Overview

overview

6

Static

static

3

oofile_1.4...ll.dll

windows7-x64

1

oofile_1.4...ll.dll

windows10-2004-x64

1

oofile_1.4...ll.dll

windows7-x64

3

oofile_1.4...ll.dll

windows10-2004-x64

3

oofile_1.4...en.exe

windows7-x64

1

oofile_1.4...en.exe

windows10-2004-x64

1

oofile_1.4...le.exe

windows7-x64

6

oofile_1.4...le.exe

windows10-2004-x64

3

oofile_1.4.../1.asp

windows7-x64

3

oofile_1.4.../1.asp

windows10-2004-x64

3

oofile_1.4...g.html

windows7-x64

1

oofile_1.4...g.html

windows10-2004-x64

1

oofile_1.4...rid.js

windows7-x64

1

oofile_1.4...rid.js

windows10-2004-x64

1

oofile_1.4...ase.js

windows7-x64

1

oofile_1.4...ase.js

windows10-2004-x64

1

oofile_1.4...all.js

windows7-x64

1

oofile_1.4...all.js

windows10-2004-x64

1

oofile_1.4...ore.js

windows7-x64

1

oofile_1.4...ore.js

windows10-2004-x64

1

oofile_1.4...w.html

windows7-x64

1

oofile_1.4...w.html

windows10-2004-x64

1

oofile_1.4...veX.js

windows7-x64

1

oofile_1.4...veX.js

windows10-2004-x64

1

oofile_1.4...Int.js

windows7-x64

1

oofile_1.4...Int.js

windows10-2004-x64

1

oofile_1.4...nt2.js

windows7-x64

1

oofile_1.4...nt2.js

windows10-2004-x64

1

oofile_1.4...der.js

windows7-x64

1

oofile_1.4...der.js

windows10-2004-x64

1

oofile_1.4...enu.js

windows7-x64

1

oofile_1.4...enu.js

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 10:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    oofile_1.47/viewer/ViewLog.html

  • Size

    4KB

  • MD5

    c675cdc7e4f54e97e7fce85e8166f5e3

  • SHA1

    a646ae18440cd670361c90b422441993b295ccd8

  • SHA256

    85a07c8cf62918d4a8423770fe0aa44cef9db8a533afdd714a9857e4343b7f45

  • SHA512

    cc05b10c549b5f25186409323440f79ca571e828353e95510b64e182ba936e007330b44e6dd43814bbd8c5901869e8c3dfe474b135fc89d4599bcd1a9c84d2a5

  • SSDEEP

    96:KRR+hS3yk0PksWTHCT6A8bER314KKkFHTHCidA9/Ou47AWI:KXxCkoksWTCT6Aeyl4rkFHTCidA9/Ya

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\oofile_1.47\viewer\ViewLog.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2548
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2548 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2560

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    09bf222a54abe09818d15b86fb0460a3

    SHA1

    17690a4234401ffab9afa5cf18666b4ccf9eb5c8

    SHA256

    1d8605b8c004372a144f9f3413b5a383558919a02b9d0ee8aef4ae1fcc5867eb

    SHA512

    53f65b819fcce97a1288c5cc0a9330bbb8a69de55f55fc6a9be3106cca88d7e44c361e49287e375763dcef981db6e876dc0acc20f9eb3cca1f618692e58d8385

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0f39e69bfadf91a7e3c6d619d628856

    SHA1

    0ebc7ee772d124c4c0d0cc10fa1144ea2cada138

    SHA256

    b904eb74c687b979bb16abdb21afa4c1fcb9cf98487d26669ebad071f5771875

    SHA512

    0004ec1847cfeb6c6844971fe3e0e75ba5cfd6acab0f786048acdfed4e3425ec9c370cc88569133e5174d2dee228138b5a1e53f3c53cf459860e67d443cedfe0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a5c65f7304b9d00c68f503c95d99a779

    SHA1

    f77daf089d263ca7029c606577b4dd6641f458ed

    SHA256

    9e9460f5cbdf266adfb0d102cae74ec917396066728f3805841af6464f6255bc

    SHA512

    754f539bc61a698b2cf56ee47d4fb37a07b7215ad5252796596e9e28c82d8581debcb0ca1abe1915cd57bc33a19881a72d0a930080e97c40b5666e9b86785d13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b3cd77358f4e00729890568ac42ca03d

    SHA1

    0f6817916d00ce83209ec313696451a2f4b6d921

    SHA256

    2dfb4cdb51a41561cbf3a153417f676a6aaa27dad4cfcd1c0812c0f8157e4322

    SHA512

    3fdccc09765739baf1f5e752a1f37e51950631554163a99fc5d9402b18f231289cfcc537c1323137ff70af2fba7cf754903a2a234663e5f0af51b78b52a99536

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f96000a5805167677366b705bd2fc60

    SHA1

    c438f61725a7272b4043af59c894e38ef569d453

    SHA256

    b1db80b58f1e457c2efaf47095847d289bd004e43324ad0e8aacc84b27b0730d

    SHA512

    469961b3d6f16f35e1f87a2f0fbad4429410b9232e80f0e4bd7daef7de7ffc7fdce5049bbc7fa8756660ca34000a9b4f8142053e6576d23e0d96fd75b384ae26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3434791880e43e0f311240a4a6131276

    SHA1

    814ce11f1d0f166092f2068c1f55f953d2ec6540

    SHA256

    d5187ee24f0fa8500645e3b159698cae4406caed4053e0c89e22b70dfb3c07b5

    SHA512

    7e0e4e54ebd219684d66bca1c8673b538135053f433e9c1fc2b4cbc14657b780ce24ef5c511cd13227250012744e01397a19458dc68384b8fa2c70610185e116

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b6a97905d81ddb0f911e9c2d520bd98

    SHA1

    8dce8ebe99d62bd3af200808370f3d613c83e2d4

    SHA256

    d668d24028914ebd331801db7776d732f897e262ef486ac8405061e971a40ee3

    SHA512

    de850920ee81aa46d1ac0c3ea610f91901adce65fb34bf0c087eae25f5f831e4a69e6c27d5b64e9718ff528f83e937b43f1e052b53313b38fc7d2a6abd35384f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b372e2c7691fce28c56e9028aca1fb2d

    SHA1

    ae3b76c43b166f8948187a1b987ed1d73a52fc43

    SHA256

    750a1e5494c7599d2394156f003a4b0f7c666ab9a20f34713c98656ceacf39c2

    SHA512

    738650facccb6b3ca2808132f41197a5b671e148076b22f4cf38127d266a31fd252819534a6e1b55fc72f4d70d0763b2ac2d32f0cdfc8617b73eed517b132b6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0d478b5852fcd06d06ad95ba15d540f

    SHA1

    84a5595db9eb0d5797e18b7cc855062e8e1dc439

    SHA256

    12ded136fe49512b9ac986fc88772cdb2eeddb5635a84c14980f72a04f1ee10e

    SHA512

    faaf11c04f697d6678fcdc4425907d74904e39377b452fc6f96cbc0aefa2a418429c543f490c350c6bcb813e763ca179a25fa6e96c97c9b0677414ab27e9f331

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5aa050078ae245e74c6227cb549b7b9d

    SHA1

    c6946e5381243eb11af2b69c786d5c4fcea70d26

    SHA256

    29088344b1644d9668dc0cfdb8d23f4dc8dc51df9920f4254ed0a7d13c2bdda7

    SHA512

    4f8af6da2aa1e9284db645bcd121245ad7f6ad3f79d1aa6c0e866408b5fae19f5e9e9b9d44dbe4a8f98bb37973dba1bcb82aeeb4ccb36242af51a31896c32007

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7796945298bcfbe6fe12990bc1187374

    SHA1

    64d244fc0205b2ee5fb6c69ce9ac9a895bb59fb8

    SHA256

    555c7ddc97e6783664b076b83eafee4d3f8f4e60d81c66459626cc9ba5edda3c

    SHA512

    1320a91c5f852960c1fefc350b4433ed77b67c566e4a99c3948563a1dc6ec84a692d74d4c5774bebdc6abb3d51264c7d5f800ab28f994f9123bcf00a5953f59b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f2aada99db285a4e9dbe4ada859f5484

    SHA1

    715110d13d061e9cfecb9d9f2b92a603b50573e1

    SHA256

    5a08b3517326237576906404ba51d43eeb844b0af03596586df697dd9ae6a2dc

    SHA512

    f507da6401e03648e080c7915ecbe8c9ecb2557208ddc19203e97323ddaf1ef16a5ca91a128846e414b639adb74a8e121ba729bd98ee3bf59d5c9a2f8c1c0bc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7308743238b760d14651e1ca33a61e71

    SHA1

    714e16084d5533f51fbe880d5c55427109fbdf4b

    SHA256

    c4f3034cb018a8a4e477c0c3675edd3a91429f4e29f4ee9e707c6075d5b330d6

    SHA512

    bf6d2aa05fb658c043f9a33ec96f03a54425ac9c35c203c9064825d1e588d3d0b9be6f5301d03decea062ca922c7e5f38c139358953b05f8ae293af6e778da00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    771338a6d2aa0bbaa5e2ed04d4184c76

    SHA1

    df2c8b32499de1a02c609e8c30889b3edd5280f7

    SHA256

    db6a2a18cc0ab5399a6f04c10d487f7dc11d547ad904c6da2e8d2e1774e00e09

    SHA512

    fc7c303f9a48e1ebd76267c5f6d6f923cc4744fa2ea2a47580d885d0eac79e9ddafcc783c6cbd9c0e6c1d94c33509d431e4b59d2f6471082898337aa63d0a817

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0d308d23f309284d3f6f165534c6b26

    SHA1

    3bc38ca97b2797a7b7032b1ca9c9632fc41eb384

    SHA256

    772f539b6a8dc8a609caf69bb2eafa08263d3b1b0f595be13952d5a11de005eb

    SHA512

    55e2913c2503050aa1ff3fa169569e46ebb98919c3b383d63a1ee551d7ebc6e250d6d1669585484e8240fcf8c8cb089984bc2ac7bbd9f7fa8cde18e79edad7af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3daa0ecd97ac3883a51372ee2a12ecd6

    SHA1

    509fcb4f995be7983cf2a4ddfdbfd24e7ae211c4

    SHA256

    039bad72ce0b24473d1cea169bd7569b3887ac9eadc2dbd83e9e6037160100b7

    SHA512

    6e84ed62c121cce6e9d70b299ec3200a24998d41f42638de2f3262fc837d1839199adea4739944a876a36c5c19ff882dae794b9871c90e0df5ea353d99fc498c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0eac1bc60ff5f074e6d2f9244bc63422

    SHA1

    be78d07c3deaa6f8b7e780144eb65e7e7bfa3c25

    SHA256

    d5f959327dc358905d586f81f63b95ed0179f22c142bbebfa446c9c44b538ab2

    SHA512

    e9943144cd3456b3efc3a155a4a907a7873969e7fed35818d999be807facd89c41ceed6467a6b4c0dda538097c92c1dcceb90c9afb3a69bdf1dc84ad2315d9ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9aae8901cca8f1373ac1baa4f950e4ee

    SHA1

    67f8a1c6a3e3a1f615061c96f41fa3c009fa135d

    SHA256

    ea9354a9b5b4f5b1b5feb0384f169931f54af2663d891900662400ef661010f4

    SHA512

    6bb828125922e24fed609dfae420d2023bfb07a951a51297929f6186b2990b4b30f2c5dc2b2e44e7b91045098a78bc041ee857ab96d4b44214299da0a5561302

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    47847f88b51496f9c90909f29eb3344d

    SHA1

    ca60f4ae3c5f071a8d6ef4be867e1d7223ac4c9d

    SHA256

    7964a7182bd6f0ebbdd10e9e1afacc7d8506229f29ee6cd49f0d9ee3ecf73955

    SHA512

    7ddda0fd5d5101f16bf6a7ba0fecc14bf7ae596e282b75f1f6a6bd8053a66c9728b2aacb12948bfe8d21a80b067d6df0bd096e18e0b2e90923709eb3894fcf12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2284.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit