Overview

overview

7

Static

static

7

setup.exe

windows7-x64

7

setup.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

Easy_Burning.exe

windows7-x64

7

Easy_Burning.exe

windows10-2004-x64

7

Uninst Eas...ng.exe

windows7-x64

7

Uninst Eas...ng.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

VisualISO.exe

windows7-x64

3

VisualISO.exe

windows10-2004-x64

3

cdrecord.exe

windows7-x64

7

cdrecord.exe

windows10-2004-x64

7

check_file.exe

windows7-x64

7

check_file.exe

windows10-2004-x64

7

compare.exe

windows7-x64

1

compare.exe

windows10-2004-x64

1

cygwin1.dll

windows7-x64

7

cygwin1.dll

windows10-2004-x64

7

info.html

windows7-x64

1

info.html

windows10-2004-x64

1

language.exe

windows7-x64

7

language.exe

windows10-2004-x64

7

mkisofs.exe

windows7-x64

7

mkisofs.exe

windows10-2004-x64

7

problem.pdf

windows7-x64

1

problem.pdf

windows10-2004-x64

1

sh.exe

windows7-x64

7

sh.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 21:44

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    info.html

  • Size

    471B

  • MD5

    e60bd8d5ff084d5739f28418890c0dc8

  • SHA1

    c10314d1ee9c9cc6835344784610c1a8ec4ec473

  • SHA256

    7ccef586a1398f5bd6d4842b94ab4286c16aec9dae528608df83fbfa24b67960

  • SHA512

    4b081fbc018e70953cd4c51e2eb282c9485533f31c37d69af20c7e0707963bfb8f4416898bf560ec07660a3bafc4067b0f2ddb15f00e36519bdf7445c2354fb7

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\info.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1900
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1900 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1624

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18ec908fba2899a37bfb76c652efbd6f

    SHA1

    e5165781ab38160fbe79f826eb653099201b281b

    SHA256

    e61f7b8ab9e19e4ec6183f5351d946d18b61aeae2c3f0fc6aaa703d67097272d

    SHA512

    29177f98c93466ffdaee5deb098ce750619b1b788e119db068ff2ff514de63754dd96f63877fb7233f8b516863da834836f22931e329afc7e49026f970dbd339

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    46a553bc22660401f14bdb61ea2ef3fe

    SHA1

    d7bdd1bbfcb4b9e49c2041a38f98b0bdcc6cf874

    SHA256

    52fc1c2a6ff884f7ccee8ca48ae1831b13259f30f369d6915329a887363c1dca

    SHA512

    910803dca20180330f0ce73139e8e73ed34b5d30cc42d51c6fa54db77d9aa0bc28b02ce05fc3ea79f733f7769d33ff9c09f4332ad24fd1b0263985a704582b4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d8d0579b02d74aa5f698af1e05647b6

    SHA1

    a4b9f2a8d80d1958149d5d4236d096331aa7b792

    SHA256

    0c16f34e18df1ca2499b83ec755edf68c5ec5a3f00c2f032df62c1a68ff2f77f

    SHA512

    090b66acb34f4064eff3336502d53fce22ee82369853edbffb412bf5518da301c8695a898930ca53edf693a3729539c37ba6bb13126e3743c185e1a477524d52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    de5e9d22f3c977a3bd93bcbc6f854638

    SHA1

    19fb2c273edd8f6eab99d37384b35fb5e4754961

    SHA256

    4278eacd93fcaaa838b3860cf8ee003635f35417f6c2163a3623dd598ca19ef0

    SHA512

    66e7dede7677065ea4d0564ff591d910f46840b114538087c40fd2b911239904161683f44609d58f57572cd0022fd954e266716ee9ad759f722bcc53dc063a4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb0525bcc52587f1ced1f74f48e1fa62

    SHA1

    3e672afc788b53f9251421443205e35c86695ba8

    SHA256

    194db279189a3ce12ecd647e4aeb8e1eb51b9ed2db6b3b5e083eaebbe2225d3a

    SHA512

    0e617e15a2ca9a5f9fe4d96d729f5525dec2bc1c5c42f3859b6625ccca5943697f166eb4c7f9634ea28ad0521a52424a71681135b32afe39524aba3cea401358

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    260e692dd340dd8cdd07a54a036a60f0

    SHA1

    b4ce817d84916d48945ab0f26e4d678501258f27

    SHA256

    35f0ec392ff3c9ba7d7574886a25d809c962a095ea2bf25f4324c7a45cf4004b

    SHA512

    b9036a3a1d043aa19027f9b896cfccbe316e66cd40eb602144f4fb4fb480b41120d80040e559cd80a58427fd917c2bbef6cb1f8782299be5801e3dc840cd0770

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b44bf81a052cff956cba638c7b535e7c

    SHA1

    2814742b4a3937331cfbe32c4d56cf95ffa091a9

    SHA256

    abf3b1eb48207d05b10fb04094e6000d6638c12bd369f034f7e9026bec070a73

    SHA512

    4f9e2b13a4d290b01c6b308c9cb700f17509fa0f1a7bbad38582066484b2bab08d245d3a3d62d678a52fd6e8b0810f505889821b0f3dd8e49be61438780e22b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e12529bf52bc813194e6add0f56ce88

    SHA1

    1e06f9ed28d3ac5eae7f9bcb6dfc8c11262e4ec0

    SHA256

    bbaf4f1f6ccab0a4df309f8bd0b41415cd02781af6688828c75f14e0ae1884c3

    SHA512

    2f495c5215f715e23656c6d669a436ae397d06cc8c2ddcec3213ef2c046159e715bfb8efad28a2106d9cc802e423f12b7cc2d67f7aaa334d42a83da7f5dc7d01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    651ffea62c9f65764eb144b93250e4fb

    SHA1

    9eadc6b3e4fa7eed770e60e638acefb660d0d22c

    SHA256

    bde15f481b43f496e910bb6ee77d9269fc3f2e52b7e48bf2bc9beb8c4c7f4fc5

    SHA512

    5cfea37078df90fa40645201ab18f043c4ad00b79e26bdbd210407dd0befae411768731486843bf30e86b2014f9116e7528f1a9fce6e58491f35e3546ff8b5f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b137f051c14189092c5d8120649df172

    SHA1

    f2d2fbbcc57a04007fd776c607a0529285f24fbf

    SHA256

    e5ba40bf0f27690a826e0bef08af07234fc0a3ffff2275e18df3c299a88db560

    SHA512

    d002c4985f2721b823c9a2d005288fd344ba931eb1b1d7081a047f551a5e0a53815e73951610c1da3a05a704a9fd9dab04aa14795bcc65b3b8979c683c5e3f20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    84790e9e5cb6274aa3bafe6df359f489

    SHA1

    e436fbe982d12b8a6a59880be4c9ce88f81121fd

    SHA256

    92ee4ca1c9fbacf973fa8eda36068ee300da5bbbff0481c0f5595e5c6c42746c

    SHA512

    a463a0c0b1a76cd8928a79662859d5993752f957673c55afb699597be6ffe68949fec6a022a78849598de00db329e68b25ea01c7a605854fdbdd1e2df1c426a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0aebff9ad2967807a9386802b7d8f2a

    SHA1

    57f3da1ee4b7175f75cef891958db258b65d6ed0

    SHA256

    34e63683339ac7e31e826415e3102af3144c0c0c6cdd340c70fb1798290eb20e

    SHA512

    aa0341c378763ed816efa1563d3bb43b1456aa2656f4084bbf7445f7afa7713a6438e99848cf7b425df678326fc3461881f794b9e8f7ffdc2271eccacd08c530

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e3039fd2f782be0a9b86dc1dc026d920

    SHA1

    f9e523323be98693ba3c679ab8f8d87c58530458

    SHA256

    39aa854985d0b72774c378afe2675e8ce4d4906007a8db4da8267a4204cb9e2c

    SHA512

    ce9849fe8152299b191c76a065ba7672d09420a0405c9681db64c19c1f56807f56c608e61bd9236d1c0eafd81daa29bfdbfaf4334f9d549e2473fdf3cbe4896a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96267ae56f977d4f279a4922f1a78773

    SHA1

    b9b4b1ec6dc74bea12507f5c1336c5f86bff67b9

    SHA256

    e27497745c0b2bec2e68a1a82b9003c4a169c9913092422880fff3e25d6c57b8

    SHA512

    9830816b0544b7ae5789a1fc76eeaddbdc66ab768764163d1bc17da380c8cd39abbf305a32e200f59d8554e223e82337950adc25ddd96130312d3ed32e898a75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    73f6702b178b865af668fcd0c495f46a

    SHA1

    60f562d3ec072b7dbd8f9e2dce6afcb28c5ee406

    SHA256

    146da7113841ac151d06b956e715fb715ce414cbdb40f11bb331b3d6a8d307b2

    SHA512

    2ed0c0ae890aa1a802fc49ea317233913569e1c741f3767c35053c4538e331d30e4732de8dc03af881bd5890e1293442a6cf9efcfe32adea1cd512f5891f395b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45bb429d021c5ed0309cb9a086b564b0

    SHA1

    024ee088ec1233e6597e73c16c7438b74ab4ee6f

    SHA256

    69bdf08aea6bbff2740841b968344c235c8bfe96583224cffbd46adf25d46884

    SHA512

    0b4839fc122e4a71559a01cae71fa59f5ae3e01a35746980ae9869044dfdcede3fa1f677f0be546efc61c1420d96d736e555a5c29a4a466fe502c6c948831052

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6a2ee12282c01fccdf3c8d63904bf5b

    SHA1

    9e22c005daae23b8eff4424f3eaaebe645f78da1

    SHA256

    a7a7aaa45b094d82250d9f3f3a360bd56ebef9ef93063e5c2260576a84b3bba1

    SHA512

    48db2f0a396f6e911b2b2e5b534b105c3c2df7d22d96644c2b3833d7e3917998d286e3f21b47786cbedfca9435925644f40d0f0fec1d0e89567905c184cc17bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5dca307867616439a1bf9e78a6781ec

    SHA1

    8fcb6fbb29895ee8ad011094232dc2a5ff61eea4

    SHA256

    ca9027809a703457c3c5a132e446d37fc2bcf100d2dedeadc54c7a9ca829a0e8

    SHA512

    790572a8d29cd50adda97dcf9cb2c63e28bcaf2dd05807e50f4652be16097b2da664929723fadaf9ff2f74677b606ec27928df3a317914bef7c6e13407e398bb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab544B.tmp
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5558.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5635.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit