogs\create_stream.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2256
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2256 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2652

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    99bff32d447e08bc7d7f8993b18e451e

    SHA1

    10b952787f6e59aaed3d7d56ba2aeba0758bcf29

    SHA256

    fecb38bc15c02a15b08f28ea40f84c7eb4a028600875cc565eae38bc04f9803a

    SHA512

    2e83debb997421d09033122295e051c076ecc6b01919ecb8d3992c390555d9742d4115818366849af19d3590907e1a86728ba0f8bdcb8383000266163d003fca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72afa367deb0061c2e64011ffb82d763

    SHA1

    d83cb7d51b2bcb26302a4a04e64572330f84d6d8

    SHA256

    3d9c2ba1c067e6f7724ad0220f6c0ff599551f6e66b39453f3fbbc4005482be2

    SHA512

    4ff6d905dcb07c5f326e42ddd15e4ad00f8d2bfe01a53b55e1e67b090506e6d4071fc61de18a7f72d5d85f333afbe3951337dc7cf6dd7393a2f8f9779e2b7144

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    42095d0f558ebfd31366e92c7a592c25

    SHA1

    e73f97c1547994ac71de143b8810cf424dd23595

    SHA256

    58eb4013eda98e883cc29b174c07953a60ce9f2ec3fefcafa7b8835ae4bd8579

    SHA512

    6b432db8f1ab2ec52a2dc5eca926fd2e4197b17059e038b98778372f0b51baeef869886239c2c7ac1898698f3a1c46c6a27ed560c585d8bf3e594adacfc148fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f616cad5ab70a423fb0be6a02c30c8b8

    SHA1

    1406ec96952496b75239c47bfb4b027c371b620c

    SHA256

    1b8a20cf69cfb3d87af59641453c98b5cb54ef14f8f9211138841e52cf85e1c1

    SHA512

    33aab9e892fbf39e719998af084ed9af522058e025103f34caf07ddc1ee707aed8088771b8ea3345b1c95fe62fb9e8332c0a9b37f0e9722723815c44f62218db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5b14cd0338a4822555759c37f1015423

    SHA1

    caabb39a3a808648ed8ed974ec9aed0346275eeb

    SHA256

    672d294d101a2b50c8cd6eedd09246b96aa217e01ee96a85f0784844e0a8a668

    SHA512

    de41184d300ae940f045e020a680082fce5d542035aec9c58d3d07cd930b68a7b3949661951958baf476affdf112e4a9cf9cb97bfb0295d8dc03c89acaf28a9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    75f3681a0e11229189c61ac00a9f16e9

    SHA1

    140c30587d32aadfeea738b2185b0923da077e08

    SHA256

    8ee867c2e3a7106278cc57fe67ad1d59979cb22c146d0ee10cf5a90a04f6cce6

    SHA512

    43e102452a7ebee14d37815eae75945cd684d4f13a6860e1dde77e95a3f893ae0fe674913807cc443cfc25afdb70e9af1ae05f819506e05ac5eb4b52ba043def

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    df396ee63728df87a626d1f996168af6

    SHA1

    56275c95ae0ad0031feb1b2a59c45da3b120edbe

    SHA256

    bce1b5963e85c09d9385fe52463ffd127badf565cbd72d43327860952e63da27

    SHA512

    1a1fb2d4a49035d57937e858f6f9f3bbcdaad0ffee660434d4d4e857b452dba97c846c462128a0da99a77ee3feaf067234fd1e0d21c6b54991277e6a7953b53e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    711e29b9db8ce1b6f4984b678e998f27

    SHA1

    e5ecca967049a1cd5141a971ac652848fcf3c9f0

    SHA256

    03a74619c8b3169e12d2f3dbbe87396e64dc44c2b2388c2a441cad15b80b9d20

    SHA512

    e0abfeeae50183573cc390d2804590cab4b57bf2daa92bda5a0b195e2bd58dca8f40d64686c156226ccb75ea786da9453b225c06adf75677015c8236ddd91698

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    19d3af24a5aff3c39484222e88e6315d

    SHA1

    c2e6b8c7a72250f5b119a2ce58a93d459344f0a5

    SHA256

    b45396a42e85798cc73d3df537592c892169bfa16ae6eae68ff34c12106251ea

    SHA512

    c407382ddc8cc3e6275c45f8832ac1c22743e6a8218f092e1aaf9858f75ce786e08378d20349af392ff6357ea2365e400716501421b0069ffbff48eab57c6a3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    946480470a97e78fa6ea1740eacf9dc5

    SHA1

    4f627d3b4e8cca3678a23eb6331add36514463b8

    SHA256

    53ded3933e3d946546ce43b91d4cfcdcbe9b0e6bb3da6168e949fd01ee07fbe0

    SHA512

    26267ae3490cdfa889dc41482ebd2a5a1f541e05fb12fce1fb355d249d736a2311defa17598f99cbfbf3ac9c6ba70df67eea3ca46f2601479b3939907aa41c75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    058c0cc9055e72457e18e6d00cec466f

    SHA1

    ebf32852e649c08cd64eadfa218375a7332e42be

    SHA256

    710db4df1b25b9b50d50ebfc9e875c6d5f26af23e9fc1dfd2a7c0c3784ac06e1

    SHA512

    08c266202bf0624eb9b7ef36bbf69b2baa83f10e10cdeab79ef0b31b58bcb24aa1105e590875dcdaa8a00b69b67917becaa849892503156f40de4ca14cce359a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0f6cbb0a7c2b4befd88a42bce4f03334

    SHA1

    e66a351257fe2536e55e1a4a7d8635587cc09603

    SHA256

    28a801de0015c92dc130db9ba4f3ee9cc3f0411269889adce1b0cb6d007b15ba

    SHA512

    b0a1f88c18cc02994fb80136356e712e94a670643e0e17f2b1ea058814805703f1065930c7fc4c2c955c6c226ab3f1faa3a23cea9b99ee08eaecc05037dbae2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b2ae40f145fcb0455595c35c6e9b1004

    SHA1

    e0f9cfb06842e8302078a946d54243a9c3c5659b

    SHA256

    e29567e2f281eac05357a00887a3cfbe8f31bab98ef97b59a62aa7ea53178449

    SHA512

    7c694bf4f2898651d7209501c1854ce623a500375b351ed10b3b948b68e0688735630a0573a5760c4d1958919e5fd1490a13fe801f27e985480b5437573648d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c3c26a4cb8ba6b1ceaf1eddc88c7d56

    SHA1

    22e1d7d74103ce057694f9ddd49cfda2bf7476c7

    SHA256

    f2f7ab9c33d2ac27af5c3a903d0f8afbb66e53faf87b5cd7972987db76220df8

    SHA512

    d9d2bc370a9a023165b325d7818aa6d80254ff53875ffe6d9f56e68e022dd3595dcd0afbb5d0d27fdc447ea57cc110256b820c59275a398eade48838f75b01f1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF6FF.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF81D.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit