Overview

overview

1

Static

static

1

libdvdnav_...8.html

windows7-x64

1

libdvdnav_...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 10:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libdvdnav_plugin.dll.svn-base?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    1.4MB

  • MD5

    7ca504c24c8df7318edfbf467fedb86b

  • SHA1

    736ef581b851bb61a814f9e4f43dc2802628e051

  • SHA256

    7a9d50d3182f99ddbdd2846376d9cedfd9ffe550c6b9ed9ce9463315817c7a84

  • SHA512

    aecd0e2ccb1700c93516c207c41a307807cb50836e1c22cd31a772a84dbcfbb8e5cd2b31a163cb885f714a2b6018330dfc2cd06975a93f7833d44b9e0419c993

  • SSDEEP

    24576:K9tDRsaSxjInVGVJmpPGi0X6DLY6auR5oDuR:K3DRsaSxjInVGVJKGi0X6DLY6auPo+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libdvdnav_plugin.dll.svn-base_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2012
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2012 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2780

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0807add924da1c5e5f61955cec41b0cd

    SHA1

    4c397755abb2852d07525be4a4bab4e714e868f7

    SHA256

    9527854fd255a8f815e00c3e00197a0f2a3cdb9d110a5a5708d1ed1ea26a0d49

    SHA512

    9443ec5941fafbe17bd44ac84dd4803d926e55d1e764848b4174208902bab4db2c3f96624d43b34386e227ef3b84ecafc6796ede91142fde058c092ff95308de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a803eabf259e07d1aac40248ca7d602

    SHA1

    de9a98a7591b340de3aa994f64571c9e3f1425e3

    SHA256

    9d749da6a37920ea9751d3ce2bef3abc273271c63bf5f3a45fa3ef9e0ea2c556

    SHA512

    1369738a3f8d7c86b55864e328eda0b2539a926c3946a00689927ed6bf4dc5650546e919c176ae9604de87feaad4ac6e7e94d5fa1afdf42978eea8bf29668433

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6855bd5cabae936e8e3cf3a2829dac03

    SHA1

    4133d02ca33f26d586077caec78baa9b414f4c8a

    SHA256

    e9ffbecc775d20c7662c48d0e52a80bd775cda5728f386211aaeffef831cb68d

    SHA512

    077418320d0e3d80c363497a6028791baf2aa215d5ddd7f012063c07e83c461926da65891dd3dceafe1671097b9a67f022543243476e3093006faa3afaf74dff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f6089108e72d660ccee7ff7a66d5f45

    SHA1

    57da18e8cc2030fbd5afd13833f4cc7eefc6367e

    SHA256

    e876102ebe613f49e7b6f2b17e1075c9d59431d7b1150878cb1d3dd8ab3b98b1

    SHA512

    00b187b4b7cfc75c2fea7e4cf168d9ef7f61dc1edf882d899a7adb6527da171589d0e18b34e18e4ffd0365b4e1dd445892699beec8b58092db482f30dbf8c262

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    302fcf3cb8b96733ed22fb3b16ff351d

    SHA1

    7f904b9a2ef5e00a8de46e4f0ddf4edb45906fc1

    SHA256

    a57ae33ab7d586db183ca003ed139eeca7d4bdb7acb6ef4efa675912a38d9795

    SHA512

    1ca7ca3adf5294ad0d659fbf726bcbd9d0afd1ab3680ac6c55d53a080b183929e0b06dbe48a65f3c206739730745cda3a7794dac5f7c91e2957266f331bde961

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e85b59a460ea77605980869223abf6d0

    SHA1

    c2db9928a4578e0830d958c163ee3c48f2aac8aa

    SHA256

    dd18637446c2b7fd24c4733b2ea7e300d263b4da54a67a7e45e72da8a0d95fa9

    SHA512

    16ceaee310122a108e308779d20b55677ada3a6132643d8b2808eff5f64a42906864ab9d8065377ef1d821a7a89431da5c4fa649c26c582abfe04dfe81b62b98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1843bba76d3b642218be73a5fbd8afb1

    SHA1

    48af54bcc3206d0a9c3ea351a8ae7e6b92fdd52c

    SHA256

    3ca996f8bb9cb74c88c9c6b102082cb771603ba78da5bbd9ba265c3ec97e1798

    SHA512

    e769d61fa917da75defdef52be04756351d107058248daffebf1e029d96d7d91fa9182c326ac0cdd654af5fb87634fcab2c35c0143560e2e4eb8382214ea965b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    479d2234731f704688242d60a779910e

    SHA1

    1dbacc3f72478d3e591673af1a899b0fc829022e

    SHA256

    bb474aa14250d10d48da966ee8d26f25533980835e880f6984c504b071ff0610

    SHA512

    74dd3b8dc468bfc10ee68c23d5cd641c7db41a38dc1474dbd42778d0ab6fead3a0b008fa7446a0cc448cd0948267092b726d40d1299fbd28a58ee132a2550bb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    77909a75ec7a96e2d2b733e0adecced5

    SHA1

    e8a18c0482a5fe2807de9dcf941a9e5090c983dc

    SHA256

    fd4288fded4fc9689297333da58dfc163c1b7158f9484f9b36ed451cf502c5ed

    SHA512

    839e56dc2eb65d1a44badfbdacf8e0e932c15b07c7037583ae1af9d151eae1d266fc47ff82e458207a079229b88c50e5e1202ad2132a24095c58a82b3009caa4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8da4c38b20043043ac51323b201cbfbe

    SHA1

    57db56cadcfc63b2c7e72ee75468f585d8c0f805

    SHA256

    f2223bffa2d6a3fd85b58e075e1e31d8b08f6d655beed27946683e28e4bd9b1f

    SHA512

    55b0d311e9f6b1145fe8c72ba25510b20b53f8de26a14aacfafc6d1d76d2bcd92cf824e7acb683dce26cc0e9fd554e45a3c165bd79af19064d3ba1ceca6bb775

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea1e8542ebbc7036b72b7a20342981fd

    SHA1

    c1cf5f7fff1c7d3e43990abce29be3f7b66bb509

    SHA256

    db3863c765c53ea51b9a3e660e361bfb89f8df0f386e2a1e48eb86efc32a53fd

    SHA512

    7b301feda1029e3a69a455bbfaa79e60ca8b69400b275cf1e8040cf36b71e853a9816352ef70d5ad05e28aa05a4ed8a02100bdce67e48161b8da9a1661a40ca9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be4e751613891e3d0baf9d198aa7cd00

    SHA1

    5c191aabe202c32f6a8dbce7498532e1b137ef93

    SHA256

    59f3fcb6a04cf54c94933e3ddaf3e00a8f9ef3292694b63998870b79cdd72140

    SHA512

    b4c247ea3d00b2d112e2a4711bc2caa10fcf25a329152ea37f81206ef19d9aae99df89a0187211e346fd698565bf0ebc4c8522c18340c5d98b9a9b63e42966ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d4897b050e652c86cf415550284e065

    SHA1

    e1196c640b281fd7795b425fe7ad8ae875bb6c64

    SHA256

    ca32a8d46b2b65fad30c718d4122bb79b3937efdf05ea99f015cd595f0cededb

    SHA512

    15ff686e374433aa308c29bfb255837d54964582d0fa1d939d8b42e5f016e8f203838fbbcef459b761a1fb6940485f5d12ebb66fb0d93f8d824f021e6dc39c65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10bcb64a2551775464d68656161b8ab1

    SHA1

    b6deb0667d792921ae0959f2b987e1e3967fc74a

    SHA256

    4944cfac47508058f84827c2e4dffd97d3a9e0541284efc2298d46e8d9676144

    SHA512

    028b202338b143593fbf1a9dafb78d30d2d68b36b49aa81350efc73eceba7e132b4b48c9a4284e7de232982e5b0679d969c5ff9ee3d34c5efa3b3f8693e0e8b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    167ebb1cc04863335b116f0f0d499dcf

    SHA1

    58ed938f7dab261421f893d63a2595809c39dcc7

    SHA256

    21857248db58f9dfc9279820fde209eec27bd3319690cc6dca763a529bc7148f

    SHA512

    8b89f3adb581d84ec52a27dfee1217057c73e8c7b1cb15cade151083119e2d9664456b2eaecccab153897237b6c506f898205abea9d8c6419a58a5aa746e2224

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    080ad1f1451e870c83eefb6ecdb95500

    SHA1

    8633011b42b1bb9b2c893c0f9ccba7f27acc0605

    SHA256

    e03cef6367aef724a71bc9159c4fe5db15b930b7f1385a87fa327efa8b3bae62

    SHA512

    9867f1fe4fa4a8c24c4688c4f9d56cbb7d9cf32842bb7d706d863676551d6f78d4d59ca2709f38614954cda69926ac568873a87a3ff37a18bda769c63a699ea9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a94ac03408c1113d889f4051c98d5d9

    SHA1

    c75742fada26ffdf0c5e1fd71da2cdf4c940c7dc

    SHA256

    6efd1ed2baa05dd8c635a28b6b6fe2db40531e2a5d3669c35dc508f77feeba9b

    SHA512

    5e0e33dbc9a26f9fb96403b53b297047e28ecb1db5fa3e98799d366ca7bdc37fbb9ded5551bc25589c667ee93d9a966d07b01778112835d17a84049026faf0d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    624130ad1e34aec8544ca7e6ec61ae0f

    SHA1

    7266148f6f27b468aa4739e6f8dbd29cef2f0d79

    SHA256

    810b14bba9123c4ae9b4d5392da382ae764a6e179450ab783cad36c0eef32e46

    SHA512

    99404063df0c06e03364dc1d5a010fda438b120f0408a3127aeaaa66f5638290e39fa4faffeb2b3937c1d33a21abb597cd8cdb683a625c89693a90b69ec5bea4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f4376882f28646f30b68110409073aa6

    SHA1

    15b7668fc14f1ba899bffabe19a935cb3bc66e20

    SHA256

    155b6dbdcd614e296b992e28774fb7ce742ef0c06b606f52b76c2c596b7ad955

    SHA512

    0958d68a3afc85397761889319412feee20568501b653fdeee78cbdebce21389ae8248b05414202e1531695c3fe2230eb0087a3a75f8434439b9f161bb8d3e23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    024b63c96cca10041d24563a58c4c0a1

    SHA1

    87556536d27e390d237a22ec5774cfe27e901dff

    SHA256

    05b8ac1dc22a7802a14a3417e1e65210872e9c95ac80e2d07ba512f038ada528

    SHA512

    a779ba6de0f3ecfdcf054c283f0aa1b7b68948b2b04c094939cafdb02930baa2873b1cbd8a677785a1feec712e699f8c7979c846481d81553d4e66cb0747cfbe

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6626.tmp
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6737.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit