Overview

overview

5

Static

static

5

sms/Contac...p.html

windows7-x64

1

sms/Contac...p.html

windows10-2004-x64

1

sms/Contac...p.html

windows7-x64

1

sms/Contac...p.html

windows10-2004-x64

1

sms/Contac...l.html

windows7-x64

1

sms/Contac...l.html

windows10-2004-x64

1

sms/Contac...x.html

windows7-x64

1

sms/Contac...x.html

windows10-2004-x64

1

sms/Lib/My...ker.js

windows7-x64

1

sms/Lib/My...ker.js

windows10-2004-x64

1

sms/Lib/My...dar.js

windows7-x64

1

sms/Lib/My...dar.js

windows10-2004-x64

1

sms/Lib/My...fig.js

windows7-x64

1

sms/Lib/My...fig.js

windows10-2004-x64

1

sms/Lib/My.../en.js

windows7-x64

1

sms/Lib/My.../en.js

windows10-2004-x64

1

sms/Lib/My...-cn.js

windows7-x64

1

sms/Lib/My...-cn.js

windows10-2004-x64

1

sms/Lib/My...-tw.js

windows7-x64

1

sms/Lib/My...-tw.js

windows10-2004-x64

1

sms/Lib/cl...nc.ps1

windows7-x64

1

sms/Lib/cl...nc.ps1

windows10-2004-x64

1

sms/Lib/cl...ay.ps1

windows7-x64

1

sms/Lib/cl...ay.ps1

windows10-2004-x64

1

sms/Lib/ed...min.js

windows7-x64

1

sms/Lib/ed...min.js

windows10-2004-x64

1

sms/Lib/ed...tor.js

windows7-x64

1

sms/Lib/ed...tor.js

windows10-2004-x64

1

sms/Lib/ed...emo.js

windows7-x64

1

sms/Lib/ed...emo.js

windows10-2004-x64

1

sms/Lib/ed...t.html

windows7-x64

1

sms/Lib/ed...t.html

windows10-2004-x64

1

Analysis

  • max time kernel
    159s
  • max time network
    168s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 16:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sms/ContactSelect/.svn/text-base/Control.php.html

  • Size

    517B

  • MD5

    115ded8936bb8bbac8c8cebb0c497f6d

  • SHA1

    ad1031ebe450e18870cd3d301673cf1bdd6fd288

  • SHA256

    5c39194e5cfb55c7103a97a37d3960d4b2f9fe2bafacff7c2b1901fc42ad080f

  • SHA512

    bae8084a4503d72db1f54caae68adbe5e30649836653c2a6edbf599babc3a1fd4f3b2fea58e2193c9414aa1f2a803c7afc923f5e4a7c9851db996f6d8230e5e9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sms\ContactSelect\.svn\text-base\Control.php.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2920
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2920 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2584

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    695e4df30bc3b3694bc21876c847c6a7

    SHA1

    b2dc4bba80f0167b464bf2261f58ff66565bfdde

    SHA256

    395cf28fe3a4115975661b9c41d5beb7c677a406dac2d0bac3ce3b3b46322d9e

    SHA512

    06cf44960c24377dcdb445d99cb07a213433b4ec74c4d4728ea1ea0870499a0ca534e1bb784619f28e8865fab3d53185e0c45a0fbb2a4514014bb94457f6cf89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ec2167242af4433ef3ae501f1db9219e

    SHA1

    75f427b379fc5896bb352caf44950736a076a035

    SHA256

    67c0b823788df4561a528a78e24c76cda63c78cf5be11b8fbea0da994f280aa3

    SHA512

    7b87cadd05ff402f92164d561f912df7da170ceebd93913e7d4fc7fb9a5bdc09bb35efede029878007490cb8687268c5ee387a93f60394a89192056e94a807a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2f1a6277802a8b3688389f36c6b0652

    SHA1

    3c05e54f3ba770c4f963f91c44df553c93f9b9df

    SHA256

    b89da00af3ae19e28564eaa7f41aa6468b102e3f704dd3b6e559b16378f6c6e5

    SHA512

    ace10adab872b3d27ba743d391670f4ba12e0123bf16e67b6b01c042b008460c6fa7fc478cccefb6256b8f71f9703886fddf3be5f6e5b0f0e3a830206e99b0d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d6be750bc4ff6fa199c99a81f0f87ae2

    SHA1

    1e133e2d24715d7e803c10cf4a766bd004619227

    SHA256

    cd95d7ac9d03d2412cdf9eb1e6cb5533241b79c5cc1bef7ccb81900ca0f34a72

    SHA512

    a890a646d15f988389fdfaca32a648a80a115cb795938345dc3fc146a9e01a7d15965b5f1cc9d3225c559e9b6f28f85707122c341c27e444211c4b5a70f06f45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    badea6191e462edba4d1a7cedfb2bd71

    SHA1

    9047cb1db82eaa6c6b19632e4400eb3bff23606d

    SHA256

    fc036b7c874d05c9c2690b41c41f7bae21bc0f0b2b64cd327619e7667ba289df

    SHA512

    d52c66f99501a084a5eb687da514f46aa9b917bdef2796a8d111f8cbee28f3cc492c31c37b90a49832cf273c13b5e64bcdb5412ab1458ce1748b380e1f128db6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b4ee8e1d43c30fb4347275830bacb6d6

    SHA1

    958c5b58d117c17baf0d5ba23501f0a5e79d65d0

    SHA256

    b1f967fa0177f2eeb1d119dfde9483b52533aac24b727f117e710f7e39c10335

    SHA512

    2fbf5f07c3e68080f4c57e1b8bb28bb52010afbf7bc565847ce25ba56b80dd2e06627ed51917cd0fd1d716a18e51a8f1065b48a356ecea4a2e07ebb0de34bc09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22de20494dfe0c42f39fd20b6e2fed98

    SHA1

    df880d790e7aa7fee58864a07ef211fc3f9fe3f4

    SHA256

    33e060dfd0bf00c9d08340180cd9f4794bf3ae67b716fad94369b125d0f010b7

    SHA512

    c33d23544165000f0f6a94b7cbed5327bb12c6167f27e0c19c717ac4df8cb702914819684366a4c753cdac8c96d83726135b1ad3698869dd4bb189f271e35a24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d3208cdf9d5d625d7327fa98ce077ead

    SHA1

    38d4a28aa7b3692161d549e61936cf927209ff8c

    SHA256

    6a8f1c0497091f5d8d325cd5d1987790ac2676fd392562bd0bd2b3edd5e1d505

    SHA512

    8d3185974608667103209f10500a06c356efa88d52be9a4b5b633d710b78fe4fda3ca101e1c0dea8744a7d0ff1cd9611a5e6b8643e4d63dadb730b57b9c60ac0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    819aecdfd31ae8d8236dac7e1b9a5e44

    SHA1

    c4227fec05120dfead7ccf565f1e12ece2d11d65

    SHA256

    de671777cbd5301413998227c0ae229dc89c0fd8df3ce69d907e734c30dd4ed4

    SHA512

    e11776ed58637932392a6e3b6ecf12e14b2b07094e7dba0dc009b909b88039d352e580c2ec6beb923e3f823eab9193ceee98a035034a252e462078b1bc4937c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    048e5ac6f98dfb2c7e7bdb9fe947943f

    SHA1

    7fadbe4cff536e1509722c1c0b278406d79b4b0e

    SHA256

    a7bcc3ebeb5f554fccacf1c9bb3100872bb9eb27fefaad18602b62088eb3ab82

    SHA512

    75c9bad69dae78864ae3f7ff2ed55c1addc80f0e6a9bb3b93f6055b0dc653cda8c5d056d960f8d2e77212aa3db9eb3123b256090b1ed6151df1c37542074185a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee0345fdc23af36474ac6f9124f0f7ab

    SHA1

    e4a37133837e146b109c45c82dbf9343219cec0a

    SHA256

    ebd14ed68c508fe8cc05891758db9acd932532bc4d2a9904365dcc520f7990b4

    SHA512

    960c484defe49e086afd8e3f97b87c16af9a6c7c0876513d443c0680b35d29349eb8f7e8835a6a5b6e65a79432db4d5b4cc8fa66bf1b211b5e01ed878275966a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65f9a13cc8bfe95f5c358e6003a16ad3

    SHA1

    26146e6b48c06d60761f2b974685e45b09580436

    SHA256

    9a82f8d4076b61a00ecdcc5f8826279c80c778ec0a58e934cf1233d734903e07

    SHA512

    88c254449453421df989875e4585ddaa35634f4b67c97cd0020c9df8805192f7247bfb9e1b214f9ae4cd12a19f4c9044415492f7d0d4e17aa3b23e6eac6dcf56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    163d6c33b2f839b696ade1e3b20abe25

    SHA1

    c809ca9c149315015ceeff39be6173417e1abba1

    SHA256

    f9211d1de37a6ba34debe82894daf34235e9d98032c6fb8d4731841f89f038b1

    SHA512

    4516c2a2b9e022ff07769745905b5b80306fff40fc7fe9a538a833970a142f6edba4cb2107dba07272e8b641652a7f72e06355e10ca25d151e44d749384d3951

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0068ef3b7f2a09352852838c00537ce2

    SHA1

    b145e45f32339a7bd0d90985f0531de722a4c56c

    SHA256

    fa6a789baeb9b6d7fe191d21090033ff7027149c46c472a9cacf5d9701a947e5

    SHA512

    d5a3608fa248bd73e63726f393229cec61d4d54bef0c7f6e66393195f82029f6a86459e2b20d0f6f7a888262843ddee3ac771e2079e9b39efc62997d388b4f0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61851a7a660b852ebac80723cf0127a0

    SHA1

    567d43266d1d4374aef01b0415dc333a996abec7

    SHA256

    fd77222b29767b81493e6c7303fcd9d4a446b8cc64d18fff81f41de66211b189

    SHA512

    dda25130e7b3cb1373c0ba7d5c18be6ed1f746f59e25030ee23e9578e792e33a923ba198a13e5d2805289b6e65675902b19556d088d7ac9cbcbb0f813a1d2c1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5fa95d185595255d3fbf1d73a5c30d3b

    SHA1

    4df5df23f3b0ee946b96dad904ef39595195a60a

    SHA256

    229d32160e659efc9f1b216bda6526f2f918bc4448896158e151e4a521541c37

    SHA512

    50f08617b2544de80ed37741f110019aae98d9130776dfcd272dafd09ef0d63929d414e759bfb233c1af8a284fe34d733ae225851ccb1a04a9ad8e589bc7cda5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEFDD.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF10D.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit