Overview

overview

1

Static

static

1

libexport_...0.html

windows7-x64

1

libexport_...0.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libexport_plugin.dll.svn-base?id=3053a167982e379b031fe9fbe2a1d57c23026a90.html

  • Size

    7KB

  • MD5

    5e8a4346a56401213dd22f3286edcf8f

  • SHA1

    ee3837c4c89d21464b2088e754332f456829a2fc

  • SHA256

    195c2e8873addc9f984976ebf54aac22043978e8c90cc6743a2ebe3e4e6bf21b

  • SHA512

    75486c7aa20f87711f643d119a1c9e63ececc3ed713168f841d2264f9c4602e00afe2a98dd2c91f0d49e746926b1dc46ff5d7f91a48c98db3776dacc91797444

  • SSDEEP

    192:ZVvTPMcMHyx1kvbv/hv/dLv/0vC+v0mXHP5BxU3v/5vST/lo3fkvv7v/zvSvKv6R:Z9PMcMHyx1OJd7pmXHP5BxUXcT/2y8HN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libexport_plugin.dll.svn-base_id=3053a167982e379b031fe9fbe2a1d57c23026a90.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1772
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1772 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2496

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a65079e43aa123812f3e7d332b023f17

    SHA1

    890b21a8f48558c9050ddfb276d410a2dd6506b4

    SHA256

    8c1a61c8426b8ca35fd3c7511f5abb35ccc77f73f9ed252ab55acd829c49eab0

    SHA512

    e68cee317123f9d323081b73daaf7833b955f28f7a4ee2a2b211d6225a444f909e81a280fcabbbd2c796df45c4cfdb40d4ce8ae3eb7201ec1868e8c533a1510c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d52fe50bede5a5b1bb4305d0dd54cc48

    SHA1

    e2ce6625111a2b2cbe8a719bfa0aa5da2e8833a4

    SHA256

    e5aecf35b4772dbbdd9e21a6ce47999e3c14d450949d19e77a39dcdaf296e0b5

    SHA512

    93a97377715e04e3ea3696c2c9adb4c7e30b34efb87e44217c735aa335d07ddca7a18e0d9e01f0c7079d0e16853180664b394b05d6a5a08896968967be7fbe3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8ea30b631adb18e99d7154d4b465a3b4

    SHA1

    aace4914bfc5a10803f861df5654122bbd851668

    SHA256

    edd0961f337391c8ee205876b6698516973e5b61712a766a5a358b0c825280f5

    SHA512

    5530f060cfacb9c84c9d6833d9aca3513245bf1be046773ba74ace8cb5481fcbe0d20a3adf378e9924fec6fd677360ba1888425677fe4c360f811d5b016f43bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2697565dd75d230ae5f7ca37221acc82

    SHA1

    e0d759007b72c5cd9762a9e759add41c110723dd

    SHA256

    3c89008f8729e9cb95233339b29481fc75581a54914816c87bd0d4daf27ae191

    SHA512

    a44550a82a9e61d080ff329e1c5a5e3c53d765e2d2bca92c15240a6acfefd00c4c26262a87353a860d737e8d734e441ff442a7cae73202c417738d2513e4d9db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e43b928ea675490e1a6d835385d5dc0

    SHA1

    aa489e6dec5c3e05db2ff9b4769bfd8d9a7b644f

    SHA256

    e80037bc0b491e6c8b691c81ba665e50bd2d46faae8a51831d0f3a066b894882

    SHA512

    11355583e08b032cb6e3bc0000377b9ba0439d36a3d719bb2a860e686d8fe244e8991a916b2829d76a8b09b89c2c2ee9cd749f3ed5e5f2cac040da757e4e6995

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    25cff2eeab1b61bef69c2110b11a7d49

    SHA1

    68c813f8c586d6c1d39350f0459b2c40f45c6dbe

    SHA256

    f6d5a8b65e9055eb904e083b352762382b6c428ee9a97c5097e6c712ea5ca7ac

    SHA512

    73f7b4dce22bcbe39e04328ef6ed689aee4eaa35d95b24f231dd8f20884621e65eeddb9457e219afa519e04878ae2f1bd00461378bd77f4bcb0fff99014155be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    07563e2eee2ce50c9844201407184651

    SHA1

    6f223bb77e2689b742ecc693e74bc079681d3058

    SHA256

    c589725f91df9b4e8ad15249a05f8d8b18270f529d325ae05547e19444ae2984

    SHA512

    8066a5da7520243cab509edb9b692b0b5c8dd74711685521221fb6da952eb021711253074ce87c07f8ad3e122a48d0723ab100c6787d36b99d03f102ab93a91b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    92aa07a882f2590d373338b632cf7d57

    SHA1

    da9b5cc8bd238d67e976388b0f84511b50a432f4

    SHA256

    231ac152fce0126ff5823fb35ed6cbbb3639f5838999262ef0e3b2e40ab2d9f7

    SHA512

    11254e8d6132bd298b8c98d393f627574708addba63ca5fe395253e9f6c45f111e912604e094c4908effe285a96d6319f4a6595adda8444b2ae8afe28ea61f7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d92652eb3f01cff92f8edc4ecb389a4e

    SHA1

    664e0dd014dbb45c38fd3ae3c8600d02fc6457cb

    SHA256

    20fbfc690f82511e2832e3d372b070140b9e23f7c9bfb584586f0dd9e1dd349d

    SHA512

    bb4ba371667f07c7a9e8a74dab6975ee34520b2cec2641ad9aee2ac4e4097a9bd5e2f18438b4009525a76d51e956887e9daa76e209435c863e7fac1113ea3eac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    661f127e9119ca9db11d424fdd567ba4

    SHA1

    ac2a5bdd2d3d9b8f32e4b5accbf410244a7d929f

    SHA256

    b13d384abf1fcf0891d3e16068151be30499a997bbe80878e6aa3167a9a4e0cd

    SHA512

    df367eb4c322f23d26161221cfddf43cdcfba3c81588dc4de7fe8b1d8758640f7a09f1fbef110b7cbd42ed007ed765d759dbe60f7162fc5d6a7346f0d8e78da5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0727cfbdc0e5f9ab0d7db17de5bf4fe

    SHA1

    cdeea4b10aa70dfd7d2ca1d24c81a87a7862caf8

    SHA256

    36aa494280a22b9408289290e847bfe0fe39cc2b1468c76d80c9040e29bc5a06

    SHA512

    cd5b8b7f58a414280bbe8a511dfb9092378a31ce6e78ee80a97bcb62cca87b76cd54cd1b3df64b67a7ff70cc3a17e6ed3a12bea62e00c5eaa0eca542ae691a12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eec2b98d9e3eed7970e07e843d221ada

    SHA1

    ae872028df37922f3134dc0f6450c08c59170b5e

    SHA256

    2950e17e60dcbdbc1ab9a9e2eff6e365d7a9c82d501ee7b33da2a01d763bd54b

    SHA512

    37c4666e58dda4a8a4418bc6dbf2ec00bb50e337b512330064016bc2fc76dd995ac16b056653d2a0f6980fca73ae67adcea5ecc916052ca6a6fe134d32664f68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    49b42c7d8a2e980e02efc91d03b54e5e

    SHA1

    00e25f7af0e368160a798e9901301633760bec56

    SHA256

    dd95a6b41d89393418010dfc2a78940769f3a40b6ae562e06c1776b0caaaef75

    SHA512

    7c7f2d4927d7a7d010c63bdb7f6344f101c6a09326ee7206b6e03fe436de8688545d3df3237556c74fd961e3c28a615841e8203d8b6a59db3050ada0391cb99b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    873fa54139a40df28211faa233d7962d

    SHA1

    b62b911ea2526534aecc5a34ab6503744026d882

    SHA256

    ca093462eb07b9fb633991db17294dc47b685d6b5afe09fa0f2ba4b74e070661

    SHA512

    4666d7d714eb78538216f8c05eea8e9d660664120879165c6d4a4bd188543ef4a014457883c43dd153a998a67034e89a78250d6dba10b2d245349f75fbe9b270

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    589b0a5e1bdbd1d9dd3e587c28b49581

    SHA1

    5288a49e5d36f0d76a2f8ce84660b62ee1c467bf

    SHA256

    e93a114ae381fe1ce6a222a258561bc77823ea12d735d747cb9b353ca6b60bc2

    SHA512

    97090289a14f2f8dfd2c4f4ce68a970b2b1b5b9802e87655fe3878079c0d5df874a3ea8bb3a2557ed70c63690411a5829890703d5cd778cf78660dd6ec606e41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f1a8a50f2d4cf2534ee2f01b95a16f35

    SHA1

    ed2daf04053e05aa7df0d3467c667c4be9786166

    SHA256

    4dc1297531b77f0753e82f7c6e73f0b2bd011531f94d0a0a76e16e9dd10e57b3

    SHA512

    84a5dda199d801bd4b4c0a038e40b48431bf3d6b9c968325a3ec151e1fff6e984df1903b0e91c5107c7a467dd403bc54cf54d871fbd02d77590d817032a12985

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24a4dcc7bd6222487c63e19197a1caaa

    SHA1

    c1d5298e095ebd0e938a5602dfa1658f032cadde

    SHA256

    7129ca4297e2188ee7d08477538097284d51223503b4499930d251abd92ffb31

    SHA512

    7c941a694c86ec8e413e70cda783b8b2aae10d7d1562f87d66ce7eb0ff5a40149552e8d4f653b7689b145aaa36583698ffce735c0f61b6f8ca399fc73febbaa9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2b4a8624a33dcdf7eab3ec82d7de8614

    SHA1

    7c61efaa38c6d4940680b7b6627b2781052cbe13

    SHA256

    ab06abae2078fa000ba26ed317b1628f4341a157fd72f8e31766278171e34a6a

    SHA512

    5df0ae7dfc84291ad24df7e5c116e3fa91811423e331377e0d3e8c71e82a4f66c941ea0ec6e4948218a93822955573de468191222df81fe39f5f2eb46db83659

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34201bee4a9c5be3069bbbf940feac1d

    SHA1

    14c7000837a85ea5f73a19ca1a71e9323d797a65

    SHA256

    98523752cf8685959b60dc5df9f5edb525a444516f07fe5ddd7bab3a2a55e594

    SHA512

    b87089430d86136de06a85784a954758e37177395fc68884a60ce042fd1cb4187260a1ae9d6c547c5e52ce7f1465c4d3e9decb1632d5cdbe9055b7de5ec06e7a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab714C.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar723D.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit