Overview

overview

1

Static

static

1

liba52tosp...0.html

windows7-x64

1

liba52tosp...0.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 09:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    liba52tospdif_plugin.dll.svn-base?id=3053a167982e379b031fe9fbe2a1d57c23026a90.html

  • Size

    7KB

  • MD5

    74e0b14727544d9fd6728761704b71c1

  • SHA1

    86531a07c19feebec4c1a38e6cfd66bf061edc2c

  • SHA256

    98d60eef935b9ecff0f66a17efa832ca0bf1d0025b1da354bcbd4ce8f9fd5d9a

  • SHA512

    940ecc40c38fbe93f99cd3627137f5c5724bdd35c7451b0f1d08a33adac78c525f525dc0ba10f6138d5b2986bcccaf5348f1d209c0241aad134117f8a893e6e4

  • SSDEEP

    192:ZUvTPMcMHyx1dvCv/Qv/dSv/NvCPv0mXHP5BxS4v/yvST/lo3fdvviv/6vLgvbvo:ZEPMcMHyx1qGdQPmXHP5BxS+7T/2GcZN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\liba52tospdif_plugin.dll.svn-base_id=3053a167982e379b031fe9fbe2a1d57c23026a90.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3028
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3028 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4bf01509ad3277fa194f987e9e7df2fc

    SHA1

    fdedd80692ddfcc66a839b605be9456ef5ac46ff

    SHA256

    d3329eb3ced8dfb5d37f11dd71c3c88cfb2fdc13efdafc48f52530d0cc500fa5

    SHA512

    0956bc4114b8c4f54476d147a3d199ab846442ccbbc2fa9a667a5ca76957d204362fc6feab30fb42789cc81e8569cc7e1e663dc7fc5e04a4d667bad21a52d48d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aac5780592192e329ad1effa4c5053a8

    SHA1

    f4c0061eed973e26daa4a9fdb2ea83175a3eba25

    SHA256

    b13d6815676635a41599c48434b8391460a008022b4181ddc0454ca4122ac63c

    SHA512

    8688e69005effb4458b44c260ec713b872e48d773374d4137e5f4395770ceb1cb359d3c92cd0a28922479217b879ee0a5e73072f987d20c2973b62b5586d0578

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6462001a9dbdaad74ef1884af3f0267

    SHA1

    b122c080b87307bce9c49baae4351db341b33b04

    SHA256

    36dfca8d5b56f1723db1d909c710acf8a0d3de65eb46bc46a5597ed1e2f80a27

    SHA512

    d5175db2a5a244d69eadb857c0380d746b6089346f8a7a64dd559068a7308d7de83c2b6b7656b30e83bd3b3696b7d3f9c1365f51930ec958e4ddbacb38090d38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8df3133f4c70980a6cfe320cedcb1fc8

    SHA1

    b7ee6df05651b77fe883e829516fd71574a61559

    SHA256

    d84c82cf67aaf3ffe80b9a0eb614413f0405fe30743aa471894ca7a6999bc6fa

    SHA512

    6eed1d4f89c16578175abb9e5ae5973c6e29ea88e30540048175b6c0b8c64e72bdbc83153bc97b55f77ebd222a9382df574f6ee58409320e9087bff1c52d95f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0203c15e739326e1de56794abc30e4a

    SHA1

    dfe49024c02db73bfbe2b08d68c4380394e4590c

    SHA256

    4db39569f17da320f1a63c6a4257b95525dface2a3b9403b5197709effc5e9f0

    SHA512

    4b0007c0fb5afd4d360c72b5043c76010b3ee60ed55fbc7596eeca3e90fd986763924de8c7387df39dd37e8584bfe3402bc18e77564a9d22e1a30d497ff469b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7ba9116656300154dddfa955e47dbdc9

    SHA1

    ee0fe4121d7c79513c91df4583b8fd428528a8cf

    SHA256

    05c0ae7d863e49255791d143fe2f8d5f3fd62c7a5ec16bb3235ef524898ddad6

    SHA512

    29bd6c68f5f66739f41fabd7cb63b08f539415824d48dc56bcb87dbf5ec033c3285a3af50d658b1170865f5740839b1bc89a132447fce0eff463c4f12173b230

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f5c931f414af7f05f0d0f389e829ebbc

    SHA1

    06e1a750e1bb9b44a975682e4070a2f186c0f292

    SHA256

    76a00cd08c5fef2119d1ae331b031f85328a29f3ff31a204c16e6a3c621900ef

    SHA512

    d17d44f2a28c15e702861cac6a8ae24f19f2c03d31dd05c6b329a8d94940c84379edce1849b77eb14650ed9f115e92862fbf994184ea5e6bfaffbd735c92c41d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    73847d0fc83b7c7fffa38e6cde79f0bf

    SHA1

    26a9e5698b444c4f53b7c12e2317276802784ed0

    SHA256

    ba4bb07b8f9559b0851e2466d4703318fa6529de6c69a603e4754173f789e9b2

    SHA512

    8e0b39b703a839758b310d61244d50d7e5045f962ac417bf5d07faa4834d4d05d8ecbba6c6273aec898e231802c889fbea75a9e58b382cf9c61703e06319fdcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0a7a5cc4a8513bfa818df8fde335924

    SHA1

    ca173103367c1941177a6a56fceb5061769bc515

    SHA256

    e1670029d0acc283dd457e8fd1a3e3fd474d8306f9fb1f71af39407748cc3d3a

    SHA512

    4e0532d8fee2d50bc696e00ef016797bb47377b95a5a35bea05750f68e1c4fc5e0f2f5603eb1b8bd2b12df6673092850312d0a2ca402b3b6b44d1fc83ecd330d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee9fd9ff836cf05b877221647914ae25

    SHA1

    4a82975abe46fad8ba38a21fa78d2cc394838dcd

    SHA256

    744042c92a41340b128c3b2ad6965e9d9ff9a69c5fb80a33f85ed8732a99834c

    SHA512

    5fbcea81753d2cde0e66fe64e1b830ec26b28ff2b5c8d305061a5d57d900c975dda8bf09dde3b17dd7a92bfae8cf5d080556eab22046c78ec8bd4e83b138339c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c3efb52c400f5a1f021b59773e93b86

    SHA1

    a846c7445d3a8c46d4b4335d8a6103166aecdad2

    SHA256

    c5097fbe966b933f3ae27a92dc48d5dc73aa38bfe3038369d67aae7500e815c5

    SHA512

    cd2057cdfb1fdd48b174a9685134eacb4951a618a3e946c808f0d1492ff530e8e223d035f32e7f8918bd582d6d712ea5e2a7b77f3ff833d5c6b77819ac2cf69b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5564fabe7f0f5682d8b6b741db44b845

    SHA1

    71162b12f160f03edfea23492fa7b25d123e0c21

    SHA256

    d47daa59859ade25013b4f69468ea03426bbd5b97e1b9ca998159f136e653174

    SHA512

    ad0c1a4d3e54f1a7978d519309698f8e7a7dc760a742df18d3164c1dcc077fc174ffc144a2491235b0a80904766d423e0d2d9af538a2afa7d97197f424f245e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76118d0fa1d15c6cfa4148d736f580f4

    SHA1

    669a2640dfb4271e855837452b599e7812423504

    SHA256

    27693e69517a598e7662f317c7e1f22d8b784828066945e170ec2e86625fbea9

    SHA512

    99bc205f90fd461c1db6f2cea00d1914b8df302d6e204097b4fd17c36daa5b1fc9f933eeaee32924e1849ba2a9cf434625f33d5e325c9a01d71baf2093593ccb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8fea2748982135576f1587a540eae1ec

    SHA1

    ed3741dd3045704ea9f5547fe6c1d31ca5149719

    SHA256

    8c156b763006a6887f23209fc631a80c5cb81d07b559a286c10986f1c76160d8

    SHA512

    36f2a83eb054eeb0e10a037bbe524567c4fe84eba4fddeb18e9179e2553a546cb8bfd0a1a1fa551fa3b42d4f20cdf4d7631352c3cd193c4a2c72252e65cb191d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    05e4a5898adf6634dc0cd112669e02a1

    SHA1

    79eab026599d8360f60ba738854330ee425563d2

    SHA256

    e4b5974fd34fd59fbbdd9b4219fb193661110b50581a6cc3c4a59a93e6f783c4

    SHA512

    d2505fbf3c02204052fab2074bb9eff66cc84b50a1039f63a6cd9cb119395b6c23748fe680c6e28f58b5f6961fc4ffe5b59a5f6d30dc55007c3a74626a11e462

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac037e6552199a04b5f0b463d8651d76

    SHA1

    ae9197a4a86296047c480593db7f6e5cb4d2dd5a

    SHA256

    e4c76f9f87f22e89cc19e97db836f739458e637be6be927f731b414630328c98

    SHA512

    4d5bd6f3c53971a09fb79ab848eab67267848f5050c1653bbf1bd39e83e4fb637bed62564a1db637a8f789240acb95f3c033439738531047659ec6a6f7d38146

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83c7397b99c21a869953d80c7353159c

    SHA1

    9b92a79fa668656dd6dc4382d8ac480683a5855a

    SHA256

    49d16b118a1566aaec2070d3151ce6c4785e68cb26aedd81c0ac37e4b0b90cea

    SHA512

    70ceb536fb2c907e2f49e55e34e0c4e1b8d7729c6dd10b1483d0aa600b5a44bd7dc12849b5a4e7fbd76781d558aa62d2f5c508134346510e08e1a75e8f45f5e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b358146ae219ab05030241a8ec436d87

    SHA1

    dd6e5869b31c3a30d58c4d8f940ac71e6d76a0f2

    SHA256

    d64fc6fdaa8fe478fc0dff0bd03ba0e6d6c4fb8888ff32fba58f1da8f5a5ee7d

    SHA512

    a8e33f2637d736f36bf729398aa54b3661940b0c127190674ba98e2d7bf3a53e3f87b28571ca9b1a568e68d8822bfa232db8409dc9fdbfa401b0592ae58906aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a73858b6c553a31243ad1b989fe3b8aa

    SHA1

    422eb7f55e64239c168aa756583db6278919df64

    SHA256

    99348f3b7de1617e103e9bc766cdb4317e0f7cb4aa8f2add62584c351bac325b

    SHA512

    2b5e80d417fc94c6405e607b1d6088d68b7d17c1822ee07b6647a51ded8a6c55c7f70592816e1379bda2941cbc31d611eb0962bd0c4ef530d93cb783af76afa0

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2CAF.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2D80.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit