Overview

overview

1

Static

static

1

libdeinter...8.html

windows7-x64

1

libdeinter...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 10:12

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    libdeinterlace_plugin.dll?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    609KB

  • MD5

    0d203a61d900e34d4cb72293e2488744

  • SHA1

    c211a5bbe33e4ebfdbb324bd9036ce088f0b420d

  • SHA256

    504ceba467f54933ee55d558e42916e336d321e95499cb08be74df66ba014937

  • SHA512

    accd61b632f3b563c35d41654375fde6f2676ef438e0021ebb71afb4475ef7d4ab71ddd47a1f46c2936048c3cc6c22cb04c124f6e555291b5ff7e9abb07dc589

  • SSDEEP

    6144:dtNm+UQadGpkCA0I+sNqbeKQc8GD/QHhb:vNmdGpkCA0I+/zQDc/Qh

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libdeinterlace_plugin.dll_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2164
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2164 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2712

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2cb111e7da45c02113271b9d39c3ba71

          SHA1

          b076211f1fcd2d511f0d0d873d6a37d87e877b13

          SHA256

          c72160a03d0fa92a5256273e4e6b0bbbc19446fe607adf05c83aa221d8b3c00f

          SHA512

          cb2ad6fc96e5e0a79d55b41abe201b6b1912bd48c04f673b34633e2bd4d715d39de85b65ac9c2e0215a4eda4dbaf446cca0d26f76c521b527e2ec855f3db14c1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          658c8835e9d043c47807e88443cc9d17

          SHA1

          e7b0df0eabdb4d157a5bf66ddd8d8452dd3d78cd

          SHA256

          32a35c970cdc171e8cfb37d2836ab138f707df9ef5aa4f76493803c5d743ffcb

          SHA512

          53db08537f7e975f7b9caac8f465e4ba3192a22e382f536d8cf6fa8937d69aee1045e93bc98afb2efc1d4e38e54ba522f8204385f578c91d8f92ac53776df1d6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0690c1ea66102ddc9d0197776d285340

          SHA1

          278ad456baa88ca56ba1d9ae1d75b5a989b80bb0

          SHA256

          3e36afc034e241c22dd36858603866572156834c006438f7b887546eb55d5f23

          SHA512

          f11d3ec5f2b2312e765eb943089b6ee6b2e419e2551b9e5b14137905cade424f2617e1432e1aa0ca64de9dd00f009cb8cc1e99648b4ea28c70753fad4dd8703c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          27ddc242139699e0b1598b73b1012354

          SHA1

          c1af6aeda6dbb9d343b2940aa77c4664a5829f42

          SHA256

          051483bdd7ef73c0369d78ce8b1f6bf8a09d114397a4294ace11ab2f2ac412c2

          SHA512

          18f9749d9416a5e1b7567d291b7ae9e0bc4e7532f565f42aca18ff224d96c59dbeeb8dc593a85d3c30eb29d72491de597780562c78d4922d30578b8ca67649c0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fec043660cc46dbe8ec607ab296c8804

          SHA1

          cc4d247397c13292fb51429be6ca0ef89dae2fa4

          SHA256

          5aaa98a339a8080a0eac50c5ddd22ace0a2276721206a538f9d8789b1ada8d68

          SHA512

          98448ee37019463a12853b82987d54e0f226de60afc5cda1b6374fffdc254acd74cfd6bfc28658b2d5c868a9d009e5f569040a1d690c7c36e6abb5fa12f53727

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c2e5304403874ddaf8a727f8e0c92ae5

          SHA1

          ae994abd8d3de5fdbd38ef5b5bc135f4dd5eb345

          SHA256

          03731744b4e3b1beb9c19071206382c37f824269edd8e32cb94c1c8e5bceaad4

          SHA512

          2870eb8dc70529b170a7617317ca1c10a28e746259471006fc6461abed5f19a20966636047944acf0b8a2361875708864081b774298f30823454819df3786798

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          996198708e89dae198328f5edc5c84f8

          SHA1

          8abbeb62159983919023ae0e688c2e9c6479a037

          SHA256

          390448a212707ca7e4b1e49cefbe7f9ef1b19b38eead7895e93b59d62eaf8b11

          SHA512

          f6557bf9db1c5c9690c2eb7e26e05efc4131ddbd3f05abb73996a550561e4b5b0b300c3bb8ceedfc74a7bb4db74dfcbd236061ea8e6b55f78d702d2d90f49682

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          aa79d659a6c4471e17e3bf3b492b6303

          SHA1

          a761851428464d680fd6765b5693682e79b06566

          SHA256

          abdf12099362f31f99da5909629e910221ed10d58498c2969196c046fa13a894

          SHA512

          2000c0db4cabbc36290f2f5fdb5f35f22aeac83619573fbeecb9edf86fea98ad35b412a6fab42160c17206e4d44096cbc4d24428ce16f0ed66293df446759e99

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f56df31df0fc84a92906a18c5603935f

          SHA1

          7d068d3ae128604026e56ec299188087904ffabe

          SHA256

          dab40ba522afe794299bb2d66bf2976c573af3316588b281f5eb28ebd858d378

          SHA512

          245315942c32a18db19abd7e29c3a9bddee26f0cdd886d54cad297a647e9e6eef79ce78f36d1fcde812ac9aaa4246467b242a718e56ffa3281b7ed9b726a20bf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fd871f9eb895ed18b52c246daf38cb12

          SHA1

          fe85b2d658fe7db639165e5f001cffd1dc925058

          SHA256

          7508e1ad4ac5878c0e071a1e5d85fa702ac39e17534237981fad97bd4e0563ec

          SHA512

          9facf1a6711209b2b0a617c99a819cba3d1728d70bae85ca847d3c6cb06ad14280b95eff57613891745db54c81962c23d7407e84b5c6fe6c440da9c004f9a868

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a4dba47ed08c7fe9274f325e5d60e174

          SHA1

          e6a3d9f0966e5b59ba4b1a695f36fcb02b08f85c

          SHA256

          6308d534e52010f0e85615b7a4d2089a6e92e36fb6afa00362c9a6ae7fca8f3e

          SHA512

          e8bcf3700e2c0611662547d8df38a707ba7e3859028c75169e1c4e57e7ae79d6ec946f5fe0445cece56c0c4bac69dec2c29bdd32329ccaa3b934e7719b007918

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          537e0ca98e9397cae0ae40a4ffd60f43

          SHA1

          1dcf33ada51cc0a0c4c287eb78ea497e47cd7299

          SHA256

          34bd2c7c4a672bd7f6d6584617c4d84c4eb27ed1ef6c7aaa1114df769f2f5d0a

          SHA512

          47349606cd8a1738abbfb56ebcb35e2f4506940c18fc085be4dc2a629b4b3ff4aed03d717ccc34c0bf4166f20a41b8d661c08ae080b66473b9f73dbeb8c6a352

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ec007ff969dea6244d09523cd45b70f3

          SHA1

          e8a08661f24733a1864ca5c605f28ab7d0d952bb

          SHA256

          73267745831dbdf101eb64230391bdea890c52cc3c671d1a5920d3f4c26c7e96

          SHA512

          822f7d613da00bd5dbc1bd6e8b664f6a34ea9aabb378bd17973e7fa4e37e3a37373182dbdcf5082a601232d20ad00156f4d659afbaa6888480c5e2fd1674815b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          75481a991c660cd8cdced9ed983d3cf4

          SHA1

          8f1a1935bfcf9b64c5a375d9512eebdd950f908a

          SHA256

          9670106b54e914db3993c10c60cdb10c18eb5442f9377ebd9175d7c7f7e00f6e

          SHA512

          1d58565a1e3d8eb25a229a7b6719b72f87e2a650a0e25c428782ca9c19dc666bdae27e94352ca27ee3e4d9b0ace47cf721ee8e96536b1ec910db1b1e3bb24849

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ec3c55bf73529be4493879721b7e0d3d

          SHA1

          ad65f10464e534dfd2ee9521509c6839c9fa9833

          SHA256

          aa74e2b1bcecf8810e51b40b2bda223d0a33e5ccf7670eeac931511cdda58838

          SHA512

          aaba8366d6dca95513bb538e72f524c6b444b6d76ca4d2a8a1d1b6fd20eab9b1a9254a72cf8a54719aaa33c1368961798393f0eb257a5836f0e7abec99247a3e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e67256bbee9c78f605aad1a741956ed4

          SHA1

          b48fa27b4a14e6f91db46141711b48fdc744ba0f

          SHA256

          97aa5214cb63de3e72c841f1cad28961f89c0597d5087144136c05b3ebb0a657

          SHA512

          32b6862dd4ff43498db4202226918d387f4e61b8d3f48212f3bc5c29584162e2e077eae923e6c63c0bee0a7bdc863e5f687f0df89d21ca13c062d3d7b425593b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          58a2442d5d06f7b797b4a9cb23a81bb9

          SHA1

          62d2dd75f900f0b99f9d86f9fa87d4358101c6af

          SHA256

          b94c42d1bc7a6db2a193433916e0cb276bad5596bcb1a1fc372762f56087297b

          SHA512

          21d651b26f0c2f7f7f5eea48e585ccf17c823880d254729ef0c6fb0eddec07c4717fe5d8c07547f3aff57b512803869d62b43d6f7f7228063dc99d4a66cd74e9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          69431554e5848c41eda7732fe890423d

          SHA1

          ef9422cfc3fd20944082242dcb7e4a772a386dba

          SHA256

          07836107a333a5e79fcffde8195da8be880b9cf8e15ea830379b5f09e19605ce

          SHA512

          7dc15a133e69d04308c73dcde5726a797ea3cac8cf129d1c176b10eb03f764654af24802c02194f71d28e72b4cfb6de93c34dd92ce5dc1865895eb3511bde436

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab8103.tmp
          Filesize

          67KB

          MD5

          753df6889fd7410a2e9fe333da83a429

          SHA1

          3c425f16e8267186061dd48ac1c77c122962456e

          SHA256

          b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

          SHA512

          9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar8244.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit