Overview

overview

1

Static

static

1

libbda_plu...8.html

windows7-x64

1

libbda_plu...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    libbda_plugin.dll.svn-base?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    7KB

  • MD5

    bfff01d66f0886ab4b54b2b6204b6d92

  • SHA1

    e5129587f3360010345de9649d20fa33de149e13

  • SHA256

    71fd41e17a6e64b458ecc2627ed33c6ecf9f93bce6a17eb801576189c0777bdd

  • SHA512

    af08fee3f6dfb4ea72dfcdc2e0e3b5cb32871f507ec526224763b8366e3158a81e6d6c22c0efd2e2008c9fbc432b1f78954235cad57946c1e232cb22e4bd06ba

  • SSDEEP

    192:ZUvTPMcMHyxvCvPviSvCvChvMXLvLv5B/lo38vsvVvRvlvdvVvYUQE8uI:ZEPMcMHy1LXn/HE8uI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libbda_plugin.dll.svn-base_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2792

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c8754cf62b95f054d69495d2eba0fbdf

          SHA1

          7ee4514ff9d08c06779ed25178736c19b60b3f64

          SHA256

          0e9af346779ac707f5aba679e6a9bfe0a15ffcffacd023de0896ae13b162f90a

          SHA512

          1c5f76b9a17f26adf4d4fa04a86fab1ecd4657c61011532ae8157bd36cf83564f7c0c182fd7b65b31dc16ca4f8e329190ebd84ae8f8770db2caaaf02c66bd93d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          af25d0a4711ee830d4fc7d7b9595e398

          SHA1

          e7a1d068d1eb4eda59426f529358fb07d8e51fc1

          SHA256

          c3aef157aff7c715981dca651539d4767d6968d40633c4794bb596f1c57716a7

          SHA512

          745be3a740ac8b26efc43ffd3d7c733d9533dd34831c72a33c8156b06545138874c842881b4683825dc4af49214ab028a718f6d439ccb0d083802a1d5dfc86f0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8130ea3ddf36bb15aefcb80345aebf79

          SHA1

          1c19bac5903a3aaf1df2a70ebd56b48734158d19

          SHA256

          be1b30dcff777ae2926231b05e34da92e676c73e20743fad1df5d04b81346de7

          SHA512

          9dd0ecf970d9e3b19b9ca98e08ad11d2896fc79d2ebba14ee4d8f0c7dabf6dab218daad763a1ed1ff77cde5d9d0c3bccf597df71ebcb172423aec2b3732d20a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8f652986bbc8ddcccf3e5c4053c72ae7

          SHA1

          22af6d8860875d39f7a064ea6d8a6232a6867bed

          SHA256

          d06980ad7c86d056e974457cb6aaa58524b47f813df35f9ffa19c12085ef53d3

          SHA512

          ee27c69521583b6180cc33ddc5ab15dca1307bb0904e84109e24c88ec111bde6f5aea5d215376f69834c83529efe0066d8e6ee36866b2db2e00ab04b67a5368f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7796a3af0f00b791924f280c512de16e

          SHA1

          f1b610918d1a46f948a5858787fb234cd4e9186c

          SHA256

          46c79544a08eff1f8fcaeba1ac0049957287271d675ab2d8c7b5a833efb6fea6

          SHA512

          247802c1579185812f10a018ebd17bba23322aa28560063cfe0a349a939a9c1c8158684783a470ca94b183c197e09584bdf6aa388c192b2b78bf5e9abcbdc549

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e6aea328c4a4b3bf48ce6e25ba0f5f4e

          SHA1

          d9ead46dac3650a57305b32a10f5c19fcf990def

          SHA256

          074c2b3204eb18a910ff6fd13eee3db4acd9744ef2b35f90d0bdd76a3a2ae8da

          SHA512

          f00eca39abe57c416f81bb32021f906f7557cb4cf9cf9780fceb9c0f2882b64db901c82ec08ce7b1ac2bb71472cf8284a3bbdfca3c53d1647cf6137e984b154f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4331464d864b4c5550161212f0ed24a9

          SHA1

          bdf0f9fef45c605f182d9876cfdfd767725db1ea

          SHA256

          e4c298ae38bcd23f712d1627fb7f2bf3808a401bf1e8f197ade17bce5ea84088

          SHA512

          c6d4e49f541152d2a3d576e36e297fefbe8cb0cd80e6ab2ddac50b60ae71b2b0f9853021d404c0ae720c5fd32c8063be5d3f2fae484ff4a325a5edc04023365c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          beb82f71b06ff1ee8a6d2d6bcc50dce5

          SHA1

          b03d4a02cc7a11283e1e92ff44254c952e7b8e30

          SHA256

          baa1f2ae477af5dcde1b9be57df3e3533782fd2ab167c5682324157e9a0ef02a

          SHA512

          b04cfe98de1af437c731da21dd654361ab2570276316c3f7808a80c24e942132d8f28b37e8821abb776ea17aa4d5ead99ca4874f51dc3cad13fb11f1664e4024

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8fe79633bf8959555ef00207d4c32ae8

          SHA1

          a5a03a8c1e090d87462d35beba68978619d0091d

          SHA256

          12e00ccfe044dbeac21f8278e6e32c462ac2eaf9e0c0c75fceb94164a1470b97

          SHA512

          091c9ddc0d72fd60781c23a344c8abe13280570f941fb9c74a3411cb9b892e2f3524ee8cdcdf6107c433ec74ddbc9969b5f51d7e28a1c246f43683d6d7f06216

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8479032f44575b0a6b197375d6a9ca01

          SHA1

          9a9eb6fa0938ef004045ac827fb2cc3359487741

          SHA256

          50d18e8fabe4d6aec32c66984a025bd5876e4b40bfe57f144722965eb8a3c208

          SHA512

          b44d5fca9c406a15bec68184aab2266d14005201a01f4d3cc3567397104da7a8f1affec5acbe13f2a3d3b5d987f0e086244c7dd0a4565f8b5d840e49874ce830

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cb8891ce4eade5345ff528d5c9fb7b69

          SHA1

          b4a2d97c3c9845589decec408f83cb35c89545e6

          SHA256

          b0a0af7b47319900abc3b31a188badfc6d28058195b2f00384d0aac8f1ab9d2b

          SHA512

          2e620eeb34b04c6678669f9c734db54ce54af7156bb528adde759c210642a31d334088be1600c101516bbef5a1623db8b27ee5a7f9c24a8b565a75834e1eebc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fca7d1f670762cd475c4ddcfd7050ff1

          SHA1

          e570b587fd1398ff5c7403f41e28eac2b523fdba

          SHA256

          e6b3586c10127244f3d18a7117d812783ddf1e6b533932cbd7a55e04fdfe654b

          SHA512

          3fac7519af4ff988c14d01e71cafb719b8f0e40d7f73e844011b8c5183b7f624552260c716814c0b057e5c2eb30b37bfdd7025776837e63484458b4ae0d0d424

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f60e058eeb8b81126e9f0005157a69ac

          SHA1

          76030b130c7b5d83e394dd16b0b0772f0bc8d702

          SHA256

          a0bd2e2ad1447662529afb3e6a1b1020b762d841f7a18fd5346ec2c69f28fc15

          SHA512

          0689af28eb0a040699f1aeba96c4274677f8a91105778f8c58c525cc5a423c98584ef7a573829fc168def00ca9a273c8a9351db8e82c36d8d90c9c24e4c85540

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f6da373fe1c5736311db402f3a90019f

          SHA1

          d38a67e18e88d87fafd4833f774727fb421ac977

          SHA256

          7bfe246118799c77091b1d8068c233155e7427d32ee85f6ae431520ead2a4e80

          SHA512

          b16d4944ed3e45e74412182e29e77e04ce211623085cd36b93c2978a95eee5ba3b2e15b2130a231cbe9b6589077eb8498b4c34613de77f225b584c464b3b327e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2bf522c5c38ea11f6ba6978b58df7ae4

          SHA1

          2233753242ea70dd71786b6ef1d5b9ddafb18279

          SHA256

          d9c572948300b51ed45e7e7cce29558f78b8f10b2230fc437ad65d55f674bff4

          SHA512

          1b513b0f970eb0062fc86ad8af3d77cf836d0a7950ae202b5ae12eb7ba455340477b43e7b7fc213fbfe266cad10ac6456e8f5e3a74d4db7851854a1d90cf1343

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          edfed245f734886259e230593db33edb

          SHA1

          ee38ce80d6f4ce73853879b987456bbe76d63bd7

          SHA256

          0cacb48cbad88016b66b02b3fa0696ed3b660dbbd8a9cf23b25cb7b6a5565287

          SHA512

          444019cc230049f10086714305b244d96f7b148ae6670ab02af5a1fab16d143bfcce8bc4e91a0282d20a71742bddc812b15ce7c838da5ee988c646a57344eb01

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c0866e3afb2f0dd74cdac6226e82c950

          SHA1

          672f23cc5bc7d6f941d19bcd896fbb4cd075c48d

          SHA256

          656d81f67f08960f80c0d2a40964c760bbad38395efad9d82e5c291ad0b1d276

          SHA512

          2fe18930ac63c15cfc1cc1e304b997f21985b05dde2eb3afb5b3cd46cfa84a6ba8a5a71dd18880c6895869ce4180ffb75f0972b142164568b14a0d4b66d77786

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ee60f82fa1ceefae3743ca97016d27cb

          SHA1

          ec464211cabed3c6db801cf174d00c7453c95b3f

          SHA256

          286f7f3783a76a5748bc5a3463320fe3188cd2521161f4c40a7bfc4bdcfa83cc

          SHA512

          4b349e3b26e7834a74d23df58481384b64f163ee539d070af71be4b5ca8a0ffa97bc3ad73cb38d337e0d466cd554777ac38d509ead12cc6d280099674fe55c4c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7f2181f0598d9e935c8ff8437d3a692b

          SHA1

          4c43b94f78493523749c56c78366e371f7336343

          SHA256

          7b81cc309d5f27c20915c50045ed6da29a7c31c716366b2abc228b0a49e5f82a

          SHA512

          90f9e7d3ecd460b79a96a65c6364767eeef560dbcc1d1fc80eb415d66554ee4dbda600f1095c4822ef025963f73bc2043cc185169c98f88cd0ffd396af522b70

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab5774.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab5823.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar5857.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit