Overview

overview

1

Static

static

1

libdshow_p...8.html

windows7-x64

1

libdshow_p...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19-04-2024 10:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libdshow_plugin.dll?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    6KB

  • MD5

    d372fe5cc8090b70df30efc13b5e6c0d

  • SHA1

    0bb1aa0835a8f81589591b35e210850a60e22516

  • SHA256

    bcc264a795aef3f2c816ec6c25f85a6aa8bf7039bb938f0309045afdcd89a115

  • SHA512

    6d3b87916ad7009b232aa00954b8a36a2603708ed804afb447570009e28445d095fc713f71d30d5e028a48f4d71ec9aa54cfc54ca22f11a102ec88be53297491

  • SSDEEP

    192:ZMiPMcMHyTDSD23JFXz+GB/lo3EFMvmKMDUQE8uI:ZXPMcMHyoWXF/FE8uI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libdshow_plugin.dll_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2944 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1252

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e0a2d04fdb4b75d66f42c343f87410f0

    SHA1

    cb0b14503298a8f6e588799b66155ac68cafd6b0

    SHA256

    767b65faa78024f395abd0e8888c33e342a02c04775c9cd9ced3bddf0bae8036

    SHA512

    12e9229e185f7a82da10a97fad5f3b6fe981f1dc27a37a1ed7ba51ba073e121a0b5dfd8a6af3a4477de71fd5c71b6ab54b6696bbe9afb9e650c4330d385b0263

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    49b20ab121911b8a483c0b0820a5e2a0

    SHA1

    8ccc3683f83a1e966a4e24ae4a7f644e12e872b6

    SHA256

    664dada4230379f1ba6c244a785c294b4ed9aff7de21088660edd2afce77db81

    SHA512

    69f1c8afc1ec90d4b6b531f2eb99b6101c685a86ac0afc445f17d1f33f65d95f503c10ba9d5af7e89f36d639fbac7d62f1d43ad83b57feb28abff0c96ae1b75f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc61ff775d5ad5e6f9cc331e1cb3a1e4

    SHA1

    184214c322feb1915236db8e90a99f10148a0b56

    SHA256

    9f15639b2794427d3e0f7ba6e4184616d028f67b230f29abf516e827ad7b6ebc

    SHA512

    d2f7928c4e6b8e0154d4b6660ea08680e3d483c1f1db47f370d0764fdd91bca69051d6ba7f604dc7e05e532b3c4b8d39e0f3251a7107f536239633f4ed65fe35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72ceae7b8397bff086c0b058cb38313a

    SHA1

    6a8d41916b765180aec670aef778fa6946c75026

    SHA256

    d93d9613a4d8712ec9aa077f59afad8b4e755597e61bc11d3f14575ac6d89113

    SHA512

    c63c8c8e0b041e5839a275da8b9ff97291079dcf884a9150cfc24390c3c95507267e3ca79473d3acf131db969c7cbae90680d0e4eecc2aec10780f26ea94e7ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    936b43579b372a5ba9b797bb31c4e398

    SHA1

    c221776c202e9e646b9df1dc16bf546677961bf5

    SHA256

    ce28526b308c39655a3dc8682ec792ba5a2ebd4dedc4eec1a386e9ac960c5568

    SHA512

    7fda16db7c0676c9bf81fa8df3854f07ec09114f47c5059d29a0ce3fcd03a6783449f5cb4dd5c9c6306601aa9f3ca71126aabe14b0521ae3cda6c36191b12806

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5a2b57ab97b9c546c142c598869c5f14

    SHA1

    27ab0fcbc361f97f1ad326e9b3dde48fdb8166d2

    SHA256

    5de4539a092b802d4fdf0b56f228451cac7e68da3651ca87bba930e07b76f900

    SHA512

    73932af9699cc12e0f14dcb8fdf24a7cad0423deeaf937260d958b55ca84208fa65c4a6b158149578e15bc1fb49e808dedda646c39f9eb76c48af76d298452ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    861bd76ec1551495a670bf7f451af86f

    SHA1

    96fcdf9f2c5eb240a91951aa10bed188416f91c9

    SHA256

    8b18dfc5b16d9a503a3ad860e5fa905cc5f5fc746f1e1f8850ead7ae6c3f5b44

    SHA512

    bb5047ec68154703ac77852364d3424cb97aa1f77e706d637c190c98a5389564ac49047fe0d60d0013aebbd44e8ecaf17971d701f96c37d213560eda8fff565c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c073c278ea327586329a10ef84836f08

    SHA1

    e226f1a229e65b0a2a7481c28148c6ee190b52df

    SHA256

    d708cf3c9dc8ad2618a4933fc834d34f74b7cf31a1ce2145c831c54b69c197df

    SHA512

    27f9153c18187b45e8a5de698cdde385ca0aba6413b7d285445c629c95fb0332aa8593e679ccdec826da95df94d76c0db13d3c77f35b4d519a6f4bc60e177332

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4233bd70963ad2b7ea3868cd3da83c5b

    SHA1

    bde1ba82bab9c9c38abeadda9211e91d3185a891

    SHA256

    9a655779240a8d222e0f40fde6e5808160f808494df34f5897dc75a81a184274

    SHA512

    17577a6eda7eb5b37a28f5dad216fba96d7c586447f60e2f2137876c1db903cf83e77655cc5d52af3c5c4b98fa3cfc6286e4b53a93bc10a8f1d90b8d9272f248

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c91e9584d2706684e922329e6fa482b

    SHA1

    d453165a00991488ef570fd4d5541d9e1d661b20

    SHA256

    e6c1dd01c83e7e1ae2b2d3027d66f01b304bbd75ff31e8b629811ff51c29effc

    SHA512

    358b26e152346daad8b916c51a5a980ed084fff129ca82f81fed5315d0dfb94ec4332b939b94b7ecfe2a102e1b67dff5e56d423f20381eb8d109ade8eeb90b7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e7f26fb6067230f004a14988e91a906b

    SHA1

    6e1c47f8f829ff50b469ab859419e57ca81f9962

    SHA256

    95c14f66a105373972f4df0ace9fa55420b25d3dd8fb7762a72a6e4ecf76afd3

    SHA512

    486b20f64b09f22b8704eb4cb6fb309b553c4e96c78374148a84f240f6645a2448d403d727c024555d82a6dcc2de5e8cf04ffa3bead1fc5866d446b71b7902b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3302dbe03478aa4e00418648ad3f7712

    SHA1

    926d4f9621d44d71834dd3dbd20d5bf602424065

    SHA256

    f11f2acb6eab547a2b3cddde23931398d745973d6808b7cd6d9d1e560292032e

    SHA512

    b281998097de821dd4f10bb4ab3944c80dece3d1b620470601e28a204961738f4ac81de137253ec32daa6f4c038462d3f71885ddb90bb27a10c9f012f2949eff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    84f88d84f7c5bc78646bbd46299d492e

    SHA1

    b0a0bb1731f061ae44ca2e871677be29e20ba4cc

    SHA256

    d460d64e36e7a421f1f0b648c5f57ab3aa00d00362d99376c613642508729f70

    SHA512

    d1430957520873c6d93739a7d5a4ed0857e9147933c7c834ebff2f548b7355a44df3faa3feb82b455c73aa9095a4e999646f55b7907443877ebdc3cad6218c7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61f4f0bc7845785d79d2fb78338e871b

    SHA1

    20e972274992923fe75cb4853579cff9e87b887c

    SHA256

    90763a3d5ba3e4ba76d229d78a8d0966ac2eb9f83eaf3f9f47be762448a2b489

    SHA512

    aba38f9d359801589d3ec4bbb097b6e15bbc2e5d99aa23eb20ae5562ab79f9f9c1d3e975d44079235464dbc82a2b834e30c8b2ec8705c2e379d5ff4816df86ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b77311bc6063047546361072113349ec

    SHA1

    a0af7a7732efcec45de236c3f064d06c43a23632

    SHA256

    43e360087ade5dc5cac2bcf7c81b4d8851909bf5afc2921fb507a6df921d10b7

    SHA512

    f8043d456a7df6efccb4e3e700b7af692b1a5be73907c8b4eb423c6ddd0b82f313514e18e1c88862c59bac467f2db586d0d9463c9c9e78382b2e98466e9eea6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    89f07b9df2cad7c09fb2458010bbdda0

    SHA1

    6a69adbd363258e15abff959643b88de2e1723ab

    SHA256

    dcac69604b9dad98bf078c9d9a5c6509bfbb114384bd1b552e2dfa15f0f046c7

    SHA512

    bcf4c429357474725c4a2be86338d75e488e161e28dfe3abb4609c292199c676bcdab39b147887f1e8b31888c47563913f983bcc6236219ef3326b0b9176b7f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60c08712cdc8007df45ac8f914d9dfeb

    SHA1

    243d8f711a9e64ba10d1fd2e38835618d65da23e

    SHA256

    7b6940fb9255efcbc2b0aaead94d32f6c3cbf64df616b1c31bce3d746b851da6

    SHA512

    cacf123b7d6b8bcc5ba87315116aa0a6355703368b11a11a119060076c51fec44e359ce6cdb566e9ec2e8e9119aa049ce2f12dd92ab62b34ac2e243734ff3327

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    79198a38bd23b2757c6b89ba9837f4e9

    SHA1

    6996adf1a205cd4c99104842a62e597b209b7405

    SHA256

    d3f79e66f4dcb87844149b09e775678f7cf4256b53884e9ede004b8e4669fbca

    SHA512

    daec033dc59e9504c07d59a57f73505ba1a3d3a48337965bf4695b27a89f1033b4f0d5ba3524d64be0a3db3ff2c3dbbc2c7a9de2c742ac0e84110a22dd111db4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dba2dc94ed31c05a9b4259bbac69fead

    SHA1

    611e751c99c17dbd6f3b2ff26213349e1f55c81d

    SHA256

    f445a02725f72864188e1a0b868fbe635d86f21671808ae14ba1112407d0392e

    SHA512

    80a6050b3d7dee878a15da01f674d0111b9bfee20015e4a7e3f45a0dd77a5f7ed49fe154c92d0ea59af81debf8def64465899b4882c0b28f29f192d8b872ecd8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2B37.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2C24.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2C39.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit