Overview

overview

3

Static

static

3

FLib/FLib.html

windows7-x64

1

FLib/FLib.html

windows10-2004-x64

1

FLib/Lib/p...ng.vbs

windows7-x64

1

FLib/Lib/p...ng.vbs

windows10-2004-x64

1

FLib/Lib/png/png.html

windows7-x64

1

FLib/Lib/png/png.html

windows10-2004-x64

1

FLib/Lib/z...b.html

windows7-x64

1

FLib/Lib/z...b.html

windows10-2004-x64

1

FLib/ĵ...sk.htm

windows7-x64

1

FLib/ĵ...sk.htm

windows10-2004-x64

1

FLib/ĵ...ap.htm

windows7-x64

1

FLib/ĵ...ap.htm

windows10-2004-x64

1

FLib/ĵ...ib.htm

windows7-x64

1

FLib/ĵ...ib.htm

windows10-2004-x64

1

FLib/ĵ...ct.htm

windows7-x64

1

FLib/ĵ...ct.htm

windows10-2004-x64

1

FLib/ĵ...nd.htm

windows7-x64

1

FLib/ĵ...nd.htm

windows10-2004-x64

1

FLib/ĵ...ge.htm

windows7-x64

1

FLib/ĵ...ge.htm

windows10-2004-x64

1

FLib/ĵ...zw.htm

windows7-x64

1

FLib/ĵ...zw.htm

windows10-2004-x64

1

FLib/ĵ...le.htm

windows7-x64

1

FLib/ĵ...le.htm

windows10-2004-x64

1

FLib/ĵ...eg.htm

windows7-x64

1

FLib/ĵ...eg.htm

windows10-2004-x64

1

FLib/ĵ...er.htm

windows7-x64

1

FLib/ĵ...er.htm

windows10-2004-x64

1

FLib/ĵ...lp.htm

windows7-x64

1

FLib/ĵ...lp.htm

windows10-2004-x64

1

FLib/ĵ...��.htm

windows7-x64

1

FLib/ĵ...��.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10-04-2024 12:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    FLib/ĵ/FCToolHelp.htm

  • Size

    2KB

  • MD5

    5832fa0262621944a201538800a1d614

  • SHA1

    651ea04f86f7565186a0b9e07a8d1c5c7e4942a6

  • SHA256

    3b1aa91c955d585c02d0b1ecac79df57f8f5a4913fe19f34db6ca618338d0aa4

  • SHA512

    a94a36ce69b74b031a1b2c3deacf7acda3a1474329ac85da101fd9204b7689ef1de40d6e7c9b0762871a8c01eb5defef10a1d9e7a8f1e071dd217cdd7c425582

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\FLib\ĵ\FCToolHelp.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2244 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2484

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb1fd908bce78f1462ff467392056bfa

    SHA1

    958b6c75c6cfebd8ee2c59e5d1f663eca06e18ab

    SHA256

    00d18909ec0e6d1f5c1fd79bdfa7e585f38bf7eb964c42a4ef27445dc487b860

    SHA512

    d354c0e44c078570a49837d211442d210cb0e7f5b8130d634294230439a791a4380c5d27dd4277f5874fed46dab95c53288e697454264d554ead53603801c6c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5a85271dc7e3149fca7da9aff3d40b8

    SHA1

    ceead6d03ca105ce8ae0d471d9e5c0c835e825aa

    SHA256

    c4481ac9b3f44611b72d7dec46cc6880dde4a22b2a27d7f03a31d17cf41a8f39

    SHA512

    8e99693f3fab068492224aeb51c6f0487b5df6761c7ea72c7e794a871480fc0bab76758c01d51b9ca32dc38e875635308007cf4ba7733749cca175369139c5c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e86cfe09cc69b182bac5f60c414e173

    SHA1

    bb753f712f8bfbf504757e39253fb103d1850bb4

    SHA256

    8c332459b2f65f3461e264d19b7068777533ec0942701d2980973f668acda4d1

    SHA512

    c5c65d5072ddd7a3201bc8a28aed396667e8f69781b8e16593b36d2277ad579dbd17d8998344a2f4053d1becebb908c26e8b6bbba4ac8cd66c709620ad1973e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b7de6669c12b53d03d94546f082647da

    SHA1

    004ec608bd76c4d6865329f19b413f04d8156bcc

    SHA256

    0506031376b8d6c5baa51bd3490e4434e253f927db3820f5fc26f8ae665d9743

    SHA512

    c819e479d1aaebd237673d8f05f3615784766e5032de062997b3812b0aabadbb38312e72edaad09ebc96af9f27b9278f0dedb8c40763ad76ab69a8b1d8951077

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a716a944b68675c774f57cb3f7668fa5

    SHA1

    ab762a5324f907090285538c7dc8c520711d8841

    SHA256

    cbcb96d9ec2baade39c38956bc12f10ec90271405a9a7dcbf77b173491d6480e

    SHA512

    1b6596726a4dd2d5cb0aea0e69a46587de05b6345ddbd1630f4cda58d5fdddd709b96a215e4eddb221c2567d0e0b993237d99c4f3bc435806d985a3e06aab497

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    33f02f578617c1bdede01afe57d5ebba

    SHA1

    89acf343c41aa97d570f804710252bdd05e6224b

    SHA256

    c9c0f3e50852a1f9c6d9a0728e50d5e80b2f3dddf33f4c22a41caef90b3e1f13

    SHA512

    03ceba7322674677df719e4d5f2d12bc0e87a6e1be08bbafbca54f3cb6bfcd66d477953ce348d2276f75ac3299b88707d86f0bfb2bbdf4ce731c5062d6e34de6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4b2a1dab1aaa2dd8926a9374df986597

    SHA1

    9b0ad77d049e1335bea7f4a1af09274433763110

    SHA256

    1c602b35f753449f342b693dc771136a76d14cebe22edf15489de0feb5dd8a42

    SHA512

    77c88f138992cb02bd0b496f6e6330f1891ba14a7d70eb99ed8b54203116197e7f81bea48b6decf0cd8f883a6750e0fb44342c184a1379c6389cbe9c8a23c0b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ed135b08a06c7f9cf0a838624bec7e32

    SHA1

    004f92ad397c0bd4b1b40423620183c9a47c6282

    SHA256

    1321076d5e14e9380443a94b308a8e7580be41be91db6542561d400eaf34735a

    SHA512

    f2584c6c72edc26bf88cef27909cb5c64c3ef1b7935d6b51ee3531a122c1063e84a1435021f2ad2bfb6d7f6c74cb5b1ff01738b21171cd51f9eff6fd5db53c58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    16e19131b5a43a6122bb663e06a04a0f

    SHA1

    eb9e6a3bc13dba53fa4e7064a67f36191b915fad

    SHA256

    f2afaadb25ff29f027adc74a2feec11c3c7e8859a6ddf174b8dd39d7dd8cb015

    SHA512

    1cfbd1e56dd656ffc4a9267b93f97677891f1d710735775efd877ddf7215747900579add3755d18d11ed25c19217686f415fccde9ab9b4c0ce26e4908e87b33b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ece6a4229b0c91a6f5b860a1d84049b

    SHA1

    0d8ab3eb651e1e206aa73ead46932267508e3bc1

    SHA256

    7761c6adc6d3e28cbbfb095d5e4d125511742a485204f253bfa8a8d614e1b57b

    SHA512

    686f996e13e5fc8029d5b864b0b982846f0baccd16dad6cfab7a93fbcbad145c531eacc9e852bd15abcdb42eff8be2a9b8aeb010da6f0b993ad356591bca8f31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c9e71ec5d661b1b41b2e0ad4d233951

    SHA1

    e957fd54bddcdcc25db8b1053733de080beca7d2

    SHA256

    01d2d560484d679511d91a534f1d1531fe4a21726e134b9cfca594c0e669deb8

    SHA512

    76c84ddb1ab0e856e349fd53ea36521a4a43f2c21eaa6d233d8c2307b56d616bba5bd5fdd3eaa9d9ffa8cd501d374a39f2d191fbbb05504d3119c909cf97a6b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65522a6c6135c04b3fb0d56e183fa55e

    SHA1

    35f823d0cea78d4eaca2907ea7e70c7c11be77f2

    SHA256

    0d09710c8c4568733ca67df2f9e92cfc638005f4533d4a3c57541ef8ed79bf71

    SHA512

    459f038466ebf299327f619f8c646df4e93d8281806297bbe55791f865d83faa5b33a74e9b64ec0e84dbe310d828d04b53551f17d09868d7becee6c12be4beb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    32086e90b49a4194a17860a8141dcf8f

    SHA1

    8aaca97104ebe5a8a8e3d932a346308bad0f1c78

    SHA256

    062afed44f206039870ec50fb8e3c5ece824367c523cf963c3237fa69b21cba1

    SHA512

    75635eb5d79ec3a25544f98d9ecf988d0958eddac04b5d89e0105dc345ad6f6ca1faf99d4785bae4bd7c9e54fbbda08d9ee666bb0ca643b2ae96c5b0d9655599

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    19988e0447ccb92eab06f9f8741f3d73

    SHA1

    6ce03c6166b54b20982f2fc95574ca53c89202cd

    SHA256

    976562409abc0401052aa60d263feecfdbc7c1dbac3a52fb67588847527e7ca6

    SHA512

    282c069979bf4c857b136eb8736d80e2e88ebe02e58e3004cb914dc0f62c35f4bc13f580838a48305bd381f85bd4b5974691eba179641ddc84766b63414d1a72

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cd4c43fde7a4c83c558b13f25c7828a

    SHA1

    6dda1d12ec2a5813faa50c961ab344238b312f56

    SHA256

    9b4634d27f243767a8fed5c303c550c58dfd8352b6edbd7bec8473290370c2f6

    SHA512

    91625cafdf75af537d30fbadb21a11a7b44cbc26c9a7398af1303c921d4badcee4a0013f1fd942808a495b67f73686a6b3d8afdb7e0e2ca62ec5faed8f0a5488

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08ad9288fb38bae090df7d703a7da260

    SHA1

    2ad6ca8038a27a141ed02cdaf132808ca3a38676

    SHA256

    7108db14aa9217541f58b9b088db95c9869bc3f9a6277f000d2e85db9db7c582

    SHA512

    8d639256d849d99b6ef9fcaf7b1ab5cac3eaccda215f457a81b108a88a1163bab7dd9a6711b6bc822f41ea9ac9fae46256c85913da80c2de0cb72856893c5acc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba6da9e89535c1ccf2df4acd8a6666e4

    SHA1

    57bfe1f14ba1fc75be8c39c0e7095eaac398e9db

    SHA256

    f98eca88fa917e5666a999cba737266af282684053c6e42731c00683c3972a92

    SHA512

    5350d1be27a7541230b9975ea63aeb4812aa2ffdc3dffaab59e0398690623179078d29a33ebb867bba16631f869b338992d6d7f73c36b1f90382ca3e5e19f4c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b824758ac4e8d23d4936c2008ed1ea20

    SHA1

    0793ef685e65211e60654a19486f679a930aa39a

    SHA256

    6c788ab803084441bc35c9729729788e1fb25b8fce8d85f41d24cd1e6f5e1ca5

    SHA512

    158e4d01f3f74aa4fdc390eef9335b9c10604f0d760bb42e2d25388d6fef63b9691e8d57dade8cd7fec52a5ff37971deca83f2886d1c81f6a934fe0b497ad34a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb6909d84c1ccee4e5858f29d9f888d1

    SHA1

    fa0119d11848fe4d1498ed94a44009fb3fcbc73c

    SHA256

    dfa5409741f187da2948a6d7ef75f0b04986ffe384c23ff759c317a2445e5f85

    SHA512

    5bb181582c151a87f123107ae31dbf74d3bc2b928d00f02762b381259ae012fa13e054a12e58dc3a06c8c7373f7c463ac2b915875e494dbc0e067e64aeca6f61

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDFA7.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE0B8.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit