Overview

overview

1

Static

static

1

libavforma...l.html

windows7-x64

1

libavforma...l.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 00:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libavformat_plugin.dll.html

  • Size

    7KB

  • MD5

    3d2ae627c6a19e3b0628258b86e0c5f1

  • SHA1

    cab2a9cf4c5b98fc217a86d0b1d6c7452f621b77

  • SHA256

    1544f869e4a448833a49ada9bad02d163007590c2bdd0c41d9e02c2dc4c46d3f

  • SHA512

    bb2b3eb2ecef660cbbe6a9313d28bdfcef607e9f9ae9a4f9d46ab490ac2c7e8c3d599c90f6adedd724fae89d7067125c9063f40c5fff5064e788d0b9f599f95b

  • SSDEEP

    192:ZFvTPMcMHyx10vLv/Rv/dbv/kvCOv0mXHP5BxS5v/7vST/lo3f0vvrv/jvLhvave:ZtPMcMHyx1+ZdrJmXHP5BxSxeT/2SaiN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libavformat_plugin.dll.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2648
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2648 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3016

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5681b6404e10d122ce45c43fd96f6e28

    SHA1

    b5472d3e87e61abcb5c5bb7099a57ed71bad8563

    SHA256

    b8639ff11e1abc4ef617d3687a1c008d10af0cd9c15ca99a39f00b8ac3615e0a

    SHA512

    4ad88c672ed3730e26622684e80810935bd6dd3ed8431d368a4d2319ac782e38cd229d3297c9d6210bf9a8ee09b5b50aae9f7a2c673136cb5da6a0fdb291d238

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    824b8222ba96015f344272185ac9f41e

    SHA1

    277ba13f19bb5ede155c15fc7c00dcc47ca4ee45

    SHA256

    5dbc05fb16aa47fe051a3fe4db31902cf09426d7ebab69b19ffdd814b771f8ea

    SHA512

    ce0b9a459f92623799a8f81b5296fcbb6da154ac4783ee28ba0be4b9f1dcea9b7c9dd5dfc71542c637829404b4ac48a54f198d70aafe9abe64108369b7bfbca0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a571c8c432213fbafe77e955a2cf2264

    SHA1

    514d4222d2179ea33df9db2617d28e8f512a360c

    SHA256

    bc28472a3121df6cc44913b23b319ce307cf910e1d9f676ddedefc5c6149d0de

    SHA512

    77f43e8e32bc100e0e1e8f53669512e5f799a508fd70beffd8c51e4b91920eae4d4cbde0667aa27412c3f030e802b489e7c0012714cfe65ff91da9eaba2621fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf8189ce3c552daa61b6799efc42f317

    SHA1

    8c133c490da5dae463e1a4d0f3a872ff7bb37e05

    SHA256

    dfe634d0a9a94dd86394361a76465bea3316fb6d2ead27e026cd333ea5ce23e3

    SHA512

    fcd9b283298eb5ee45e7458b7a7e8bc4b0da5aa08c831d102121f8f6adc7282d24d329c8ff9eef837556075b213b4e84afabd6515242e483df762b098f170cff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa0f3c17a9dbbe5ef851af3b00129b98

    SHA1

    befc546710447c0378ccdfaf5a7b549a5bbf4106

    SHA256

    6f4c846eca7d7705c44c1b97d8ebd9e3a6e8ef80ae819aa30851d398e7e33edc

    SHA512

    9949fc9bc4aa324470e01ef4214d93cdc4145e27851a1b9db07516783f41b0b0be19053febb663ac15416e20fa7876f15178eb2c53bb0a1480d5bd4612941448

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9e8852b4c587b923c9b74eb55661acdb

    SHA1

    6ce544495cbf72fca5e0ad80c5660d01ffb341b1

    SHA256

    646e9a0e9192f815ccf5a9e176a9a6704ccd65581427e5ea6b847fab31e8a4ab

    SHA512

    fa030afb9d3bcd2835b097651cd40104f6c7c0002efa9380a7d9987273533491faaa980a41f4cc1eab2033773d7e8288d3a5a1129a5c51413b79e2063a1a3d63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a80fa97ecaf1b635b71805ae491054c

    SHA1

    5be0b8648b1ff5279941cd2c8f8f62c71e3eaae6

    SHA256

    23e31390eb77ff15f3848ae6155a52b21d0de2f95ec4767c5e9d2f5775797929

    SHA512

    9a08a9a5b0da2254641236b95820c09fb2e9c9f9b54d5f02237a5fd1ce3527c6eeb0926b790fffbbe7ee01f2272c22081558ef9d10a6c161d24d3c1af626dba7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39f27821a0e1222f2c78d6bddf9eaf06

    SHA1

    f1eab6fdb6f81a673973a7b082e092cae08906f7

    SHA256

    d9d04710905c938b4573dc1529649622f657e192806ebf185b57b81c97defbaa

    SHA512

    86064347e9f47a769463c98d0ea1b055aaafcfab0d54d2f3b618f429b15c5731e7cda75c79cac874aadeb4c15456838977a1a8c45990700977a2b23ea74af3df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82e769578131be68c6f635aa7faa4fb8

    SHA1

    27567f966f9a7f0d37dd2a225ffb0b9edab5d64e

    SHA256

    d9d1aedd35d634c3004894ebcc1f81989a4663ba407ad9fba2b3685f028c3b46

    SHA512

    16711e5ac70999469ef29f5172569816fedc68ecbfac16bc12cbf94cb031c11e389dcead4c574963ce7220dfcc55d2b2641227fcc4de63dc4d048bdab7469d0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    41aa9fa9b2ef6275aec67248af5a30c9

    SHA1

    21b5c1204a4f3ef3c469f4f288c9a40457ab5859

    SHA256

    f9a3dbf67d3140c9ca28b8d8f88306e74d20b040bbfc97d9068cc140dd6de991

    SHA512

    efbe4f1d20770cc411d26b302aa3b2e0f4b4a26791c01198f34dddf968351b5c61904accc37590681af7fa790bad2d3960c9e74da94053f28759073a83ada551

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    409e9db42b27d1acdd037d1f869eccc5

    SHA1

    b115d30451d93a1fc36852c930f5143a1625ccd1

    SHA256

    93858a9c0bf97ac1ccfa40e850e8745d1899bc44f82a4679c483d80ea1ff9a92

    SHA512

    72e4210821221f5b06709078ceca0e1d38581c6aaaf8434506e354965b1abb5a1d1b926f82b5283d56c4502c059f978fdf151bb183397250de541fc77f87ac59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8493796d7fa47dedb4fb256247f160e

    SHA1

    33151f7e51c6b69d69a138e3dca9e121955e6dbf

    SHA256

    98ad9b3669bd4c6479e5de1afff3c09e1dde1ae85aea91c78cedacc75c4db7ed

    SHA512

    b09a1d9a0d1c022071bfd049f60c1be723d90d748121eeb4254d5e97f7d6d976d21c0ed5ab9937a2c7ad0684574b49a774d2b1d5269899fc7a10bda7fffdc0e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44a0879fd5e15afbd2a623f4bfb8479e

    SHA1

    5d192675b6a43f52c41e412f10b30e02f7d6a34f

    SHA256

    753b6c36d36234bfed5589a5feb9970b1fbf4fbad8264c82fb88a6b4844a53fe

    SHA512

    5e74a77175e75f0151d97eb46b5c7d66507693e863a9ab0ee3f4d47d8992901334e0d4eabbe477aa64265ca15fd188955f3658a371b0134609167deaf37f7fbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    341723d65276b43ce1c7fc3d167be728

    SHA1

    c08d33175804b4b475718c279e8a0801e1b92762

    SHA256

    22b0d6fd885dae3c6245d9c649b8a930911c21e6975b640a0d9260ae344c6143

    SHA512

    6c22a0566768a2de230cb725ba20997fc6e4352815daf630c985b333bcd663bf00bdcc0e1f3fcd76cf382bfcaae4735df3ad2b77edb988089b84c0f95a78ac09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    587140f92cb5ba778452d671259854c0

    SHA1

    26d6bd2eaccf19828adbdb85993518352063391e

    SHA256

    6de2462a3dae0227841cf229128629024b8d660adba0e48cf4234742e2429826

    SHA512

    6f62457a7ae4dbafd7454192e462720c4913ed3793bf28f46697561e219c05059db41cfd185d57a38c4ebef1210e527fe2c519db9773214e055853d892470a6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78031d8d0e7e61c77b04f52a214956a7

    SHA1

    d691191451e37c2bf116b4520ada20da432aab5f

    SHA256

    3cdda0f90ec0aaa52f447e75780fd9564b7fc4451ee2c5e28cda31486941a2db

    SHA512

    1e615466706320e631bfb29a8924bb45ba48c47dc86c30be88224526b55277d7fc277875cbf07700658c94ae9769888586c24375a959cff40d84616da13ed28f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e195c1ee2d91a69a796ba937982077bf

    SHA1

    ea1946ec635b16dba0dbc0a988b599fecf0ea4e1

    SHA256

    118a32616e4053360c26d7f91dff7d4bccc77e023f03e2002815e4c97ede3c73

    SHA512

    f30b7ec78768adfd4d198335f461827ce404125fa751cf27cc00d30ce418b1ea6e86c416add41ad3e4e697b4c5295db410e0167c8d60574103a0f130c3c54816

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c9089b2afe8f960231bdc252a9cabdb7

    SHA1

    6e2c086837c11671a402fedc7aa13139e7b9213d

    SHA256

    1de0c1ae3494a7f12605e9a2743cdbbd8e06d991f80d23415708b07bf4d8553c

    SHA512

    26248a3e1e5fdc7bbff8cb9ac52dde98e4b432c6f260f6dcd5b1f1fcc91809a8140234a2ff1f16f4c4430c4a76798180abab334782628e8a3c756a5ad1efa0ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0d322c6baa11f02aef307afac824177

    SHA1

    799f2b747f60f41aa8ca5f4f669cfc3794eaef46

    SHA256

    1b2b1281fdff2d5f5e3fc27edca0c54b66e4c0248b0e15853f6614ab2f3adb3b

    SHA512

    3e7428b4cdb835b2759d5ca89ce005e17e7be629b569d5e29383457a9bcb882ea114501e95b9fe9a7c9925eb57699abedb4ca088fd444a72a3603fb8a803adf7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBBC2.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBD70.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit