Overview

overview

1

Static

static

1

libinvmem_...l.html

windows7-x64

1

libinvmem_...l.html

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18-04-2024 00:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libinvmem_plugin.dll.html

  • Size

    7KB

  • MD5

    7f13aba558decb7d0d00d3fdbfc20519

  • SHA1

    cbc62b3448549688dcc1ad37af8ee665cb4fed0d

  • SHA256

    b505e236eccf799aa011d1aacc6e018f11fba7ac7b0ecfdc2edb3f0ceb65e585

  • SHA512

    e77b980cf1bbaeb2dc9159d262c033526340d53dfb614ddcce46c1b5a96ea7726805e38012b5fbc424b545cd06a360dbe414e6e3ee722e212d7193a6a553384e

  • SSDEEP

    192:ZZvTPMcMHyx1Uvvv/Fv/d/v/EvCev0mXHP5BxStv/fvST/lo3fUvvPv/HvLVvKvS:ZZPMcMHyx1+NdP5mXHP5BxSFiT/2SKyN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libinvmem_plugin.dll.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1152
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1152 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2232

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af74e433d0a02b1090f7ab5986576535

    SHA1

    79e1cdbee7398213a402fac915751359455764fa

    SHA256

    b1e339e72725c46eb12173ad274aadc293effa766a74f7f252e334ca24f668d8

    SHA512

    7fd4bcbf159c69a471a91108c3d31a6116d016dd2377fa0c49a3c98df19e82fc7127f537ebf0c8d118e6a587ac321d21642f8e691ee26bf0d25589fdd4017efb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7ff0e4c7c82e6d1679faad08e488812a

    SHA1

    6d303532ac8a9103455a51bacb211486f47ec283

    SHA256

    a525d51ccaad82e68e75d294d73e59f3454282afb0c1a1d5ed9c9a486294f26f

    SHA512

    f936f3d964d310dff3a644f8e84cb79935791d1f44ae7bff04be00723f64e80cee62f458e424defe5fc6394c2fc951b9ec611825c4167e4286952970f3049500

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cebcaf7372fd04753e3784271fba05ad

    SHA1

    1ebba10b2ce717506531cd37a3d9bb385c64103a

    SHA256

    07065b77b224754f259abe973bd160b9163732f322f1bf3a4d546bffe917e825

    SHA512

    cccd6b377e74eb26b6dbc524d26c8e25c4f7c328e58296094d9aa0f71976287b7c452c77765bc01f39031acd16e7270dab380d54fd3c2d024ffc99bed508039f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f2f302020311ebf9766e35491c7d5c6d

    SHA1

    b5bbf464bd02159da2ba1942324783617ef84c67

    SHA256

    db95202980edf12c45441508c1793be7f14a838c7b09fe9896faa76f6ead2b8e

    SHA512

    b0de8d94092330ca49b8560ceac07e4bf2c448fa6819d43d772b37c9d6020fcba22ffcf7b0521c2d4a4d11d06e1d5b819a925bdaac8c417caffdff8318c3b9b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    77d02445556e961d4e5d6c1474dcc034

    SHA1

    ea42442418ea7cbfeb9332c89bf5fd45731e93ca

    SHA256

    62a23639862eb4f041b90b99185e84bc83c4e44775e852c9333c1843ea5ec5b8

    SHA512

    d4813180eb0a0c016b855f2b77b221819b70079e7202fb8e31ffcd435abc69f38c502c2f2ee1726ad804ae2ef2449681c08228d3f2cc29b4aa6b29b1d498a20c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0f2d39f60f16ec9228815b8d4f5ad85a

    SHA1

    b33527d478b1c1cd850ecdfa90ec466da11d5df8

    SHA256

    c578242e541a56843ead18bfacc9f02af821d5798fa1dbddff4ab10e589d6cc8

    SHA512

    278bf24edfff66a618b88aa482f57674d8f2565b9e9168198dcbbc56c2e5c79df2f0cd2662f95ad4eefd4e38d8661a378b1da9083f0a0b137e6ad8d7b83a9dcf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc5311c237f81e37c6737d8760f2af69

    SHA1

    8f9de1e3902327d0a7fb61897d9e047998d47492

    SHA256

    b90504e440d1c24bacdf9c47071359430d6005ddd78e477aabe889de8abd2b8e

    SHA512

    7c269b0846a1693c510c12c5262a522dd3e280a7c4690351666f5e24e4aea71806a995b8d2c1fa4442e282b1ef0a48af77efb5d6ddd78f8be3628d1efd4e8e01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a840be506050b20a33efd4c4d232fee0

    SHA1

    26840ca73267d0249672b6cd3b1a3e8dc5d60a43

    SHA256

    2b988d2c8ff9afbf9f0c55c1c78e564a34dce19c3e0578ade92d0b184bfaf8ac

    SHA512

    b4a94a107188db65ab436dc71b1ac0a1022736f5b5fc074fc9f07c4a2e4a7c6430a5f870f597a2db4c4cb5284b290e93847e8bf99064f1964cb678dbe532e94d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dab53bbae969f5ff0f16fd4a19a071fd

    SHA1

    902778617411c6a2a829e4ce54c97ffbe1cf0ed4

    SHA256

    e2d240aaf4afe20b7eb317807e9cd1f6ed66213db1e53deb1abf1414dd237f4b

    SHA512

    f09c72274d95faf49e7ba8ac36a13527121e669d50288186b8e025422f48ce54bee77e0fce5c1c4c2f70e0052a1c37ac4e184a10466ac56d118c10808f44ef25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    77627140dd0e9eb8a0251e66042c61e4

    SHA1

    2e0a7cf1c1650dd11cc5e57566f330c69ba5717c

    SHA256

    45d51467d4b0e9bca7c7d15a8a5f670113d42fb6e2c2d844e27ae0adb22cdb56

    SHA512

    d965ef951f74111fe9c7f271bdc9aacc08f74abc0a57027f65719bcc9061c658dbc0a27e549c0f70f107e120ee0d5f94a8b27b76a58c987fb3a852da88194611

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e14c138c0e2c0eaaf6847dc4834b22e1

    SHA1

    048f337af44fa159f7c7d7960949441884c21a72

    SHA256

    3791b40d226ee66d812b9280131f97d57a13f7d183322ef82fb46a4fd4b3cd0c

    SHA512

    0eaed109dbabaa0ab431af9e9746e5705a8c7e3058b3ce44a858bc3252da00f9c1067320205a75063fc5cf2d1d1f046edc11008a462fbd4e66cb4d9da0a26905

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6571d41e04a5ab7e99489f1e20e1551a

    SHA1

    563fd733267509ad920b232ba0083aa4887264eb

    SHA256

    f31fc9fdb7c936c1b70cb5c610b87d9581a481832f64db005afd6f63f10bee37

    SHA512

    063121c1e04380266aab8d0ac78c21de4a8dec896ab53275e84647b93e0f1dbbc3547b1f647734f95b1c63add50b0493c64a6add373136a8a1e0e5d30c3c7c69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9ffec9fd0b9f58c200fe4f0c66368ba

    SHA1

    6ace52831a98e0b72651ac57cb1d16dd260925e9

    SHA256

    479f8db959201ebf5729ea0efcb1f581f119cdc63257f807a0c5aa56dc0dcc00

    SHA512

    8b639ede2e159c74aba0385801d458b43486c093fd6785fb3bcdb8cf1a6d2d710798fe85c2cd59d87b46d5cf3fc7e1d8eade8cfb00f4fa83b471aa0573c72745

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d075c6942826d14e203bb77c0cdf9474

    SHA1

    7b1d1dd132695153102d2a98f5a90c3834b13b28

    SHA256

    ac770e7d738c1278add59c9919eed1f30cffbc263c0d072f357fab8b283a24d5

    SHA512

    01203eaab45d7e79cfc341621f789de4d66c9457ddb7713a61c41f95016328227762d1bd023b596714916254757779702ab1951393e2a81dea4344092bf792fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e562f645ca81b1251dc9e1d1f2a6e327

    SHA1

    17f60bb5f881a44015e34ff77a09c9d090ab7003

    SHA256

    14d718d2611e8bdb50c7aec50d80e126c3fbe6fc6b96470792fbb6b87a2468cb

    SHA512

    2509b98ed848ed52961413d61ca30e494316d64f705943001a1c7a39f584cc5b53dd5a267699ff8597a5aae625d31a0a7ed20d3c0e6de619031868d1a072dd4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    33fc1154bac28c7319f7cbbade021a58

    SHA1

    4a7122a27671c9ac2ffb38d5397d29e28611108b

    SHA256

    a00622ca02d1b6aed3d88fd9d8fedfe35bb8b5a10018331b3e88858eefcb09b6

    SHA512

    5f0859727e056103d64327de91625497b267c27814ba18e0b594762b38f4677aacfb45bccc03134c6ad667114debf5ce5cd4b39eed0ce2f4bfd362b0368791cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5961b77f268d4f28e498c4369ce9b004

    SHA1

    07ba29ff39e1054faa6cf8ea5af42f05a54ab63d

    SHA256

    3d3ade6d23da4720fc2f80329dbe0fb3aa4e0a7863be132ee44ac8cdb0b71025

    SHA512

    2bac1718ca914fde21d16aa7dcb560db2398eff8e89e6bde061f92210f59f9acee90e605372ea80830f2b942b82b13575953a62efd69ea88bbdc2de1ae30e40e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bfafbebc409052435e3a69c618a66b83

    SHA1

    7298897890cde8a942730145e9e340a7a7faec74

    SHA256

    bf10a41c58f69cb4ea04014cd92e00166c8a0b4cd8bd99c9c8f544d8c0f61b4f

    SHA512

    67b1948f55f8380fb6443b8cbad5834d794d10ac879cc0a9a730585fb52ad624d1bd804c54844d038ae16fec43283afe2be0b3deada8385fe52697ce6db1b140

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    89bddb13cbdb2595458127b6202f35f2

    SHA1

    ad205b8509730b5fae2b34706e2a9112bc8ca099

    SHA256

    98419cd68191a0acf283f9d7714405f21c674e3070d7d40789ee4270e2c54854

    SHA512

    eeca2b5d43be4c1fbe3c5ff358b497a4640083a1ae8e1d886f89a09ab4b909028daed0e92ecb625c22d85975b9a99940af99fffdc269a30444131fa00ceda82d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab95CC.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9718.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9789.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit