Overview

overview

1

Static

static

1

libvorbis_...0.html

windows7-x64

1

libvorbis_...0.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19-04-2024 11:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libvorbis_plugin.dll.svn-base?id=3053a167982e379b031fe9fbe2a1d57c23026a90.html

  • Size

    7KB

  • MD5

    30e7d4559490c2d8157ea140ec3c0eb5

  • SHA1

    74382f069d3382557d4a8433c7d0ccbe336700dd

  • SHA256

    c4ecb765855246f24454e3e85cfbb61975e89c2c27680afb3cbb20dae9759a62

  • SHA512

    847e74aa2c147238a4add66c7b55969a136a69c5e952900de55989aadd7020237c902f521abcfc3d4f4d5ab9024206c79112c273383355fa268fdd78a7914e8c

  • SSDEEP

    192:ZapvTPMcMHyx1lpvYpv/Opv/dIpv/1pvCXpv0mXHP5BxSmpv/opvST/lo3flpvvr:ZCPMcMHyx1KQdufmXHP5BxSIhT/2KUrN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libvorbis_plugin.dll.svn-base_id=3053a167982e379b031fe9fbe2a1d57c23026a90.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3024
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3024 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2176

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    e94baed3bdb6b7f849cf6b7c7df58c4e

    SHA1

    a4c491d79584cdf6f47ea73226762a9a3d8eda8d

    SHA256

    79b6390a5ec5abd94d3918d3ca55f034af7f816a6d3220189d6defadcb7836bf

    SHA512

    f2e2a5dc6aa24fcc01601fd67f74a51ff2a597daf855640ca5b735f35b6128d0276f7dd9e98cbdab247d66de698d67b2c3e4610268d81b3e7c5137129203ce78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c3942a7cbebb8b686681e1a8070b912f

    SHA1

    79111d86f8bf2513fec97a9f2c51a7f4da428e12

    SHA256

    5b8434b241dbe4cc5fdc20f6b04e266746a2c37012f9d2fed3d6152f410e7422

    SHA512

    02fbf70bfe300466e2754da51602e71d0e9d2d41e25989fc88af68f10dca836d19f1b4bcb7861c62c5dfef4bf78209f9f76f8f5969d8d7a568a8057803f9dd3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2eb6bbd703e53b491f1ab358e449f645

    SHA1

    61847079bfbd86bb67d8c62d854dff479c89cad0

    SHA256

    b0a0e935075581e9759dd9d997148c2fc5d7452dcd597425f7a605d62798a537

    SHA512

    119258f45f9bb6acca23b1d309a0d0a092d00cf13cdf2e8c3df65e95cf215bf173f5158cca0a30918ae2bb500ee37be79558b301b1ce75b9e3961e3bbd77cb01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dda713e1ae806e4da3999bcffbc6a0e8

    SHA1

    ab5986704e287dfd44b9706b7e394217fa5162e3

    SHA256

    e2d2ae5ffea75a01953ed65f67fb3240d830bbf3ee5e6b5fd14055f32918567d

    SHA512

    0e390902175a5231acef7b21e6a38617ac94a765c91e137c6c922fd604b257f098110889327924aadb7267d95bc19198a11319892bf85812a52956b64dcefe09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dacbe0fada201566bba8e68bfc428926

    SHA1

    3fbd73f956276344425632d0ffb4384a965fe7f2

    SHA256

    079efabac76f157ed82738809a2c427c17cefe85513c4646c2f899018fa1ee80

    SHA512

    ae6aed22ddd5fdee9f35444977eed2b082b3cde92f8cc7c9e4b5a2c75b505761eb44935cb7c7d38b2f607b27ff0a17b9df594d7c0c56604b8633246b28b4d8bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8090b60684f188f2cd2bab1665208b15

    SHA1

    bd2ae37782c6eb0a4fb12db9dee80a72f0adcc38

    SHA256

    5453764e0a0745954b33b1841ade406211612ba009c7795166e1d72359b0d7d8

    SHA512

    ec1aa708613e28f64ae31bbd9d44d3780e855d9840d859f7bd9cdf00622efea3192285be736e025cf5d24b27bdab400935c6f682aea4ed6a37f6b33926ad1fcf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b52a7a75b8a50fc1ff9fdf1791346688

    SHA1

    a0b7b5b480acd00031aa8bcf91c48076b2962682

    SHA256

    82ff70c9c58de8cb042fc78890d8dcd79937f3a89b4462c6f11da0ca03716d5f

    SHA512

    1193b31da85fa67e401a806dce98565fbb9494f9f1bb96617b03cdb6a67a67e9fbcc57e6af27e3c8350d35c9cd6f3c0ca863f7501ea2f294422919750160c34e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    087db82c3643c4ea6bc1a41d086ca115

    SHA1

    db0830e8df538dff78e3c834aa2d70487516fdca

    SHA256

    52956d4a71b4587399563adc4d6252761add0939baf4687a9cfe9e57bc8531fa

    SHA512

    f457d164fa55054dd39ac60a476b0c12d119650adf3e607ba93b3bfd55ef14db2f221fdc72d9716b29743b05a4aa6e6c4fcd50be7db125e147f1f891c2aa3ec7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24e8ddf811abf913150cf21d0eff6cc8

    SHA1

    72278f256c5298283b48a32bd64cfb712d0b73ab

    SHA256

    e7796c91d7a9200139b4cd41da783c9c818e08a694eb69f9b71ec94e03870e40

    SHA512

    abbc70c9e9ddd00654c28710f8be052d9027760a92557ea6d4bded321fa9053cc958acae372b3b9061e8c7a10c9d5dbf51a33c2dbf64bb6179b112443e468612

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    826dd91d33b18188daa79eee0504fe56

    SHA1

    ffb2f7428af2a7f7fc43932249560a12df8a2965

    SHA256

    ff45aee25bd6129e594766ddba6e6b50ce9672e669096565c6c0cdf09ff5c9b5

    SHA512

    0c83336f8330ad7fb42407f18112129a3befb0debc71b3d0bb47c6c68028df1a1c2800efff17cc90994b84bef7afc5eb254444168a47717930f6235f977d72c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ebdf265af8b1daf7fd85acad6ffeb30

    SHA1

    ebff272b5e187910e3d74a60525bef7abdfb98b2

    SHA256

    1d60c73180ae3762bdf7367c99896b194c35487f709ebef966b7822cb6466678

    SHA512

    ad816872aff38d37c8f3a37a309e728448bd8c180bf98d0a775d1d810f09e07a07783e420f826d892a8406b282942a29c4269a21f7edc9c7187f4fdee00ac1bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a87a8ad074d827ce87711fa7c73db6f

    SHA1

    55dff0948dcbeb600eb0beb8a6c1ed123f857f2b

    SHA256

    bef73db178383ba184fcafeca595300edacf782f8bbc3184f5ea896de158b27f

    SHA512

    373fcfafcc1a511986de5911ad8745901923e0b4b210a14d1429deec64ba3842b3914afbadd211674cccceba1d14165353b835e6ae427a31d68c63b9b54659e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0af90cd07ca56975c87a25cf5795789a

    SHA1

    1448d2e44c5f92af575d518b6bfb6985e0882554

    SHA256

    accf1085bc3b570ac4f42960ce7788037cfced8828d963eff02fc24bac3be1ef

    SHA512

    bddd856346c2b2358cc96b7be9c5885b62b3258a523fa26a0fdd90e5a5a92aaddc3060468749d78ca1222de103a391ab19cacdfed635d1786aa9357561981be8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3dd13fdace139e614faea8ba0419d0b5

    SHA1

    87e60d457b66c38ad7932dae459f7d6b92b9c1d4

    SHA256

    31702aee3e0b9194c549f5be1948da9f2639ef06e6da2234fac57df8743128f2

    SHA512

    47464fd3d006eb05d978a51c637db74e3c8b944fcd288de64e610b781eb922d4cc2999449f1e84266767394aacfc8c871437727053c592e1d089c8bbacb1ffb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    16b187ba021041f4b260816132d675fa

    SHA1

    3c5c7f17041db42d89be77fbb4ccbda3806ae4dd

    SHA256

    94a7c2d26d13c5cf4bf3dc03f2fefc51922da63dbb944ab9c3cee292d9e09ad3

    SHA512

    2f50e8628cc157cdeb548e27331e6a63da281408284a021b97f22a55f1bc23a81ad20394cfab136232949690193e06ccb4e776a724b7bb3d06407eaebd6e8043

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a46e8cbb669d966d5c4feffe2d1e3d5

    SHA1

    64a02c408046d4c86269804645996dbbe52848ea

    SHA256

    09ac3a7da5118b961b1e629c1a5c62919edff44697a90a1afc8313c8ff807917

    SHA512

    99f59688ee0ba70f9a08c4c30baff8808a53d7dcd19ed825c362590f8cf671010f509d2d5494bed49629572ce9be8559234f1cab0ed93a7656bd27af256c7642

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1748671fb62357b30fd23023108982a

    SHA1

    e5cfeff9c82dfbba1a9843c11f1c5dec0c5cea4e

    SHA256

    30af4580c22bf246e9c88d55ff1dfc5014fbe932f01169b3bdbcd494b98bd4fb

    SHA512

    26ea5967f3c6d2e00f4dbdc8ad35cec625b4dcae288b7c0832579c20c7de1e6514f0fb07d326ef3be918f5d8c9998c38800ecdafaac8e967b3d1190e0920b025

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    444dd05a890250ba463dd01f22039355

    SHA1

    9aa66a1f33fb8b1a207aed38ce247b2460e02677

    SHA256

    781cec6bdfa83959be44e23789c6f1af3e64c6fe5defaad12a82b5b9ea33aec4

    SHA512

    4cfce44089fd0f481cd1b667d824b006b8c0e24cb513ba7ccdc09af8b08e7a2251d913189f525ca30731cb65bc5dc1260c334802d4e5cd511315bd1e9600c3fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95619d395adc6966f282ba4837026713

    SHA1

    2b1aa1998b60aa8be95c48d68ff58a8151911101

    SHA256

    159236a942dcc88fceac7ff65051b953059975c01fae550638ba72d57b790825

    SHA512

    42e2cb29c5ef4d3e57043a9b5a081f70fbe6efa4ffdb3ec979ba33e4de378ca435b89bcb6414a7257167de84d64006828accd35de233e0a718b4ef96285710ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ffa29b049e1aae29cf4f2b891dc6c830

    SHA1

    1a36f48fdae278478cf6b099730642834ae40b60

    SHA256

    ea9dfe7b3545daa5778d8b026132990c58655eb6e8f67611f07c37f2416f397c

    SHA512

    ec67fd376d6beaeeae7f0fda616440674b90abdf9aa2be5a09f6bc1c06fb82134693f05ba45056bb0cdf8962b373d20e904e209aeb7bc8580c60516de084a4aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b36aa2946d82913b7111610fa33a17ff

    SHA1

    cea1367cd4e1a194c860cad31d8776aae1e31cdb

    SHA256

    fe66daf2b4a57844ad02ccccbd3e40eab5a91e734dc02dbbcb71eeacdc33bc8a

    SHA512

    f851c6b98f8b611d91573fa1f43195d5a91a6b8447b6a944382735b676348438eb9b91668fb7136bd0f23c7954ee918b6ad7c53028ce9897b3ab8d651ffee7c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    af15cbdabf3c7846d60464e1a8e27069

    SHA1

    97d76866ed9e527b746126800b49cd47ba00bab2

    SHA256

    23229d8a16794e1f34cfe9ea40c87401bb86b4a1017f546642ad3fe938958da5

    SHA512

    d792b7c17f498328db108a9dc1e8415c1a0c87fc6b33fc9c92abcbc0ea86296369fd3093dae38238d5e2b2808f98e61cf9f0655ae2d7ff54416eff0a212df3db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3402.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit