Overview

overview

1

Static

static

1

libportaud...8.html

windows7-x64

1

libportaud...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:34

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    libportaudio_plugin.dll?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    554KB

  • MD5

    ffe11008ea7728c65d5fd6971a1cfecd

  • SHA1

    85f04cc423839337784eb682e6136ed7c2237e96

  • SHA256

    98ab00c72e7a7b8354780f411bdaf3fe9b68aab16051dad9a66286999e0614c6

  • SHA512

    3ac51f704bc303427ac50e31182fc01e68af326a9c102bd9226cbf7b2f3ec6a91fff3bccc76153dbb5bc0da086c6c8ff10b582378257967ef679cf973437fa7e

  • SSDEEP

    3072:4h/JhVa13u1Cbf4eXafDfvqPC7BfAYPrsQ/gGh9JwJ1V3Vjemwd2v2EG:6s3uC4jLvzBoYPrsQ/gcJk39wd2uEG

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libportaudio_plugin.dll_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2236 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3044

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e5b672be94cf0bc1ad854fc73e4c62fa

          SHA1

          6f673da118932b2b676f7506a58b77b3a37b2939

          SHA256

          9501ff2c86e880549130d04c404bae0f5da444003dabbba4c1a1d7158b8c4064

          SHA512

          10d613805b30af39e2f29984329cb8452a8285759f602f43b4ead9200b7954ca9b34a229a5fc77322f022c0328b80a2e88413fcab1127d3771696357b864d39d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2f10b7e315d8b605e5ec4303dde09ca7

          SHA1

          8a53e37c219e53f026590baa8f83001e1e933db1

          SHA256

          2399ce14cba3076b3ab02dde8889d1dae95c6545905db0e0ea4d2b82a704e797

          SHA512

          3ef1cc09be14e52f34f7999de5a75b893057db885c88465e4fff5bd7c4f2da23b9f38151e4942d6e2e51ca0ea42fafb8d15ad69d9f81a44a717c7d04e8e4418d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4b638cf83ed324069be313c6490c43b8

          SHA1

          042b5a9b51cdf667e7bdca2ab64b999348243573

          SHA256

          72d9b1a9b73c5ef372185fdda1d49b6f6305156bee45e67f349d4018fce5c9e9

          SHA512

          b5996df3c6ff429e5345476983d6f9c7b50e318891e1e7be4c5097891b3a66a940e6d6433b4a179876fa93460617925ad25913a6dca0eba410ab259a534d0a3d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          36365d2fbc8caad967a0e47677c892cb

          SHA1

          549a67dd52f42a3bef20a655e15c0a45deb5d2eb

          SHA256

          9213e7d2b91080744a60b4372edcb2b68770466782c18e96ec1c5d90ef63eda2

          SHA512

          9935c47ad12631c47f779f68b5d1e01afb4d6230dbf55547950cf8453e4b43109a3edffeba95140e3b60679d28adba828f0a78114b4ca7219302965c63180af2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          81c1240a73cc94ce67d28426e1251e77

          SHA1

          6e4a21463243a1048a6f76069a42fa5ba4f00cba

          SHA256

          7b8dadaa4c1dd859f473ab5a1c7142bfd31c3b877265ee78f9d87bea3c252e03

          SHA512

          90d91cc4387fc73e8f18a344020bbf989ddb382f51c42c0ec49a0e04c35cbcea5910bc60feb0b85ffdc0e78de717dafc17d522aa66cba2a30245ce0037359be3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8319648dfd7181d0aa321bcca97f625b

          SHA1

          0e5b11902a49f80eacad95107fff233eeb40b6ec

          SHA256

          c06e031d9b767b9e0d0c9d8bb0e99b7c8aad734b8743c457ef49840e78092ddf

          SHA512

          919d5c34423e057117ed530aab3a1ceb4dc78870485fbe36e8c068b8a31a3335f67127c0f7f4f3aa4d2d141d583484a58b646e58d2fb10307eda4b75bb9517a9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2f0ed7a6f28f41bd7e5a01344141b49c

          SHA1

          4d2b9fd2329432aeec6ac534dcec4dec185bbdb6

          SHA256

          5d389255a4a19d64507fc7a7e24817132a37e1024fa1e4108ad959de38ff3e34

          SHA512

          e157878357e7f90fcb7dd8d49c1bc8c3b73c1516996c7d44909da15f73ab81591ff5d2aebfd52a16d7d596b8429eba6e7e88d7df98d5f1b29e42bbd21fec8b1e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f4aeb3f79bd6be79561de62eb8e3a58e

          SHA1

          d17a7232a741f76e2941cda2945430edb8b6de35

          SHA256

          cd35a941c97fd5148d692265be50dfa0d8d247360bc8835574614b8a0e2d7b46

          SHA512

          682a9300595418d86539c7c460dbe0b87b9e0eecba0a0d8ea9803ee8cbde30f4d26aa589356a6ce1a8d9282c9d21783d836cdf85b0cdb246a646d7dd604c19c7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          88a6f1ba9128751bad4b2205270f1fbd

          SHA1

          ceff4e93f592ffdd8212beaa46f6da709925ab43

          SHA256

          8520820da360b2713b35f5a0bf8e6680e8e3a45eea00e185ed70c1d78fa01b83

          SHA512

          56bc827164183f10b42796ee0cdad211737b5ab0f8c7d48b039a1ff1f15b453ebd807a4e65aa8d5aa29f60c5ee362d6f48aa1c9388891e068437fc02ded86d24

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          db53f01c7d3de0e6801144b345ae01be

          SHA1

          dec69f5d2bb90e045c2bde06befb767cff68c217

          SHA256

          b2bb0cb865b4ed5d1b9ac75bb630ed6b737ef3217492905f4cb2760a77ebecd4

          SHA512

          d293d751d59f4480dfaa747e7082ea28dff7f5829e26d5c0c5427d304573511f21d8171ca87017f305cffe09a4e452a677d8c0cf0f90cb7b6b22a7db16c8c97d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f836e205e3d191f3f9ff96d2a903e337

          SHA1

          4ca4d56568e34347ecc8fd1411b93f25c116cd84

          SHA256

          3db60ae3cecd0d03e92bfe87eeb3d1853c05e9fb045bd0ea8853e48c72d0cf38

          SHA512

          f8256b4c05c6e7c67cb71cd894475d4147050c359b1749f9d7b91095b80d2a9ede788eeac8bc94ac0bc6c30409204860ad7ab74505429b2f8d60fc168fa3ba91

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8aedfbc78182453feec07320bf6dc5f2

          SHA1

          1920b416b61c1ba95dd5ea4d798cab5e3b4c3e12

          SHA256

          a97ac572c0cfb9612875c4fdebf4bbac02174901ffb9fb1e3edc249d437c54fe

          SHA512

          340a7ac522944861ee8edcee33044cd8a92064fad96c3304fdb8ea916a6d39728c68e2189d3e03e61685f3592b253b8b09b95a8e6cbe3bbb25cf72fc1b2146f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1ddbeae54cc3c1afe6fb039f123b0b04

          SHA1

          04da260483109ad78067fcac2319da72ae2fba93

          SHA256

          c3587eb43acdc353344740d161254b21260c7ff114d37d558b510045c8afa901

          SHA512

          d7b9f405cd335ac34160fc9664eb75596928899bb448a7a971e43faa58db51fb47560770b714a258235b2fcd844a9a1d961e4209f018e899984a3ef3f84f5324

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          59b5526bb40eeac5b603eb0447e877e1

          SHA1

          0a8edf18fbfd9c87d6a7f374f6e9457729d52ea3

          SHA256

          61c568e112b27b3a58018abfbf35c4986ceb6c49090d87e8fc5a501eb04a7c67

          SHA512

          635d853b27487dd3784b510ceccb6434fe19a08b64553bb41880157e0c12a818dcb0098de1ddbab8e08cfc02128460a293395eba14a77f3c21d1a0a2545967f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cd8e2f6e7713ae16471f60553e3f1bb4

          SHA1

          2543f568d168e52d25e623a42402854f9fb7c1d9

          SHA256

          dd76299653f712e1829939d276134188c609e76a12c06ebccd272b7e463e4f1f

          SHA512

          466fceb5c15e3e41d6b2020ba34d2b8fba001fb79568bb732cbcf24c108894627e51c58981b90273578cbd80f48f1f1d01fd17b330372db789883c1f6e238124

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          77b8ef77aa339595349df147310d8797

          SHA1

          ad9e0e3110270f54d0edc8864b36f84167cc40ce

          SHA256

          406e3a434fcece1dcfe6021e4e234e34c18ac2f5e1bdff2f198f4e89463851df

          SHA512

          4d0fc340578eab0c544abc686359d00de529aeb5f6a83d9ba4750b3890aa2bee31cd24814ee0e05825b68f5d7cb4d0f3142b744a0073d1a2eb88f94808ead327

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fd821020fb3f0fbf047157de762e70da

          SHA1

          de0e816254f23d3d9fb40c34f51121a2a2731717

          SHA256

          9a97d5bfb2f05399aaaec3ac2995c6584d70c019fb499b73d663f76ffdaf7f8e

          SHA512

          2b38753eb2150008f230a97c4d5b4280e4245264b35a463d9f73df7c3ef43c5ba6ed29d0c0122b8fa2f662a6a616c2d7b974166c0d7239cc17374c73fedb085f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cec1d2c23fdcddad81fce34936da2835

          SHA1

          bfa267e517b3eec19f6b8027183c6a9c1dee4f36

          SHA256

          13cb7a351ef5ccfe9960cfe06a4b987d657c526908d939c886c313635840b7a1

          SHA512

          8186e70b4142c9410807d433cfea490b5805bfdf9e9aca274fc554b95ac8a75140f42219664e672908a1e95826abd19370d1fb3a7d9c1b53c795d2d8dbd11da1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3e573c7706047676f98d463eda6b949d

          SHA1

          872162ca097758b3df0a446f0b9940d39a496d92

          SHA256

          03980e20abed876990d4af242c8b98a00a52a1cd0fa1ca8dfbbbb5d98ae1ed2e

          SHA512

          64cde0e32474580e8995e37cfe32774a66e70087bdde4f47d2de501cd926ed5115576956bd2f97ecf8d3e567f5ccd6e8cc0a00ab4e87ad746dc0c28099446205

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab45F9.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar4728.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit