Overview

overview

1

Static

static

1

libts_plug...8.html

windows7-x64

1

libts_plug...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:54

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    libts_plugin.dll?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    784KB

  • MD5

    7c9be2f6f6da142eff3e1f7ef6390f75

  • SHA1

    7089b028981ac024e52625c141ee3d3df4a5a6c9

  • SHA256

    1c72c5dc7ec1c232a2eca4de1b5016a611d31ede690028de82e354ca5687c875

  • SHA512

    defd40288fe6cd97d2f78f64326fd0ce169f62cfc17f399eb3d4831bd6ea9682ee732cb10d743d5dd21e64959f2078d0394702182c93033c4e5b403ee0371996

  • SSDEEP

    6144:lR9FCNE8+M8eowAPQ9Yk/sIFA5n9AM37HVfSavMBE5wuiO:nONE8+M8eowAPs3sIFURfSYOEbiO

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libts_plugin.dll_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2204
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2204 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2612

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          11a8cac2b2f890958f68f8a5cada2f62

          SHA1

          9f1facb8f5972659e39a9c96e18fd6c226bf2eb2

          SHA256

          63a0b9eed9d904145a101686b8d8c89bfd168e47034f77c906ea0c40b7a39afa

          SHA512

          06d06580224f0e31230f1e945bbf9a1b70276d7dde809969cf4d084dc2e05ff6bf0be4178c190a14d6bbc358e74343abb2dc531f0034fba838c22bb8099b28df

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7de894afc06eac529dafddc1503670d8

          SHA1

          bf36ccf83509458f7a9e66d3cd1992ae6bf74d64

          SHA256

          febab479919adb9ce864f074d254607d96552b9e168d44e725be21f399ea9369

          SHA512

          5023e40fdc31de251b6f94e81ee5ba932bc8124430d0decee211efb8cfe39b23fa3a75a5a97274c3c2a86c1251b951a5547365dd2a11ddf5c9aa422ce555dd01

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5b905916e0d4a244c601c96c0de399be

          SHA1

          152392135b46c1f82a298647d8f045942706fbfa

          SHA256

          97433ae171e10f32e1ba5138ee12ddab531b26b9dae01c32dcf5ed4558cf3f5c

          SHA512

          91f3264adbc45f6632ea7f84e8c98bf9eb16b79c3ab10f280a221ec0c50365f67c873ad0df8b3e0c7355ee3bbb63b70007cadfd2dc52c29ca8f0119bd2eda89b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e119102104309b86807c203e26472268

          SHA1

          082e9455c83292017706b0ecb76979d03bd47126

          SHA256

          2fee777e41befd286c355106c471962c71a372ff9a77dabda7959aeb41fbf6d2

          SHA512

          0bafad5e4b6f977b94fdc7679dc7d0a87e26cd13caa586a38e04842711b918b233e730596e147849aff18fec764bcb1ab3b6f994a022630b65c1b0b469895402

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2c93b620cd8d40680c25add796a75342

          SHA1

          956f71ca6a12e99625bac9ebb9a0d4e96c1936ef

          SHA256

          1e8618ac362c9851425ba7e8df51e1a5756ee2ed5499608322ff19b73e04be61

          SHA512

          f6af07751dbd9570f212c0a55cb69b9bc637ec4ee4559274f22b303ff25a34f5c405f725839ba70818d6190dd8d2ad55fd9b110a945e50e0d15a17e1458fffb7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          29ef3068280c86f8293edc9654a7dc42

          SHA1

          13dbb916cf6bcdef376c4d6a69acc226c5b88914

          SHA256

          08c52f892e083fa2d0afbddb2e61721722676cab11f0ca7d26de2fb024c0211f

          SHA512

          bc5f6e7f00717fa7b18d26716ee5edbfbf3b186742067574a6eac7603d47d8b0901267a2dac8d01c422ad9e410e378487312293c8cf4323d180a8e3a1ad3f489

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3855746844eb620cc03d0c58816f813f

          SHA1

          d90f35ca6b5d58e1a791521a37346c7108b0b66f

          SHA256

          a724c85e3de5b16e8c32740f0f273f76c3ed9be3cc799b4b706d8d8c24114a95

          SHA512

          44b4af5d8f59b53c2e8ac077e8515fd93c7b97da19ecc44d0b8f755f373450b961911d58dceb13dec64002b288e2a4882f3fa29646f6b4d982cfc747e7669d5e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b904f8edd36d33a0c5bda1e0ddbc901f

          SHA1

          645e88b7c9688c11ca523c5a04389afbeef0d75e

          SHA256

          606116f5a082b7cf42239364f201e7dadaef59fc7f3599914e28a943fd74e812

          SHA512

          0fb3bc3d08ff01e89f86360820fe7c4f3c4dd574e0d9650204c122e13f5603384d0acee686dfd709be44b41f1e229ead7d1b9aa0b19bac44d3b5a81f514bceee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e020b69935ca0a55022c497d55f71bbe

          SHA1

          3d72a1ad8cd4df3aee2044b843171fb056772b8b

          SHA256

          461c65ffd68bb0427eaf90fad4582a01651cfebecf74d26fd3163a3d9166c872

          SHA512

          c8b1574c5f7e04260cf8aba725860e9dbc0b3a55011e2c75278c33d1219595b10ffa38ce6a80d334c6e8a3787d9749e2ee6924d018b277e002447a86defefaaa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4c7a3fba86e9b3187beac418c77c8d15

          SHA1

          ca1da330dfc16a402931464a4036180493336d58

          SHA256

          98804de95e0aa47bc116cbd6f4dc019c8f791bd51b7e0907fedb5e2582de667a

          SHA512

          ec0a72d8b0dc88314ecc880829f3ba1a0a95eb34a250855341659a4c4a937a683a9e468780eaf73cc0c8d71622caecb19e8cf9bd3d877eb7824c1b0ac56e8f58

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          caa9dad51b8d26b78f6b9c41a949ca41

          SHA1

          6349f381a3e7b6be81bcb1207b4acb0fe4253d3e

          SHA256

          839bafb88f9009d36c3bbd500ce7c794aa1a4d5f5e7bac09f2489090928e175e

          SHA512

          a992708a8925e7f6e115dea3a47e24b63c4d841bb9dcadb329ec25889017f24aa9b9ca47f882e15699d7a5af79a99cc137a5a771b43b4eae7a9138df5c6a2465

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5f485b4c07c49e1e56ab0ecbf651ce1e

          SHA1

          ce0184284ddcd62540898d96113f28f42f5ff2f8

          SHA256

          865e362612ae81748a245508a1d6a715e30dc6de8a193bcb50d777e49043a2d2

          SHA512

          9ac85aed202981e39573fa8056e22181e93a2c1929772bedd3e4fd2a7ec353e8013dc48f28e04021e710dd7b97485c420b41f51880ea76b672990f1a6a51a0d5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          68d3b281b406b3ecff2a267664946cdb

          SHA1

          56826910a3ded5ad53454788fb632ee33989833c

          SHA256

          cbc69a52beceb35f1c2984159908b56b17fd5293277c78f9d485dc904067c78c

          SHA512

          6a7549d94fbf9e6de1ee32be2c7ae381d7260b20297f6161ccbd40b8af3884c1144de1ddfa8865bdc86d9d3ada044e4e227e1b19b1c30a3cd78683e3b9fab5ae

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b1f9c68deb64d29cb0b4c8776687d95a

          SHA1

          7916060f25244c79fb1b816fbdee253578ac136d

          SHA256

          5ba5cbf6a368385bbbb74006d0b4024421b7ae60b9b083e2441767e9070ba5d9

          SHA512

          ff644037a7a5c17b6e77a0447ccda2febc6c5362b10c0231b77f4ba8a866d63446fbb8a58949b253ef225de8a1a6b34beea23e22c7530dafd8424d91fd400a91

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          36e5c85b3a96970e8e01d96309a34870

          SHA1

          8922d8166d1a98e9a8268a25f92122c231739044

          SHA256

          f4185ca423255e210be9e2b6f5b5fa327b997097468ae467bfc97f7a68029ec7

          SHA512

          bdc83fe483885ae6a022433ed444e66ed65cfa5b0ad84905d940a646406ef77b1fa21717b8389f4591d2e6742dd00599759c64022262e5d73669d9ac83195017

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a5186e8bba6a08ae6178fe663b2d8391

          SHA1

          f9e9ec61cc3e301d27ab86b0cc93e30ff7acfc42

          SHA256

          0ca363db6884defd7ab836e401c3b4d99a8f759a18db2bbbbd00ce2903c7fbad

          SHA512

          805803d9dcc9ecca5313df1de8aed283626f4d7d3b3913633d554ac8b6176783efb35ca8e2be1e8b1f5875f75170adc43718e305ad2af1d112b087860fdb0721

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          034a8396ae950706c98f8ed6d0319e20

          SHA1

          241f3ac75fda94bb23493aa1b42e509555c76039

          SHA256

          d3e6deb2dd09b67034345ab9c5d4de844a1bfe1584e37349dae99b7fc02cc48a

          SHA512

          accdc85b544b148f24b7d155f7ace002872ac09d90ba9612c68224d63c2a06806579dd6ff5cd256ad1b2ebf7f460780bd2d82aa38086fadbe8be9532f8bd51fa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          83acc6132b8517ad41d297fb80590d8d

          SHA1

          d41834c13fd03c4a3228c80630202d1ed0fc5cf9

          SHA256

          b235c6e0746d2e36679df531c8544b67861f252d90c31b4b118123f31b964bf7

          SHA512

          7f91a913bb7cf4688f05ade24a3e9ee6c8ed61188b001aa9e2610643dced0a033ae7ce27683190b446ebf276693f1895b73ca0e21a9dbf7007047efb1d41536e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          57c4c1ed9ef0bc2d865391619f5c18b6

          SHA1

          fc8830fde48a63a267c366f01b278dde3737e47e

          SHA256

          851add92fd1793e760a556ec0b8d395ae855d7ad00a1946726cc6797ae7a03e1

          SHA512

          5459edc350702d087c251cf616bd0050f92850545989b4590f179b57f522b2a776d1380b8add7c53a4c253b3a642cb822d99768b7ef2b2cdce83ae6c9d1ba071

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab45D9.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab46E5.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar46F9.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit