Overview

overview

1

Static

static

1

upload/adm...ex.htm

windows7-x64

1

upload/adm...ex.htm

windows10-2004-x64

1

upload/adm...ad.htm

windows7-x64

1

upload/adm...ad.htm

windows10-2004-x64

1

upload/adm...um.htm

windows7-x64

1

upload/adm...um.htm

windows10-2004-x64

1

upload/adm...up.htm

windows7-x64

1

upload/adm...up.htm

windows10-2004-x64

1

upload/adm...ck.htm

windows7-x64

1

upload/adm...ck.htm

windows10-2004-x64

1

upload/adm...og.htm

windows7-x64

1

upload/adm...og.htm

windows10-2004-x64

1

upload/adm...he.htm

windows7-x64

1

upload/adm...he.htm

windows10-2004-x64

1

upload/adm...or.htm

windows7-x64

1

upload/adm...or.htm

windows10-2004-x64

1

upload/adm...nt.htm

windows7-x64

1

upload/adm...nt.htm

windows10-2004-x64

1

upload/adm...ig.htm

windows7-x64

1

upload/adm...ig.htm

windows10-2004-x64

1

upload/adm...it.htm

windows7-x64

1

upload/adm...it.htm

windows10-2004-x64

1

upload/adm...on.htm

windows7-x64

1

upload/adm...on.htm

windows10-2004-x64

1

upload/adm...ng.htm

windows7-x64

1

upload/adm...ng.htm

windows10-2004-x64

1

upload/adm...ed.htm

windows7-x64

1

upload/adm...ed.htm

windows10-2004-x64

1

upload/adm...er.htm

windows7-x64

1

upload/adm...er.htm

windows10-2004-x64

1

upload/adm...er.htm

windows7-x64

1

upload/adm...er.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16-04-2024 20:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    upload/admin/tpl/album.htm

  • Size

    4KB

  • MD5

    45cbb373f78b4962efe8fe4457707b46

  • SHA1

    de4a19c333317675c1ac8ebc7eae1b4fbc43d1f5

  • SHA256

    a2c4a0c94ad64ca904daacbb3f52a67f03a05ddb43886f55cd65c24fd72e7f98

  • SHA512

    69e4ae2d6c35d4ea324fa8f4043dc3a833b15f4ead335c7e646eb13b5a65ee2cddbbfebae041080139141e921eca05fbec8d37e633e6d56071f5dc442ce141ff

  • SSDEEP

    96:ErJ4p/cyJQ26v1baDpYegW+sYkGml80lIBvBWLd:fpkyJQ269baDWegW+sYkGml80lIHQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\upload\admin\tpl\album.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1392
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1392 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2516

Network

MITRE ATT&CK Matrix ATT&CK v13

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4532346fd8bb1042a5b58b007a0a0dc7

    SHA1

    055aaef083ed42d7a45e8bd9fd884bc496349605

    SHA256

    6efdc9582ef2ed145f8896183e3085db83eba30784d20be4c1b6e1e4368cbd6b

    SHA512

    d827c420905488564e0a9d32258cf4bbe89c18acbc477c66dc77e547c77d2d473ad380755d0b6d09c889669f0e1b359b8e789de80d383b022ee95366df4f57f1

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    116a6d03fbded9ad0b89bf4147ad8a21

    SHA1

    eead5646d7a60c75ba79c938143cb32ef02c9196

    SHA256

    187db23d449320f3bcff615a6134cbb7cc7436c41193c60841c62c4aee76ce53

    SHA512

    8c78cb21f62608821446a049f96781c8b4f037a304ce72b2b1bb5fd8cb7bae48b4c7297dc5ff69f9aa03ec6c50fc4dbb88917ac7a5a8abd291d3c44daf306536

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    77338bdcfc7c8c9b3b21850c3f2dc382

    SHA1

    33f3bec691d0cf59835efe534693264175600011

    SHA256

    36b4afc72f5af9dd8efb7fa4cb0060a32fa43e38c4b8ee1689679664f81c0a19

    SHA512

    d956ed875dd753d2726ace0201db0cf49b5fdb9d60e51b625d8a0060fd6c8765b85a8e503d3c66b99a0112aec2d05ccc8e753287db7821bf6125b8475174d942

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c02010274436f5f680c5a73ca1fafda

    SHA1

    bb1898a114c5de39ce121bc3407fb6e7db5545f0

    SHA256

    8654ec44c01fc9a015202860d3375f8e8f7be8c8b1f067409140ea36709d3bc8

    SHA512

    0f8396b75e2f71c9fca77c107f99fcfec3c7eb6b1992c38578216216550761550f7b062fd884a9438f302ec88620afe7f74dbf52105fd25e912ce3160ab560e6

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04fb783762916c1502b3213f1e8856c5

    SHA1

    ff594b34e63bc9fe4d348dac75ce2c21dd3bfa2c

    SHA256

    dd63de71469fb3e56ed0e5bb627ba1f48f489fa8b984581a7233fba6ce5b1273

    SHA512

    8b2e419b7bb16d98679a4865cb488df8ef327ce9696a2060dc4766b43a8298effdfe091325dc73826a6c105070164f89cf3c8501657feab4dd9240a7666a030b

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    74a46616ff1b56f46bb2d08acb811929

    SHA1

    6f17e74ad190bb19459cbd697aebf904a3d41789

    SHA256

    7741451eb9b02644a3e6f8bbc6c999e4e11ec8c705cfa4c2b7a7af1cdacdd3c5

    SHA512

    9c36bbeec522e7da5921542b89530ae352e6bda54bb82fab2dc779d576239b604a2c53e46c7f1818961cf16ab165b57979426818d4aacbf782d9b0bf223da5db

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1fb4459102bdb2ff71a514e2061f2b15

    SHA1

    689865e6fdc9f8c33d842e1da65b67fa5fcaad3b

    SHA256

    2dc52ee6451a0ce3792fe315257d41b1febe3e7884e42499ef58174c81e4a247

    SHA512

    d4a6c82712ed5f5a1326ee77286261d67de82199ebb7655314305f26456ad465e0b11725220a4cc464b96f13c52479a6bedafd94c6089907427d34afe42b8384

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    23891685352003fccbc8ec6d750d95f0

    SHA1

    b8ef179321ac5b7f5c3c9a629bf9f4d41464c1c4

    SHA256

    e480a1260f68d3d14758aa00372ce3923885514bd2460a3c2e57487c7e76c861

    SHA512

    eb023de6b97eb6a657fa85938bf6fc27139c51cc563fc1c92bfac451e694983e3620833bd4ccd55f7d2b5eb1145ee0311a45ea8b8ca079b64943bb74a062d788

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2112666541ba995bf06d4aff8a5c0f3d

    SHA1

    9d665d520f4184ad81c193ede6ef6dfddfc907df

    SHA256

    48c761252f3f186a85cf299ac1a71d1f6f0450449ff2695b5d4f7bb7f557a414

    SHA512

    f778ec8ab6cdbec8167f6e0bf8a0a1e8559c3c791397a9dade7bf6dd1733e4bdc580234dcc732bb0a0d015196aec12a77c07d490fe1f8ab88c014ce6a5465047

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6da405dbc75d8913f5e04e1670ff2165

    SHA1

    f6efca682432ddc2f5e21b5284795fbf0e7bbc25

    SHA256

    ef8a619bc4d49343a4ca849a4f1dfcff537b673d602ca8ebad332c44a1e29dff

    SHA512

    14481403d213d55722707833c9a4d8355d88928d09e46f611025361651d178df9f0d05eb7b8682dd4f694dd49bded3b067e29a79b2f30f3ad13aa37f7b5ccd7a

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    226ca0db4ed414002257b7b1e5621f3c

    SHA1

    e8890e4e6a2f610afec1d99599f671f41e92937a

    SHA256

    e61606d1eaa697fb8058b4ee75ac2495dab5d560c04d8b2435ca58cb7bb2f4d6

    SHA512

    79773990e6cdc45dc6b9fb5880e4b2498b7157406268b0ace7fffb12bea467cff41d26121a6bf53912449571b819a34c836fbe9387e14b454df2acf28c21d694

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    94d016cc831f8db96659523b378ccf87

    SHA1

    075ef95d4f3d28e29dbcf50bc8ec0e18adf3fab8

    SHA256

    456853c629e657c0ca95d6226090ca650ed70402ca11c27fa16ae8cd4f961f04

    SHA512

    6d1df100fd397fdf79e588c3f8dabc4c8f3a7b44202317f3a8a6952bc9f9c68ba9dd2a86ed008776b5826789370847e5259625dea6fdae870b0126dd5cc525d7

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0f51fcf0e686cd06989dd3ada850a01

    SHA1

    4cec46c74f01ce96f5709933e3f87980f86e8e98

    SHA256

    818742d13e223ab63eaf18c94c6b9871df692e6f28f0e6565e5e0cbd26b5966e

    SHA512

    678efe145017422d80c06ab7a6c1de4dbef6b8faf7f59c8ede8a081981fcf06801a84841458b1fb18ccdae8e0dc2ea3537248671aee04c186644cb855d706c03

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f4050108dbc0b1a1e18468b891b6107

    SHA1

    721d7efdaaffae452d8b4b92a3b633ee1690ee67

    SHA256

    61e050440160191557fba0e8a7b918ae1ac1c7bc43881aa804462b6bfcfcc673

    SHA512

    b40610a40abfe005a6a7538d472edd1cd6bc4840ee961fd9e5f601df8ccf03915fd1fdf7c9d2d33d0c77f24c4b1ad1c04b30327935a3326cda10cf531fcc2d32

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    019b44abd8967aaae5ab89963f203817

    SHA1

    c0b253c3576868e1f62d971c7655888f8cf8a8ec

    SHA256

    a7afa4491e8e554c1f90efaad5bd6d713ebb35f48f280497e9ac0eb208d15ea2

    SHA512

    9d4e0b693839c89d0de3193ea4db3a7758db85b72f0b2584ac59d053b17a96974d9c129f020952f06c3aa65d6396c40951d0427fe608a97a536d36c7ca3d76ce

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3d4fd5d6f6ac3f5512295abb0c867542

    SHA1

    254634e3daa060c0efd3d84a5b7f9f13c5f4d5b2

    SHA256

    487e94874dee0522a4e6915b86af7ebaa1c01f9e9fb77b7154aeeeb1e32d01bc

    SHA512

    2f64e903fa1af1381919ba18c275047045f0e3779ec3b68a5692db3fb1e82788b66bd1034ac46f664db494f084ec5d20b060bdf6bf0412ec513c9346e0636750

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66c44202db1b3948a644396bbbb217a9

    SHA1

    07cd2c57cd6172a26a0179038a7608ca0fe49b45

    SHA256

    bc3f678790b37bdea4c3d9027b28e30751416aa9d355a40efac1a6015f720734

    SHA512

    6cac1126d631674228f85301f80481ab61ffd575d24a7add526158686a9bc8b411e48445c1a422e0a5909a92daea61d79e92e4df864b7dc6ec600539cb1d46ac

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Cab7467.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Tar7578.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit