Overview

overview

1

Static

static

1

liba52tosp...8.html

windows7-x64

1

liba52tosp...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    17/04/2024, 23:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    liba52tospdif_plugin.dll.svn-base?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    186KB

  • MD5

    0b2ee2ee901a6866a9a83959f18e2c31

  • SHA1

    b26c9a82b6673d5fe377b3a55f1c705717071678

  • SHA256

    9dcafb453c49fa35b1a6808f2d12af8c1eed7f07e177f44e92c59b9a3d686216

  • SHA512

    e722634820a427b18cb7c6974e7b10890b25beb287feaf9dd95cc9cf44aabe98e99c1057f373aa19942ae234a3c4e00e8cec574f557b052b92cf8883318c7517

  • SSDEEP

    1536:wh/RKoqbMq07hFeSqIWzikSj+jI1XN4vUkkGrNHH9E8B:wh/R8M2za0gm8kxHH7

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\liba52tospdif_plugin.dll.svn-base_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2308
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2308 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2180

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc23e6afa6d996b7c64855c4f4c4ad01

    SHA1

    696ad42d0eb652428dcc1ce3dd89899dcbd6edfa

    SHA256

    0bb7740e1b04119ee0fc8845178d85ca93b376420aec6cdabb96a56fc793561b

    SHA512

    32a47f078f8283f54694725243f99ffe3766c1b81bdf5cf8658be55aa73ce4a679f957423977ad6d8ebfbcd31678844cb12712297140012c91406b65bfe25b1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    88381c88e87c1e46234d6e5179ecbd93

    SHA1

    1b698717c7068c3924390975848a70cd38236213

    SHA256

    c62fbf915201dc354d1dc8ff4307fb8eb5eeab0868f6dd6860c76443d90f35e8

    SHA512

    207ef21025438a37df79d5838dfe96ace40731fee0c7f8f69f4075fad3f944a1de8c0cc7dc5756c96de6ea2d91810d85b854a4803a4a91f66677af10a2d639af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc668610ac940f3778565d43bf1bf805

    SHA1

    232f364cceb970d1a45ba3405f4384c744eb2c40

    SHA256

    bf1decad4c0e80991c0041fa37a5cc07ef37a5eb6d6ee921f0b2a2d6b28dfafe

    SHA512

    ede234ed343b8dde96af66b646ad3c7fd4bc258dd30a3456389c2322b3bef3072cc662069e3a85c801d166b90eb69c5fc6f72a2da8d9e6ce5dbe6bab655d6746

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a5f510e5703f27dae8364ac0a4a1f9f0

    SHA1

    090172166b1e5549730eac38c0d54af384f1e015

    SHA256

    cb3b9078eb0a41275505a4e0f256fd3184c1eca0f985f84fcd95db7478465be6

    SHA512

    eea36b5c38eca6afb666005416e6618ebf53ca1bab1763236eb4326d5e65dc4aad7ecced1f8a5e49f88cd1e4709d8a1a94715b2af75d4b68670dee007ccc3ec8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    57d863141eefadc92503548cb911d0fe

    SHA1

    cd3f3d8c510926ad583e5560791f91fd1afeade1

    SHA256

    6094e14d1b62faa674f28909679c9b3871c83cb060a0a6a4f1394f7257b06362

    SHA512

    0c368ae8945f82a95c3ea9c2d578574cbf2a1d0125e52dcd6c9fd67c4b379413df2f93a8d20e2930b195914bf14e164e5d9fcda3e8f7c4609f4bad1f254b5955

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a83e37fc7345fceeae13566c845aa203

    SHA1

    200fb9bde07c359389b4b29f99ccc3074b71d988

    SHA256

    f3708b012a0347b7dd31a91d066ad114faad7afa86f4c091ee7723debf277408

    SHA512

    13371185188cf9ccedf596c709e81a4df49dfcf7dd73cb21717f9175b6e7632ea6f04ba682c7789ad4521fa85a62abee15f019ef7c9e3de2430e8818084d18ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af738a2f9dc84c8cffca813f06501f81

    SHA1

    d337bb31e42b97364312298b83b7915a344cd2aa

    SHA256

    0b64192d86125597aa4fa5c3004c1b5a86e3afb0f1a5d6782bf92a3bf738155f

    SHA512

    668a588c054e456db7b9b85b9db46241f0b3706f6b9c21a391802645e93e0ee2798b2cf9920197ad7eb75d6fb465eb42a7f6633f864c20083f5e3b2f0f589d58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22d5cb7a97539110abf99c3bd3c929fc

    SHA1

    7a33819078cf4e50b8d4a15b69ee061a9c14fd56

    SHA256

    07de4c9c334a91e1d89d1665e4f99c2ad6870fb3b24a10a9c3bee9c81c963a6b

    SHA512

    957a7caba61fc28c05b8d2ab182cfe78d7a381fddd717381d5a9cd5c541941ad3ed20ff24dfaab6b98e68b1695f801cdac5b21a25fe6cb39f9be4a7f7f724e2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    57cb7c43b635ad68ae4a0fa246d222c2

    SHA1

    6fbf0c99d6dcf48f2ec5bdd749b9f30f57c22148

    SHA256

    bd7aba3828783ec2f1616df823123bb33fc4fb4cacdafa1f9dfdaab9dd8df4f5

    SHA512

    3f0f4d9fe4a3c22f671216afeca317ebc1783b56833bceac8e29faa63340837752be17b91a06d325403df67b075d3fd3293cc8a7d836e03f77c671031fc4a6d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61d565f0a4d7807a30d7db2d3124e635

    SHA1

    31461cd0586eaff625eba5cd7a0df3f42aa69a8d

    SHA256

    468be3eb574878856360743cf8cc552c6a8c815d6ee6f6123cb22ecf8649e5c2

    SHA512

    cc70fa63a01af906b58340e804b1e041bf745dce4f06be66746e3183f8a5211eb9429aaa5352f4cd94d538e33b0c7613c464c7e0ca31bc85b721df7feab2cecb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b709e8d43f9d546308eaecc373530b94

    SHA1

    9269e1815b0ac86effc1adae0c4cebf7aa4e70bd

    SHA256

    27caa057f7988dcf46c24b9ac8d742a547c3aa1d920637967c14c04393a0ceea

    SHA512

    bcbd313c4142b1cdd3441be093b1ec0c0f109ced4cb9abb69f7881bfefae28081e02c474d9dfcfbea5775cf9813fed613c432d68a3d150e0e6ef2a045b894379

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8210711f643f9fab99ead7ec4f4e19a6

    SHA1

    632bbccd8b08f5e9cd2f5133089eac9f03df8d46

    SHA256

    6a96421d5164d37d93e529f1d3239ed522dd97e55c62c8746056f8b94c85ab12

    SHA512

    e2eb12ac9e2272d5e1117f7bf6bf10b830e17ec334350632888931e922ea990461d42bc6a1eb1553d1bb05dfa113c64da90a913f5daf47d31f818f13aa166430

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0a7671a3d2000e42a9f26075f5508d06

    SHA1

    9565ce80373dc66ea8d74616b8a4513c17b74488

    SHA256

    11e89d1da8babc10d9e05073ecd48690e7928590919fe84c25f8beef66d2bda3

    SHA512

    2ede896a214f5fd60ec336c956883023c483c2d5a1f031914543f493466cbe9cd9b0c190969647b0ce1ed7334569113fcc743cfea58d68e9d511ab62551bd800

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8609ff8ac44d0947bbfaf17691f8a8e1

    SHA1

    1d38faf5ff7f08d701f3c2e2ec095179561f763d

    SHA256

    ad8c1d160d4f4aa86eb9e222f5f8f635e0f72e57c0f8dd2c950a2d94d075cb92

    SHA512

    c244d20eb0caca97041c9e5a6ebbe019bd05868cccf0e62180fecf2da79db572e23d977f4c931bac26fce468e46e59651e4dc595142aec99992a65a0cd482827

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc453262de19adb5a108e527c406fe5c

    SHA1

    429bb6e849f71388ac6acdc33c50421b8871484e

    SHA256

    c3aafd2363774b1f02b2ceb9927eae15039d6c4174670a8bf27ab5ec5ef43745

    SHA512

    a50f4a0795c6d83c6759a792bb6d1c5063674b9fe2e90c954016787ee3a97ff5378d93c1e7c7f2d025c19dbf9e03d5e8d89db2eb6004ccb5382f644e27a467f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0ce024d4c9b2f6dd2df47b7d3916bfd

    SHA1

    b82a4db9cf95c311851dd75684b7d72dd2898427

    SHA256

    3bbfc5c3696e641a5194f879ec627c3f871477e1d91125b691a0679deaa3639d

    SHA512

    15e1665ae77356b086325af193666a2ff165c6cbdc8483c2119bf4a189c2e999fd3eed504c71d8706e03b5947d9f95f17b398cffe7ef59c6936cb0f6cd358ee8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b4097c4e7a8b276e405831ed0d3f7c3

    SHA1

    2b7c85c4c38d0e39cdca7fe2e2813ee08c63bd8e

    SHA256

    5410438023b9f0b4bca5bbc6bff3ad3e9b61c1956c1d9993c3bedd23ad23944e

    SHA512

    c4910e38e93b42209b4eb28befc5a5af974350b1f25c7988f349493fb1423e1f9b07e155405dd810650aaab1e3b1d87c07a47e2d88e2f12eaca2fc2ef3860e37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5318addc29ae447c2783e5c006b4dac5

    SHA1

    e4ab25f560c4650868be1d317cdf1904ae3e3d7b

    SHA256

    1e183c471c1ac404c5e839a2924776e57125789b0f95db387c982160f7cc30fb

    SHA512

    937f8a23f3a6b844702d3d2a3d1ddd18c23801c57666ce51c7c4059e53988d8ea39312f9efdded71aed4122b2e6e32f9acb2e8421738fb0420a4b4e0a3924f07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    169edebfb3c64e6f652917d7eaa65261

    SHA1

    fa75a279f5ec7183db719655c824899128da7343

    SHA256

    baba22cfb333a187ed4c73d47fa1a9d1485458ba1ec9c81afde050136e431a44

    SHA512

    927cd055f4790068ef7687e5d7a20e008b3e427e47b999a514f99bfec9fc6cb4ce1abff46cc6e84b7f04f80a0983379d5cd90aec2cd3aed21c984d9d1adb0f05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c23dd9239a0e957830eb233b00e78a35

    SHA1

    1ff4760c87e2ecef141834ef60535e2b53386d5a

    SHA256

    2714834497d5deffd26088d7851b8f23aaf9c14b601b41ff6ffb32dbe3e0ba8e

    SHA512

    4de89e0971a5cba3743b1925a3aabcb12d2712f3ff50675d53f261dbfaeac8a093473044671ce285c7b9d33ae19618fbecf47a49d5dcbf986db45f0d17d6281d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBBF0.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBC86.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit