Overview

overview

7

Static

static

3

eaace746de...18.exe

windows7-x64

7

eaace746de...18.exe

windows10-2004-x64

7

$PLUGINSDI...s.html

windows7-x64

1

$PLUGINSDI...s.html

windows10-2004-x64

1

$PLUGINSDI...n.html

windows7-x64

1

$PLUGINSDI...n.html

windows10-2004-x64

1

$PLUGINSDI...l.html

windows7-x64

1

$PLUGINSDI...l.html

windows10-2004-x64

1

$PLUGINSDI...Ex.dll

windows7-x64

3

$PLUGINSDI...Ex.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...es.dll

windows7-x64

3

$PLUGINSDI...es.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

1

$PLUGINSDI...ss.dll

windows10-2004-x64

1

$PLUGINSDI...r.html

windows7-x64

1

$PLUGINSDI...r.html

windows10-2004-x64

1

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDI...t.html

windows7-x64

1

$PLUGINSDI...t.html

windows10-2004-x64

1

$PLUGINSDI...t.html

windows7-x64

1

$PLUGINSDI...t.html

windows10-2004-x64

1

$PLUGINSDI...n.html

windows7-x64

1

$PLUGINSDI...n.html

windows10-2004-x64

1

$PLUGINSDI...ui.dll

windows7-x64

3

$PLUGINSDI...ui.dll

windows10-2004-x64

3

$PLUGINSDI...t.html

windows7-x64

1

$PLUGINSDI...t.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/04/2024, 08:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/Final.html

  • Size

    1KB

  • MD5

    59ad77fb8f2eebf498874e7d85d70f46

  • SHA1

    853db49c44b4dca27e13187727c6433e35a35ef9

  • SHA256

    daae7a8144756cac09a80bb9fc7e121e27d38906cb7fa595c70c1342dc59560b

  • SHA512

    25cefd0c116d657dab84dc9e7d90717a4c511997ddbf118382a5d8533ff130f8e89916713122fee9e443aed5b0c4d74f03aee81e6af480ac7a962c2f96f73d69

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\Final.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2068
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2068 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2288

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    37f4a505e6156bb50c60b27d4facf19c

    SHA1

    95d29d406a30577114c153d7c1ddd3a6a0575f4f

    SHA256

    dd141dbee4bedc04263281afcd54003497a890c2fab7e31355feeb82482add92

    SHA512

    ae4496bf6ae005ba6da98e6f7941649e7986640494c6c3570638cefb53ff65d6a56765974cf7c5b823d02a499663f7801c27166479701b27c204f79ab913724c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3718ee1dd9cb67697d23e17da841b8a6

    SHA1

    626734879612387cd38ce4f8517b3a013abb9ceb

    SHA256

    f6bda50d1a69e107908529c5ba7451bddbb05c160ff10d5e5040c0360a3f1ca7

    SHA512

    f71021c24e583791f8426bf573ca9e6cc49aae5bc39da30f7e7191da1f00cb28adcd754b91ef58997c46cfcc2fc3af4a41eda887234fe74b3e5a0c0e1d4a67da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f93b253586026f6664b1111239050ac6

    SHA1

    52c0361cbbbed6f14d03616ced38ff1ef6cee3ef

    SHA256

    5a52764a6cc717e87ed9b521b6b189682ee1084f81bf6990ab9028de5b8d2580

    SHA512

    6c35664632e898ee6f8df512988cc22ded7729fcfb3bd89b83d153d0502d523a7b92fdc8c7a4d64341760fccbd767b5c6e43cb57c19d2ae1164030f14d2a5630

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09c24571c5803e10348ae69bfe3ab88f

    SHA1

    6655cd4f9ecaec857fbb0422b6d2e909a31003d4

    SHA256

    0b9a8df7c805622ffe5b50b4dd7c85b19c4afd8611462dddd10a512796c4fd40

    SHA512

    00487b4a2cf482301dd4476bd632c2f911de93457379d33540506953fec9d6c7567136d60b73b7c952565099b2e90e25c0755e986b690480575e5db15a9054d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b39096b74b13672330448683eb88e65d

    SHA1

    aa74a973da2d673dbe7c5b83a8d3975222f99ef3

    SHA256

    dc3a572e6d2ad4f8e7c730ce759e1cae75d391ab6b3c0dbd9e61e95bedb49816

    SHA512

    8bb7b3e4769aeabc0a10d4e437c2fee47936e5c6631324403effa484d37fedd7e68f37d0b07787002afcc2440f2b894bfcc914f9cd8c8cdb2c48a9fb51bc5953

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    353e973651af6ff7bcc488e36c3afb11

    SHA1

    6e61b33bf1dbf1929d5943e9e6ed7acc9a8b2e02

    SHA256

    051d457fd81de52a9cf035a95dc11beaa79845c3f0386a09924e68125bb52643

    SHA512

    a4d943df650e06366e9e81f192be36e1577c18ccdc1273e93c699b5adf27cc4fbf51b06efa57a10de91b267039012c5c6f70fd5535380ee0be509b695dd7fae8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0643bc5439ed53af37376a4e3308a10

    SHA1

    d1c9e6fc4f0c2ead4b29ede278068f899b9e02c3

    SHA256

    20a103a823fcda83d66b33ae2a38fe8e09df862c38cbe90b2f4a7aca5db834a2

    SHA512

    9862df7b7d4a9ca6e80a1a3b82bf95868e827946c888a0c9eb983301ba52af35822e418297a9c21ac2bb37579d15c2b91199290e204c3d4bc5e45b34441b5f88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    01fd293d624f4085adef10d25e46736b

    SHA1

    014dead4ae91b1669558b2da144e616dba5b67e7

    SHA256

    a4d049ad6173be09e9c79a72473a2ecf68aaf50f2237ce64b686a6e8a2114474

    SHA512

    246a3e33e70ee6c91f806f17cce9286c2f9fb27b76c86ac0b106d9b7a0f7139151ef1f63c6876c56ab6c62710eb27f755cf9764d8e86e03593c90105f2aa5f56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c7b3912ea59d91a78d017f664f6f188

    SHA1

    89af3976f13a80153a84b0b706cbbf6298985457

    SHA256

    fb3993500782c2296f35cee058e1ceb137dc78bac6ef02adc9d79e1908f1b2c0

    SHA512

    458ab3b8961fa6f045a36f27936b966803897a8d74bbcd861eaade7b5eb71dbac30121469ab43a620ebf70ab4c82dc38d9faaf443befe0ac8474d0511fe98736

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    292595c1655c980171a161e615e727b3

    SHA1

    fdc0578b6824814d2214de50f34ef0902c0b6ae0

    SHA256

    3f5e43303d3f9cdd602d32ce93ecdead5969ec290a4f8348b44c6ee0a5a3be35

    SHA512

    04194a21064c2f604aaa73a78b8e446744b9e62ffb64c6f32ad59c0201f41bc0802ad175b40f132859fbc2abba0576fbd5f5b5bf06f85de58e9166dec0c3229c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5eb9032db117864cbbc54f244a2cb345

    SHA1

    b409ce7f0874d6e45fd368160f21d24150089ace

    SHA256

    d6996a663350ecfc252dfe74e45f72767f5f025fa88f9a9a4bac1ad4c9722d56

    SHA512

    523d4d24d512fa1ef3b14b6f6d53da8752c8bef30fd29c63eb96fb64703da5a1004c4af01a6b8d7f4905b9aefae95e89172847027c15bde3e27333244004a045

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b3aa28a8d7ada5f8425423cbb442939

    SHA1

    e1967afc3ba989e3cb0d19ad33c6ccad2e7d44c3

    SHA256

    a93ed571068f412ac5dc48b96f30cd1d29c094b7b2a16d14b747710ed864573f

    SHA512

    407b57c9cab4b4ba03ce48e827fd919c2c8e4a1b664ad564e76d7c28543d2786c8922c871547a04eb135e1d8213d450d50b8f219a3b4d38de3f8e2b23a83c4cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6aaf7d239843e3be8166aa5cd0527e82

    SHA1

    7f6d46f18b707aef7b5f834e672848ac4362eda2

    SHA256

    932e6dda2baeb92e0c7ba8f364f54893c96983a92d4b79b5eff625b369493217

    SHA512

    59dcec805bf0d86dc87ac068e3730aabcbb35719452c4f5e7e0763c39304bff13e06306a347fd197ffd317921aaf4eee16d05ceb627ba1f2cede80bb914ad962

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf3b19c35577a77755ffc83f89cbcfa4

    SHA1

    09c30c1dbcdbc59febbae0d45bdf3f9e827556b2

    SHA256

    8d28a71ad6715a04c135d918888ed49ca3faee6d5735c668b92855ca6a7170df

    SHA512

    f04562a96599723590cc71736993ff1830f26da024079a8cae21c72189a1f79b354f45c17cdea5527226b15f963472b81d9b66509277547d0e6c5990b05e74da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22a010b5a6698d37cf23508d32f3b387

    SHA1

    59bd65d97e3ffe8b4ec648eddc7e1651af6c02ed

    SHA256

    78d9b3a6128db61bde3618e97a26274cc22bc34ba985ed43fd08a9c073537d8e

    SHA512

    45dc2165a2e8c09399937bf874b9a36649846dd3e72f85d25520e149347a569a15a18c8822f30d60823456b078fb887a1c2c2b82e30ea893ec07adadeb8348c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a4af7f7fa59f2b692da105df42d3e452

    SHA1

    665513bdf07afe05516f8523537fa623fb0c22db

    SHA256

    1c22694f8f9e19419b586d3aa7af9fd05c72fcf5cd57a6bfa1a73f7da8ebcb4c

    SHA512

    c5e13033336fc181100d69bf402bcff616f907bb92b4fffea91fb0c77836e7a64fb5549c8fba486ca163c23e750864f91f398f0b7453d65723fb36ae7c6ea0a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98dcbab6f058c79992f6a4de89fa5f15

    SHA1

    f71d2a3e77b2d523a70239f5f0bad05fce889539

    SHA256

    22efdea9ab30f0e0111cb0511fe82e8e3f9ef75706e162d4140902cb4f252a98

    SHA512

    76ed6a1536ffbcdbbdd6d73e21ddf4937d683ec7693e3a49312c7731bef441e2a919979afb18bcba7d2317afd6e940d61f79c6a09547d7962b5fc65bf02512d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ee942f84f33f0c57c08cade2f16ec04

    SHA1

    09a568ed1a1942f624b4621a76d2c93121889cb8

    SHA256

    bb6170db47e1f30d57f336b5b583464aa6c2fa27a3b35471b0265013987bb22c

    SHA512

    f828e500013521e68740fc801168ad638891699c7c136840bb052f1aca4272a059744f320439395f89846987fd019b2dc8ccf84ef24dd958781bc743c4cde583

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0f52210f290636acfbaaf3fbf2b74c3a

    SHA1

    32d1780bf9777b4efeede9fe9a67db76cad8718e

    SHA256

    5244ea63e7ed40009b2b0cf3a1af7b15de5f3fd08f31cd3d4b0996f71f5e0f84

    SHA512

    046a6fd12933e250e7d2b7db614ecc5a7cf1686ce0a85d9a612047542a0a6b61fdae932e851d361fd2e4307a60e0c52ae154d4263ebcf289543f482cb794b0d6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2EA2.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2F83.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit