Overview

overview

1

Static

static

1

libwav_plu...8.html

windows7-x64

1

libwav_plu...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 00:58

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    libwav_plugin.dll.svn-base?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    7KB

  • MD5

    682f92342161616a06c2b5718d413f52

  • SHA1

    f11a46ed3ab90e3cb6a24683293b8145034575e8

  • SHA256

    461ca51d6b6a5d748cca6fffe08b16937e73de72f22b92e662c9795d4c607e7c

  • SHA512

    de08f7b220204f61864bfba4190c8531c6014922a31a2cd9d4f8f72e82c712130be52afd104fdad3073fabb325a13690d871a7c06641acdaa3d34f57b7cf45be

  • SSDEEP

    192:ZHvTPMcMHy2vpvwvi5vpvCmvMXUvUv5B/lo3Pv/vyvvvCvpvyvYUQE8uI:Z7PMcMHygiXv/IE8uI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libwav_plugin.dll.svn-base_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2356
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2356 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2172

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e352b1707dec9fc8d5a96dc9f1ce9728

          SHA1

          049cee652cd426771321f0c7534b92e9b2b10900

          SHA256

          4aa07230edc3295d782c561def9ee03f8e17be776497a22501e51deaad534865

          SHA512

          3d8a3d94c3ad0451e47296e7a2034f0d4a5b092d763e7122845c89e90eecbf0f0193e5e9a5cacd62d47cbf5cb13a011338f2cd3a2f73687c1883947a664a5543

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4a99d171eafacd3d4deebdd4c24e61af

          SHA1

          6dea06f1b1cc2d445a35e9f0edd0417a50004db5

          SHA256

          3db6f882616fc8c2d7a006922cf2f3a068aab76a2812b958a858c7fccb1bd721

          SHA512

          346671a462bef712e01154f66888a3b18cb51fce5dc7bedb90f0d11f4482a4479e24b74d92d8cab897e43f8677a932301f97e52d29715a2445d46a87518e0c01

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e2e0864ba807d2be7faf3ed25f9f39e5

          SHA1

          a93c123d68171690b2130ac377023d436de7e375

          SHA256

          5d15666f29e0bc3a234f5ca69f77880a026567e9bc96a5221f9dcd801d55ccb3

          SHA512

          000fcdd1a1fc819e727fe66d5ff9d7ef7d5fad487dc5436ec418913d1864dcaaddfb2dfcf5192048f21b98c3e3d3c668a7f9de0ba9a0ada14a4f6f9d72d43869

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a6a61132bd22856e68960e759e60c5b7

          SHA1

          1ebdd6b8dee5ffaacad85be1829a3fb0cb390562

          SHA256

          08c3970c117726454838e76b855e823448d3661666d8448e61e4ec85dd07432c

          SHA512

          376239e7e192e4fed0d16d1b7f42d1ff827d631ca157fd30fbb3d5a1983b340a09086e8050ee5ae408f2a8d6c3577fa8b09e5b5fdb7cee2e1cf2bbe281558c0c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d44e825b1c9b0e3ea92e3ce2734dad54

          SHA1

          28c39c1dd687f77bd6c83d871947aa55898f8415

          SHA256

          9c41b9731da19e8e1ff7825017d268fe7d84a1b90114b016047d9dc5a14c50f7

          SHA512

          da4e7c0bb91d2cbff0a3cbaeeccd55d5c16e906a196d02f821a44b39a2ed1a5e523b98fc0a5e1c487204e4f6a8765570f4dd8a9ca63f8a6448b9516bd8fc36d8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ed30bf4fb6e18913e1e71df1d563beed

          SHA1

          b538c3f5fd10eebd70be4d8dc6fc761e96a52032

          SHA256

          2f1a34d2d6760cca8fca2e7f953e9e181f16c8821ce1597ccd50b98351d121f6

          SHA512

          66b345a2fdc54b147b172a0e335484939b259e5ba6d6b46f3059a357c93a7cb2e5f04b2fbf60579356038e7b5a1c566ac61316bdd4432729d5e5d5c249795cd3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cdc5a06cd47ddad1976ccec65334d140

          SHA1

          d6ed0e4d6cfec605dd4bf3777ca79162377beef8

          SHA256

          8baf5bf6659bd8a1bedadd748217e700d5c9f1105b887076018d23429dc57e32

          SHA512

          b9e086712dc21b1d18892538ee495a697cbc9b0d30416b450a2a7fc9396b9f1c539b011900e97e6740eb4c180272e9417ee0748fe9337fe362cf9bb6ab8bd61e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e2709c35e03e8e99eb8c278912ab873e

          SHA1

          a8b8fedf08abb71100092c529a99cb020141ca85

          SHA256

          b32b72ded4159110fa8faa251b662c41bf80df49fd29d8d0d6d0ff51a29a71e1

          SHA512

          7a96e3eed29604452dd52423741f146eac7b9dd9c12ff1959b69543abfd7a51679effaa857ae8dd3d6c940e8d7d13f4fd3a776cabb2fa9195236282dab5949cf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          568ec943fb9c41d8d27ded9a61cd31ec

          SHA1

          99130fdc07a1a1efa693651176657aec1a6a69b1

          SHA256

          5e76ffb80bef8d0eadb0bda0fc875b5e7a531569b689197518960991bb5b3282

          SHA512

          ecd4cee579ae530acf4ae219e9a1bcd7317e266ea1e6a77dc3a182de3aad2c76213f8d04fb8694e71e9ec9c5b2c62151a2311e755b5d9b8ab6fc1b7b39fab76a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          35c85570f3740ad2c6e88c5fd417ab67

          SHA1

          faadf41ada2f35308720c7242ba4fee49177e6c1

          SHA256

          9ea06c3deeb5b63d13ff99f1ea5052c8a447789da153de73cda5d58ca180d7a0

          SHA512

          9663e3208a2ee6746c8d9197c602d8d77b3efd9e4c7c55e5f758af9ab6d6664d80517047e616ae64dc66fb1d76e1516afbcdcb880d6de20fece86288602eb6c4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2299222ea95910ee35da19019d72ec52

          SHA1

          3ab25f18bb0d46ed3a05a40f02f75b0f5a775bd4

          SHA256

          17cf21d95f380a2c2a532611703701aa4300c4197b27f9232d114e1b7d8fd019

          SHA512

          b4156ebec23f88b034697095061d277bb7c4ee428555d6653edfc9a3f976b6629272585008bec067df34229f54dc0d135bbc9de151144dfcf33094abc233897b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0c08d59f4aab9ad58d652d2abbeec5ef

          SHA1

          64a68594d6815efd17955f7a7e9959fc0226aa9a

          SHA256

          14bd8e0bd265e476a1ad28615950ea318e0dfc716e89e60831d0109e2c722c17

          SHA512

          8d4ef572630049e7d43583c61464a0a5dbffe8e3e45418102f5f215ffa306325489969de698fbcf779a1f2857c23572eb7f91bb4b0b3ea02f33f76cb472e1688

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1eb564ac7cb1ce861a5624c23e6bdfda

          SHA1

          222ad825326de8ac5c088cba6a2c492b27b44718

          SHA256

          7d21fddd972e7634a81546fe78a83cf93edb0e6c3d50967c6d47d8d7a3f222bc

          SHA512

          ff2ed3cb09d12e59b81752f1a331dbc3a7534a1b89209740ba9188fe7d03451a52e1c034f0e1b6ba1a922722d072930176d1ab5d8ba4ed8a045af45478f46ad1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b2452736f9a824741be5796d975f9f5a

          SHA1

          0001a0e9ef7665e3c47aff9457ab0bdd5e3550ef

          SHA256

          b46bd65e1c3410c91499567a9075606cf49dfea301df750befea0fcd8651f5db

          SHA512

          9ebf0b342b6c79b1c24757f034ad40b06ffc7ecb866adcb8206013c6a9d4c66cc705b22c1e6e8e89f7c10c99a859af0dc0e497212e204706bc2114c2e9e7790f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3ebb5f73a46d22b0f2b33e6fd086cf69

          SHA1

          b01d6feab403238744753e6e3d97e3fba08ddec2

          SHA256

          2ec779e0bacc35360f2c2802cecbee8387a1e02ee779796133785afa888c0968

          SHA512

          692673c9cc5e086f0449955f28fa8bb2d1c44671725d357e93fc74cccf1f188cc93a16d0ada1b9655ed73de45dc44e77597af3fbdafd0ab907341532560c266f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5d5e3f595897d36ae8f67a6845018dd4

          SHA1

          3c7a72c7121f3f805fa5248db2ca028c61e00487

          SHA256

          c93e195785cabddbc019f93ca972875682504fbebec28f01adaf8f9f50b05063

          SHA512

          5c9380a1a148173600bd8a5ff458a65f9090b7e253d2dcaf03b23d5346edb26178649f3768bb3f88130e257ae5e6e51a37ccd58c7dd623f05b24fbe5b92809b8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          db3a1267fce52d5a3566f63a8b2fcc61

          SHA1

          5f611588363feedc3bc35c09801373dcd6ce4acc

          SHA256

          6fed33978debc9574f07b97ea8bb2ee076306e4641549427309fd22e9e1a3310

          SHA512

          36659e9c4058bee7eeff4cadf4fcb78ac90ec9846cfa281d4c4a1ef1cd314b290999394d1e13826994ed8a6333139ecde1697669edccf96bad9ea011b188f0ed

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7667f7fb53fc2cd927310f20bd419561

          SHA1

          d122d43d876653285730980be9bc11468488186a

          SHA256

          69958e668a5fc25067ceb3054ac3364f596c5e18923062ee2d626d18b0914918

          SHA512

          c00dc455d4ba433c11300a9dd2c9d745639d1fefa34e43a600b58d85b587e817d41653aea3e45009634fca6a920430c11e0a24f7a7fa9e571921b8c8479cee1e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab26D5.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar27F5.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit