Overview

overview

1

Static

static

1

liba52_plu...8.html

windows7-x64

1

liba52_plu...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 09:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    liba52_plugin.dll?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    6KB

  • MD5

    19775519a7b5c3db5b1cb4b2e0602be8

  • SHA1

    f31844d0df801223a22791ceed1183f3cab7394c

  • SHA256

    6c597791aa46025541ba291c5df01a7b5828baba46359c0be58e6a5f7cea87d5

  • SHA512

    3c55b819941e9063183bb46773ccd1f7e2de041396b0855eada952025c246764f414b3d9ba5599f191c0221f6541f7a8b49c420768fc87bce23f337f4a6b7f43

  • SSDEEP

    192:ZViPMcMHy6qbDfuwFXaHGB/lo3NsVtPGVDUQE8uI:ZIPMcMHyp3Xf/yE8uI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\liba52_plugin.dll_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2512
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2512 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2224

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9eeeee3743f1e6705520cc7610678cb

    SHA1

    4aaeabf18f5449f8b83aebdb52a825182f6823d2

    SHA256

    5f87414fcec910237c83d0598627291b2490fae4e783f6d56496fbe9188e2671

    SHA512

    afd7cba9c3c981fc58a59b44f41c8a3127b6552c1e2be3953b8f7f183fac981942fc8e02fb5ae88a2201cc4f8e3dace5b581f19cb1da9290c0561f82264cd2ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a3a9d5916919d406c014d5e55e13a6a

    SHA1

    7f3b16dae8d6419762102e9823803236276880ff

    SHA256

    14168e5cba2610fe35fcb6974b69461424e37ef2beb89cd9b167e082223d3314

    SHA512

    f432a01a3b63759833d8ea491a8d7480d9f5e387ef5656594df8e797185418dd320fc3036f2e8a2611663db690f8c37ac581d6dcbfa5f0900e54e0c3b615fd15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f20f764b683e81fe0e5308d64846b9e1

    SHA1

    a0c4f0bf4b0bc5ebb3d48b7198a304ddb01193a3

    SHA256

    9a859a09a8817d10db3c9b98c8c9ffe03fb9d78c652df3d87a020aaee47f776f

    SHA512

    6a666e3b0c2b17a17232757f7ac5dbee847d3a06c5f424e48a727b767664de46108001b3c433cf550dac8550a88e96a9332047ee31f3c3b94b0218aa33981011

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9bff21575b43fb96893d762e35fe4809

    SHA1

    efe9ce8ef1479655b7a07749b60eb2ccb5d8bae3

    SHA256

    4267d9afc98914b5e7afa68a18b5f57aae6653aeacca13a313ca9db1768991e0

    SHA512

    0e260bfcf052df2ae31ae21c5454f1ccedb4d14304f17fbc67da9727616a99a7227cbaa40929b4a158eb874faa1a74d36ddb7fd47be71749e84d2604a11a34cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    67de7c1875eaf34e67d689bc7436dc44

    SHA1

    0bee54a7e36e1d08f2a3b163bc50ed3095686060

    SHA256

    7a001565025be5459b18ec057c000a7217d81dbde9c94b9717e35c61a77852d0

    SHA512

    91f93c7e24928379f66ecb6e729a277b3b05d6ff0683ebbdba73db40ad2d69949772bd79d099fe40b5e91beee6e13d05a9b496e9445c39dae737d73d40bbca78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0ab987268b2b02c9886c2061b6c1db9

    SHA1

    0912b2960c4356e66005d0c2664ecbbd19db000b

    SHA256

    be76004a72fb0221a422cd33c18a0bcdc4ac718a4bdc3d5ae0dff2ec04ca0078

    SHA512

    6b55e1a762ce7119a1d2deea01cd4c10a970a771cb0d82cb10d81ecbda97c58bb059d3bf316244acde66f2d2b02287a56d52fe80b1674d107b91194627225e6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fdc49ad2aac6dd2b9fcef7e4899b2b6f

    SHA1

    e40b19ec3a6afecda182bcc4b6aeafff42eecea8

    SHA256

    1f514f85cad4e213c4c9bda453fbceaced1696bd3a606d23cb7fe25864145420

    SHA512

    b39bb479072b883e8cd96f9ecb3ac2875f294807560f548b197bbbf59fcce27b288ea6decb350c2bb54b91bc3decd57b2ec026e9176bbcb63c4b5488e6dd3258

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2d00df646d9921621bef2450e301e56e

    SHA1

    f6c7a124b54d64aa5b41f18ad7dd1a6f236820c7

    SHA256

    51c6ecc832201b24ea62873461eda4a5d5c283393691b3e5bea2a13d0a5c63ce

    SHA512

    b882437f6533880e4c62ffb94d3565563854030f239a3acb7b743ed6ed12d1629d8ed73e2bc5ae6a576ae5b0830e94510b938a9f8c9a6236340596ea3e035780

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    015fc73570588bdd20137ea72651b1c4

    SHA1

    8f6fcc1e50696ec81ff26aa1b28ebc2beb05b67b

    SHA256

    f161361903c6f1c6f64f173672292bc24db32f3344bf7a5da1fa4854fbf065cb

    SHA512

    2af837c1d227e8ac44ba793a39b3924646e4eb7dce0bd1dc009a1594c5dd8fe943350f8b0327dd6a9bbd6dd84f6f62e7cf184fa187820d873a5330d56ffc175a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c9b3a3c0a0405cac3bf7eb4f446822f6

    SHA1

    8f96127d56c2205b1a7ac1f1c5e17e940a6e70f4

    SHA256

    3388248f2b94cd8050b72004e7b339c642fe41bafebcf89ff67bf440101008d6

    SHA512

    de9ad4aa5ec08dc502af34a8699a1b4b095110af2b8f896f4228afb74aceb2bf0586c71b0b0bfc09768d84aeadd168a36ab8f58e3e2488bef97478771ee5bae0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c685ee0a4d3d1a4f5354d5cd026787f

    SHA1

    adb5cef678ca817ab51f544069dd490bde114dd2

    SHA256

    302e8a3618af40d5cfe34e7d7bfd3e6e7da7d1bb7f7a48c6d3418e72a7180971

    SHA512

    c6903b563bb7bdbf36c6c907b4268aff9682ba3bab1817785f6d4ec86287b0a09b34e0c87645994d2cc50e66d82ff5a7c2c66390a1a6503c88b0dab1d37c5db0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5cd254748b9e6bee261f6cb9b9e9bb2

    SHA1

    26485414f16d33918751eccea5da23e3670cc83d

    SHA256

    d76377fc1657169c3e9a29f7254ff1ad1a7b2586d494a64f2271c4cba5779285

    SHA512

    ea665a2f6785c7ee21b0c4b0d47de3511a32ee0bc1ee7281a2ac268fb41e353a419c46a4e81fcd74e65d4de2ab925ec8884619a08f17c3b4931ac964715e2454

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    70eb5f6e107868239b658d5330c979d3

    SHA1

    1557fb7818c63307f9982e7c34df9161b2773714

    SHA256

    29912177b71eea44226ead773076a6b27a73790c991f20c38183dab7a097cbd5

    SHA512

    5fed36ed31a27dbed855b79268cea2f5dbc0743df17fd533cdecc8550ff04ecaedd134fe96a008189e4a6a0a08d10d365fc6a8df3ab06d0e8ebf2aa4e63eac12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86a0df4a6e583b3300b10c6faa9704da

    SHA1

    6616eb22293d284a9f141f6b45090a52e3e6a0ef

    SHA256

    9e698228c184020806ba619593f735ee8e4af9fd3623dba00e19aa686be99223

    SHA512

    934ddcedd1da05aad74ad50762f1dac383a21a653c7860ddbe8ba82723ebb8a9f2d3cd0cb28794f71d7e400bf3d429edfd264ea445347bcacb9c5a76dd7a2540

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6743aa4844f537725ba1a77008a42260

    SHA1

    34f74660d5653fb81ff5e8c8c32c257e103089d8

    SHA256

    cc9f5c8d5f5d7a735732f215e8346310266ae41538c5d81cf26cc82cb195d5dd

    SHA512

    db9a4777bc1306f45a78949bc095c7bf331e5703800e48abcdccf73b244d38647d0be6fd52f2b50ac12a09755cfa427c9ada0df1a6cf57509f0bdc22ef463486

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a782d765743e7d9a1b52daef32f82ef2

    SHA1

    294ee070bdb019f66e66d91d06ff2c99cd9d54cd

    SHA256

    623da77b07689b7daf619d84efb13b1db5d79e65a74be82c5cdc14cf3dc9760e

    SHA512

    68f4545020df82a0395cc33f6a86e5daef5a33a84171dfb20c65165276d63c6bae45d4936c46c14bee61b2f4bb2486978c30e90c01baa9ab2a6c334cd63ad1b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d8f54f984789e0cfa15b4e868b3e2f90

    SHA1

    b373b4a2018bb96a403575853c9d4bcbc515ecbc

    SHA256

    9e5e683c7c72c36dc6165144e29afc3462ac61b7ca25fbc3adaf735cf892593c

    SHA512

    22dd865a46b857b1ce3e9b9f5e2ade0356bcec4e9d6a855c445fe13136def9eb1c4fd7a4d5194cb80805a20372ed8247af5cdbd69113f022ff259716e076d945

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4cd581cb11e0f6884700d16d34e9e952

    SHA1

    1da81437efa49f9e4ae7c61da6ffe4feda186045

    SHA256

    561a5ec401f796afc0166ca82f5c76e87bb673b4aa60045f40686f75d061d405

    SHA512

    d2c58af08c99ada8585dbdba024826a89aeebd5cf4472697130e9172bb658cb7775366fabb0876a201e59e25fb23927265c3b22568c9ef64b012f2f05121d4e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    07deab15bd514c178f357e126b0c497b

    SHA1

    6b9c39e12a8a9bf427229999f298c160241bbc0b

    SHA256

    8653097e04fc3662ffacbf869a5235fd616874564cd2fa61251485e1b07fabcc

    SHA512

    bc23ee588c27ed032f400f02c48c8d72cf80e7735c2791e37bf9fccebd49d51f84678f70ded6166bbd3df1231ffdc20e9d7bab880983689be0fbed3ca1d068de

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2704.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar27E5.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit