Overview

overview

1

Static

static

1

libquickti...8.html

windows7-x64

1

libquickti...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libquicktime_plugin.dll?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    206KB

  • MD5

    3fa5b37f8dcd1f9878f702108e2e6bc1

  • SHA1

    c9bce2a29a36d8db694bb2caeec1972a8bd5af51

  • SHA256

    e836e6b37afa4eccf8b2216f4c97f8140c6dd1ea7effec8262e8f8bf4fdf603b

  • SHA512

    dd693673922713c5b6305b7229f5eb93ac6fca88402ca32cb2aa49dd18228590c6e53a2df3e9a639e3268129720e3d069e313213a0da0dba11079ab9e5285d13

  • SSDEEP

    1536:8h/NPtbkQh6Pmym31GYQU0SAF2VMrxjcvJI/6xH5vJkVjE8B:8h/Ni+r8Rz/hcxw6vviVx

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libquicktime_plugin.dll_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2364
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2364 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2212

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    e272153b32be3015da821a94e520ffea

    SHA1

    4c7a1c98eac416073454707688811fe24e212e2f

    SHA256

    20eab0afd8348448300e12dbd77cbdf8250920e1626c8f599ed49ecd6d324832

    SHA512

    b08067dae65de365f2ab0a2b4a7aca24579c2297fb5d6240d60f04e1e20f94d004bffc44e3a02c1cd97d8adf93b0ce9af6bb50545914811779c8465b1efff395

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e3b12a216366dc1d59bd61fa618f535c

    SHA1

    f201f1555bdbad0a4a6ce1dff1a5a5bdd76e41ce

    SHA256

    5a3da3c6ace5ab6ffaa13c804741dc727a293b5203765c5932f6ac7834e3d759

    SHA512

    20d81acec36978668fe951af9e7775696995ad6192fdba6a8e4ccd2705d5c77593a8fbea8751e96fe1dfbce5219a9d3ac2fa312a3d216622e767428d8f26348e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98ce385109d2ef664f40cfabda130f89

    SHA1

    678ba1b179d38eb85102457d7149d238bd504888

    SHA256

    fd3d42b1697e221785e3be7c2b89f61d492bfb5047a9dc092e442a9eba56dfb7

    SHA512

    42ca59f47b159950e84a849d18ad94a285600d0d21662258ca967cc7c6224e45e05a148d57ecd6a23c6a1780c60a282deadeaabddaf587227fa3cce056dbb6b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b4cb1b5a3e463cf4aaf71aa00ea2b56

    SHA1

    94108b681bb50908db3b3b7177515e0f225510dc

    SHA256

    8055fb4350d48ef3f937984d94d72948fc498e99f60e411e39335cae92913c1d

    SHA512

    b88a8bda65c28ad9a9e8efeedbf53dca105bd0ff6ba80ba6306fe83fc1d9889e13d9e80365f2935d83c31852282aff5ec8e96b70dcc83a10afdea14f3f88514a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78d637b7b7aed27b8978e4eb39e14004

    SHA1

    0ef37506c592f054780b22e59ef9433298a1c5df

    SHA256

    54b2128b60c838004954afbfa44f60e5710c52019b3da3ec45e366bb47f30ef8

    SHA512

    e623b0ddb378e9cdbfaa77fd8088d85ddad48381fdb0868869cbfad60d90644879e38321a859da9c0f874c0975609f41c3df4c3a3bf4fc4e6e6f39db2ec987dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8699b5f37f7a188298de448baf96eb53

    SHA1

    55501f806c3e2fe8509506a8d7a97ec4390a157e

    SHA256

    fa6b661c583d2bf9c03b3c04deb43308d253769de7c651e16bd52bf2cb58a170

    SHA512

    45c1e392aa235c5d0883f215f12a08155601f42d57f5ee6d1170e4b440b699b12b94d4d90d7b7d07777513b4d970dbb473171da2fbe5ca9ce51971696ebf10fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c8b5df9b05b38ec23f177897ceaf6aa9

    SHA1

    03c97d68151af9e0fddc6bffa4edf92cea192d96

    SHA256

    384095bce51d2a2fd5abcf66fdee7a0f370a02a3bf34982269c778cf5b862d1e

    SHA512

    bc514ad6a4327c2190df32dae2fe3fb88f809b88a5f240c0aebff7b0c4dfa1612bc8879be0fdab2303b34dd23e5f13c5dcd1be7f3431a9a5fe6b27128f93fbff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6e741a0523bb96e45a000e01a87f9795

    SHA1

    d8d22a464e5815db9604f27dc9f908f74861a50a

    SHA256

    4ba99045d49c1fc554806fb1624fa78766633ca280a2a580c36314cbf2de1f03

    SHA512

    bc7617d0a63b4f2cee70f88cacb536d0286b22a3cf88bc5b01caa08996677a26e748a7addadf9ac915f089529549628f18cf1d39d289ebd85a7b9730b63ce773

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a20edcecd9e172f47ce94ad327d791f

    SHA1

    1aaad32092925112357e9e88bb4cc5315707466b

    SHA256

    e88a0e970f68aa4bd8e4354933cb485b1587c5f0339826c1585f3f859e235edd

    SHA512

    14fd9038d16cbf0efbdd352033651dc5bf46b564285b7d1316cf41dfa97510c97ddc8c5f8379e430ee27e80c5478c68ccc0d6e6109e74242aac2fcb7307fbf9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e174e32c743668a8f54030ccdefe73f4

    SHA1

    7f41ebe4008f06933e2598b14986c2d22f7fee17

    SHA256

    ff1ea27001d4a9bc102d177424edcca06b0ec775047a73ca91ceac82d58f3077

    SHA512

    d283690979eb5208dd8e7d1f308a7ba4a9787974817e36a6b0c4abe12afbfad87dcc28832a1d2e453ebd98ce5a0e6219c26ded63749bd88ef1317c1bab3ebef7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    801ad68651e8403732d0ff2026924958

    SHA1

    492e347f3f3ef5f8f597a563728f2be66892ed33

    SHA256

    c2f723ad011d806fd4c689eb3e5b23a02ca95c2c42cd26290c43b8077117de5d

    SHA512

    c582e9ddfbc54a95330e3a0d029c06e694926d3aa2a0c264e9c53df244407f36c89e817b5f1fd642c2bd4886e864a924d9872d9d55c0cdf6821356b9c9f6f0b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c5ab17aa4b33d83af69271580308804

    SHA1

    76c95752b221a8be8333aa9eb3e1caf8f359f4f6

    SHA256

    0be9d458878bc550e24f6197f63ebb94070a62dd196f08e994d61f2e3f8edb28

    SHA512

    a5419ea35b2f7d09e5971cac163dd02bb44a3bb7e13f8a08826bb32a9e91385fc52be4957e4c9c292269c80ef42fc3103edfba31919abaed6afa0db8f2881af9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1b870fb80598b2956b58b67e2347a02c

    SHA1

    9514f86f3c6627ec70029ca29774c70c53809a47

    SHA256

    1db0093ad5966c19f6c91cff6fa956482683f792bb6e9336f6386ca95891071e

    SHA512

    40c805ec08b9b4bb928cb6151dc4ce0ebc1a7393868d26d83ff2a772c9bb7d39159603dce3916d37d4b311fa657b9b20dc523cbb92d7dbed7ab527cb8ddcbcf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    190db00956b4667421286123597c1c55

    SHA1

    453d41c70e0a4c71293c7eaaa14b26ddf68f07f3

    SHA256

    0f86e311acb166e97dba8ce0777c5eeca6e3756b77abcce8b4219fb5846bd090

    SHA512

    8ef921dc9e1f0504cc7ad9bbde4adf8a811efa674f13dae4e6bba710e967e8046ca2e3e6b7d2c841885d2071db75e18d4e8891090128c7c5756347bcae3df18c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    136832519482461d22a3727978572c9d

    SHA1

    fd7813addc02f795764e5d256fedc555ee403f65

    SHA256

    ec97fd9a673149d077c27722dda4b125247ddd8a711a547c2af692682e70dfc2

    SHA512

    903bac9f31c642444b362a2d5514f2aef8167dbc882fd46fca96670b6223f4545aadc7c94b1ed9c62a4450c933f7b3cc3c12c4595706aa175ae1182d8c09e986

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cabea23629e6037e43c6dd4da27fcd0e

    SHA1

    722de63e5db16e1bec7b97f956fc4a2d49b9a0bb

    SHA256

    1c789064327e2ab69b575e829a0389c83abc52c5ee64b5db38008a2a7ce7d0be

    SHA512

    1c819284d333dc334357351a9d7d609ab2b24de4aa326dd852b008c6403cdac92af71dc43e24c494ce7b51d37899c7f98bb831c2fb324416bb02e575a6946de1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45c0dc99471951801bba565fc7ddcebc

    SHA1

    9c7c491bb22b0b1cd0e9b6ccea3961b6e7d4b679

    SHA256

    01d974cf39a7a504ae54322eaf5e906d85006534e0849da902da0d0ef79c65b3

    SHA512

    f418c4db30d864872b1ae5302dac9e00aac5054ee96f61ed138429b62b49154a5b47325512a62a723ff06508d492d0a312a9eb58fadd13a6a56e45d01924349f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a29f173ba1d6fd7b82e4ca0472a16eb6

    SHA1

    a9e63b37ec376ac62f9088ccbf395ea2c8d9d53c

    SHA256

    728932007beacfe767a6801972c6ea2dec76eb6f67251d488243542770083091

    SHA512

    5970861f168c645a5ca65735daf6e64e7f0ef2df7cebbcb35ca8dd9d888c2e44fbf9e0c278f874b6bc6fdaed43b7c4ee5ab0ab1d730d92129f8873f97bfee29e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6523fb507cd0c8a4c42933fc3cf38f90

    SHA1

    eac909166289ca79e57b5c8d95037fd61ca21896

    SHA256

    51729344b0b5c9a107c2aef270e3bce64fdb3216f87108c343f0443c2a9d7e04

    SHA512

    b6769ac25f847e02bcbcc310866f82e9763ccd0d179a497e490b9214839eb2c7bbfc746e43feb6e596318e6747bf5e3c2e80027ac3387c8995b801ba68c7eb2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7975333ec0d14996d790437e78460be2

    SHA1

    e76df2097c1afa6c98647b1b63f6c6f2319eb5f5

    SHA256

    1aab04e180ac3c5462e2a152e12e2bc4500fc848a35d28e7891074eb217e94e4

    SHA512

    846c49a57be4fe7d7d8ade9ae29d13d219382b280d53f2c235f0ba641700cb01e0205d28c1a7689fd31156129244210c0fde5bfd21e1f14387ce5e25adbe1636

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    f814cbca86894b980e1d529be6005ba0

    SHA1

    a9087531523badadbabbceeaa5029215c64266ef

    SHA256

    468a3a2c6c68a6271de70566a9065acd3825ba6be2588e85c2664d686c74cea8

    SHA512

    68879a679a824aea8b75f94578f576e0b45d3941edd4e50339a09b10e6aa633e0243177582fcd8b376331342f5903815c347a6fb871474eb027c1f8bb30a589f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1EC8.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2043.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit