Overview

overview

1

Static

static

1

libavforma...8.html

windows7-x64

1

libavforma...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 10:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    libavformat_plugin.dll?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    35.4MB

  • MD5

    ed2aef5aea25b4c323095ccc07d2f209

  • SHA1

    84bbdd75dd9854bb5ddbe383770adddd7b1f6bcc

  • SHA256

    9cc9f5b0d284e8a55e55e4eb71f14a5b61ae28a88afc593b0b5a6d68b62e5b2b

  • SHA512

    88ad21ce69b371514cb0b174967861b766a0d1844d7745f7cdac8cf496cec22da3dec320a92b00ed866d5c2bc5764e9ad3df61cd2a744a2f1ff03dde63d4facf

  • SSDEEP

    196608:U7K9+zR5HI3xSYHI4yFIwFRXXYvQMAc6e+ZOt8LnPZPVI+z9hFegRork3tkZzxLc:9ZbKalO0wN8TefH

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libavformat_plugin.dll_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2496
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2496 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2120

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b0a8f1ea29857b579240faaedf17b3b4

          SHA1

          d4c7df8ba113974ed0c163a1800ffdddcd36477a

          SHA256

          9c53e5a1a3d982b3b14cd2ee494edd7bff9f4ea48f340d8d2bf6fb7b448e738d

          SHA512

          328ce86fd41d85bdc224f484934e3fb6fe0d79ca2e589ad49930783e076ba9b4a5985caa07130a867d217d1425d5192c0b9ad5e45062da3ed77148094862de7b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0bbcf8d7783d22b96bf6e22bc7b3534e

          SHA1

          9b1a2a3b057879585a06fa0ca55bd365b7694ada

          SHA256

          0d39bcd90832a3946f1b6361495da4bf390a1f5a454b870fa7726642f81eed77

          SHA512

          802202ac66f42944809bce0cd985555b1faf67f7ba93c58c10e596780b16445bf5b8cf8f96938f226717bb309695fb78467be3329520c46b8476f30258f0aff0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0085037693ac088f05bf083dfc3f8d76

          SHA1

          76854855abcab18e67b4db548201ff885e8da6cc

          SHA256

          ae32cf5155ab880feca2961a5e4920e06dab44c61a8ea282c2f4f7256949fc13

          SHA512

          03d4c77c086d86b864d655e56a0142187f19027150431234f3436789ed9001f8a12c14e3e2d3dacfc5aaa8ad2fe0888266e2938ce4016f1ffee39a12e5fb80ba

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          df7be0b8420b1211dff735638ee0e108

          SHA1

          97610ec60cef866932899ed926a7b66bf5627b2b

          SHA256

          497b0504ac552464bb07559d1f0ddc794f68c9d666d41506d0afbe2d007479a4

          SHA512

          03d41f58a47144f931725918293489377c67dbd9a33879d8a942a993ace29320ed539599f61b839a6b38bf4edcbfb66091032ded6e207489cbb3ff2eb34b28ab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          89fd973067374a8381b477044502a57b

          SHA1

          fbc6660ef492da4836dedbdceac0b0c2db2abb28

          SHA256

          bda2b50abe0316c413e30ac4afcbe056e6d935ece70b69412e605aa6110575f8

          SHA512

          caf20895e350eab7163c7ee13ca971261ae5e3fa236e234e19f6bb1622f139141325ad9574abcc12952cb597860e1900cddbaaf8f52e542c79c0a958dc5e63ce

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          22f948c484b87f8fe043e1d3b1826ce4

          SHA1

          8253206dd9e9d8cabdad4cf8933a53f241ccc412

          SHA256

          1c59ef293b46c41eed55844bc54d21aa921d68820392ded6a00b14842b15e2fe

          SHA512

          ea3efa1c2a1b8e5e17292cc93903496474d52f7f2052e91765d5a2c91b4fd4a6917260b60aeaf83264b7abdcf3e57dd6a21586068769faaa4f0aaeb696fdf4cd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f0256497075ff7022d3b7ae048a4b781

          SHA1

          08ddc1c95b199d7a2e9f01f1a00f54e7c5876e8a

          SHA256

          374b1fcfdb616ac1003480f1eb35399185d9101b1635cef1e730baf8e0f393f1

          SHA512

          e78822bb9cd8b183e3c1abf8c8e96ea439abd74d525086e92964663ae62386ca6cba91683fc74e9c20e31bf63d9c9ffc127db96dd593d7bb4b0764025e6c2cbf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d598725be5822cc79b70723581c5383b

          SHA1

          29f7ca1895cd51349c10145af1bfbfc19a33c2ec

          SHA256

          fcfb498da47853576baf82af787667e75b8fc2d444dde586c3067631ac83d496

          SHA512

          a31da5f3d3dd0d31a3b58b75fabeca32016dd011d875f6132a7705fe4099e0946f4edca28b2a32750b82ac197806a9f048355a9a1c2b7963b90aa758b20fa268

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f31eecd28af620fb1fca4ca211ac6042

          SHA1

          ffb43250012d041f82043ce2112093d6f08ca6ae

          SHA256

          8fe4a1c42343bb91884370fba40293c0ebadc6e77f518a0ad9e2628f69ecfc11

          SHA512

          f09d1a7d65cc3065fa4c32ae8ab7d68bcf76ec55ded9139c7151b1f6df41684205fac614097c28603568a8be69fee1a1039e42266bfaf8f88bcb404901f1b35d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ee2e4d3d914628349f4a31057b8b7081

          SHA1

          c650bd3f2d3ec5e0b599fdf920d8903dd4f80c41

          SHA256

          e09eb151fcbabd3a9a1335ebbbc33a06fa9828cfe6dac0d95779f863fb14b997

          SHA512

          b2aeabf0d85836792c8977a2c3526fd00fbc1e84fb5c033318988b37504d2a37789762d125c1dcabd4195d94630edaf4bd592a1bd3cf24cee465d4274d2434a1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9e13d0c680cfd1af97adb4283450f8e5

          SHA1

          43f85ea05ae48e8d8b153f83b87a28519a00e0af

          SHA256

          59521aab0e205066954e782103fee52d6e59e8c39af284a2ce74d5f64f1a3e9c

          SHA512

          0b9b6a66a340d6c30e88be9fc81664a71a1a7fc5614f2bbc4cfd07ed1673dccc1aaf2fe00a8f774e46c68982dc07be2b0b63ef3afc39d1309ebd58f6edbfd07e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          87d4de4d16aee77b5cb9c3cf946def4d

          SHA1

          787fa9f13b0bf001edc08ef14996c4cd81404c4e

          SHA256

          6b7cce0d59e5009edeb1853e8b3db5297d5fe9307a97df23c46d5445fc121e18

          SHA512

          ebf73e775431a4dba5585af43dbc8afda32bd7632efee4a6e2c74f0984cf2f323be53aabfc0ca63b8552b68131e40fad4afde80fc2de0c3ea82c1a7face6caf0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0d5a81e74d50301a70af67004f5a0ae6

          SHA1

          cf43599c8bdacef647b71dc24531fe78453ee602

          SHA256

          1663c675b62f0b2df7c77da293f4b379c8a7984c14a57e05f690f438df8d5b7d

          SHA512

          78fcba6f00f30726e78deec2cebba670bed32dc40ffc9ab5996d126e69fac33c4ed574d5f417657195cf0ef562ccdc23145b0a5452bda0ab24c2f9a99e8610df

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          48a9e8f45a35ec2f409d092a28a816a1

          SHA1

          9ce48784fc67d41b058f10ba19fdb0bdb2203d5a

          SHA256

          9ce402a076dcd073b30c1f295dc3cedc427c8ac361d05c737de89f279a6424a0

          SHA512

          df9a336f3ff5bfd4198bf356ceed73364a0a45a7de835931663d0578314a02da0357fcc028a0e41e87a23bc38fcddfd9b4f2cbd0c72d9417e514bb972dac1b6b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c821a6a828175474d8b9154c99dfe110

          SHA1

          2d60a6b0f3e04a3a4b3aebe0f5b0010117c3c2c3

          SHA256

          c241b77d685fa707c53663a45d611b5b56771d5d61767d44c69a2038ee4a04e4

          SHA512

          0481a2cd3790d23c95accb07d73348e5087a4ac2c84a2bbdc78a5c4f013e68c6807accd82d9b71410e474a2d9f5c18d0938eb3fab2b7d19e6532cc725448555a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          93207e4ac6fca0c6ac83e366918b38c6

          SHA1

          9b4c9e20b760f95d28cda6739f7dce159a7a016c

          SHA256

          69d1906828065b83015da2193569c4e86a7dacef81b6f1175b762a708b916e4d

          SHA512

          d1904ab5d0fbd671ca98447cd07bc780f5149fb14575dabd41fe48f7a326c4063a23a0e6881e8e57d765f620ccbbb407f2a0de11b3076ebc2086a6aed597c9e0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          40f2e5cc961c0ed6c335b83ac0449afa

          SHA1

          3913738c15face9ba8e4d14f1b8ae3a2b592b969

          SHA256

          5dee68717bb1dc007497284fad37f34f8c62e700ba86ec3f10539848351c11d3

          SHA512

          186d8cee6844b08bb0347e270276c97da768915c78cebad3f85a12b34b797096f21c0fa24133ce0392164e9b55ec5c27f65d9dabea13ce7e8e2b86a192005393

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9eb88fdd38f4ed43cc0ee9756b3feafc

          SHA1

          0a2968193bcd8df7523cb3dca339b4af3453d8bb

          SHA256

          d7147e5085b55cc45b9017e8e069e3c5bb9519834cfa2648fc7c3a4e364c2a1d

          SHA512

          76e64c58b611b02c876e03479eabae76b84388cae4e1080468146cf8c565fcc5b8fd11bc361db8dd591b0cb5ac2ca8c98774c0b6f143191da68b11d5a3c8eabf

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab4CBC.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar4DBD.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit