Overview

overview

1

Static

static

1

libyuv_plu...8.html

windows7-x64

1

libyuv_plu...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 11:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libyuv_plugin.dll.svn-base?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    206KB

  • MD5

    c53173ccb3bf5c9b605bf8362b76f1fd

  • SHA1

    7e41b9efea1fa3d1f9e1b2982dcc49a9d935dd3e

  • SHA256

    8d1779feab453155606992d42a6315f6dd9d8e5f586d2d2bc6c6ec859ae1edba

  • SHA512

    ed35e14078b17ac5d57c7d2617511772816f66e8daa19542f6ae5945b63327b9dcd24ab4f2daf0598e8d95a30fb6f3414ec719b60338610b1784ead7fbfc2fa4

  • SSDEEP

    1536:eh/FHvYQ4ECaYd4m2+PksEwjypms+ZHMSL0um0Qive9H3UVE8B:eh/FvXj6MtYJRAw3vjD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libyuv_plugin.dll.svn-base_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1680
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1680 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2520

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be0c476034f6e89c0fb3b5e0ae538eba

    SHA1

    3458bce3efaf68f0d8b2c0f57937dee5805cd02d

    SHA256

    fb8a95198c1c419c87e056d92ccf00fdbf30b0d81e50bffcdcb2eae818879c46

    SHA512

    5aaa74c6f5e2c2f7149bbb31a5b1fe778e0600c38acd3536b91f822365b46af71e0f1e8d47e63fbc47e8a361f9438036d3c37fe276f721f8f0c8dcb44269f823

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    048878771f8e021941a493a0ec9de6a8

    SHA1

    0ad2680e09c1184fa46b3662f57ed3d191a94be7

    SHA256

    4f5c851cdc0ac34fe811aacdae83706c1e667b68cddcac825606bb44c37bdeb7

    SHA512

    707230cde0d64614fec7226801b00c2582531682df3ca0f3c93daf3220a40bac73dbd9ca74784daebcd8d79ec11eb97f2c5d863802ec635c70ca5e0d63a36d24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6fcad04b499009b469b296964ba49122

    SHA1

    c61f0a20742cbee9f7e3b9226e8a6714b09854b8

    SHA256

    e6afe38302b18ac366877ac26f11f91b294803472633ada79fac0ae84a75b715

    SHA512

    dba55656afb009d69fb405d35f604bdf727b0584febd2ff0c388b23fef173413b5ae45b1ce2204867d3194baca5a3bb432ffe36d814831e69b5527543904a395

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a77f487625e370223bcd753e7f0d601

    SHA1

    8caf5d23d743cbbe2a7360807bef9b723dc7e47d

    SHA256

    c409785d0ee44f6bbbeb5403bf011f6409c4c32e53c64dbdb4263d2cd42e4837

    SHA512

    c2caad672a3498396b3a58d83b3ba03c8a77b37018076cf77a6abd9287936a00fb4b857d49d6e1bb5a5ea56e48ab03c46906389cf3360bfc89a6885eed8ebecc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9418c0e431cc6fe7b272b6c9fbec540a

    SHA1

    0521d19931bcae7c8b0786e6489799c3a4914a20

    SHA256

    b8509efc80bc207b65c22b57b889e3b9c1d3648ed439bbd19e6937b807b29d25

    SHA512

    3f576d40368c6590c17eec71c194980ce80042eaefb2150e3628199792dde86badebc0d5b4ed0542ebce115603766afa49dac5b91de38822bde768bc3b32691d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3652ac356792dd1789319cff40df4b52

    SHA1

    f68513b63f078fa266ea15010956b4dc6c1b75df

    SHA256

    cad389754517c5f70f4ff3dfd0f2574528d4cfcee241562a2fef5fa504d82886

    SHA512

    3de053eac25e89063e8461c806642468e0fa901ef5f3c6f6c6838e4c86eee23bbf86f5af5e0efbc1614b73cbe0577e25355fb41ed4e3db97db35dd5fffcc0be1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a5a30e7d1c86f1274a26056d27152e9

    SHA1

    fccdf0c7af6c653d5560a7d72f626d771d05968a

    SHA256

    2370a1299c1639c01fe27efef578bfc7c603b68043a27e90c7a67a1086187e17

    SHA512

    6cdf298a3f06a9550394ffaab329efa598e5588c23b7752cc1bc22d444b04d2f572f210f22f78636c3041e6fc09f598c346f0d6b15e97e364e78a5b730d638be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f0d4f5c48b4ffd5b14da9a4611cdc8d

    SHA1

    42603fd4510b15338e930a3f569f1e419236ef9b

    SHA256

    7777b37e739ef221e63606bd04fcf63da05f0ed241cf0fb01480e8814287f6e7

    SHA512

    973518e2979af11106ccd574446d4b061f22f888afdb4cef75910120b82d7a46d92b5bdd43352b6d0a32e23ebc73ec920baf27b6c7e342b2cecc68a36c36758a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7829c394032146ca5c48e40cafcee45a

    SHA1

    4355c10d8d9d0d75c6d3fe3840a60668ae12818b

    SHA256

    e2da11de522d192985c6b8f28a885b2a35ef09751f504da333be176bc2a7b202

    SHA512

    163c5a3251f6a9133937358a02efdfc055e0c888eef18f755e9abedca49bb5a961eafee221eb63721a8249dbedccee1f2631804e20eb9805d8ac0b03f5fa3961

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b2b900a98db0110da8aecbcc66c3f332

    SHA1

    25695bf756ab2b12662ad49febe07b6c64d9b1b8

    SHA256

    31cb26d6ac048e6fc9948b5a7cab5990f52d2cb137f1987a00adf82617fe986f

    SHA512

    f3ccec1b59f4a49f3342829401f924a0cd6a934c563299dbce347b0d6b077be65b7855321987efc293e87ef4c74faddc0041270fc7c659eaa1ff1908ac99765f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f82b2cf45001d2f188c7cbce65b81ed4

    SHA1

    d5d7538608e45f3a3b49007a18167cd5f9736a64

    SHA256

    e539e389564ebf14e7e5eaab3a279edd1c39d7e40c87859d2bfd16d4b3492a9f

    SHA512

    d4d92b6f1dbf9504a7a99df038a29ba565199569188f5317fd21a32993b2ecfe91501a7ad6a987162a304b43878fd7ac496267347667ff58bfc1b0129677a2e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    212b8ae05f82022ac5547bc4d3fb97da

    SHA1

    b7dff4c334b5d716f8d35e8de0bd0f4ad9caa28a

    SHA256

    816035a5f524c3f20e1a85897005103e24a9a235fac716bb0d63865248a9d6e0

    SHA512

    33ed69136aa2c8e0f676f7c4a5e271571fef3b9c82acd7736c66975b8be668697efea7e4f0aad41ecb34a0e5dead6e759b3b7ef9cb858afe96edf9d85076fca6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    275ae7cedb9f43fe72013b60acfcfd8a

    SHA1

    d8e3f46594f6dd219f2ab177e919bfdfa210b51d

    SHA256

    6566ffb7e9a8593f4e006675bfcf7b67e152302c2c276dab66f031f0edcc9edb

    SHA512

    b2453e14aa27c016be8410fd69f9d08d1414000e7e80969ebade28ded8241d74f8f3d9c400e03f8d56643ef66d5b60376f303b59a4892372f9816a23d5f36f23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    43f34dcbe062839abd0ad4b2074fa237

    SHA1

    1c760acfa5dfc304a68dd3d7bcb93bc2a1c06aae

    SHA256

    36c8faea634745bf6d2af849e2af7fd30c48bf5e02fa80ef4cb7b8a3d1f999f2

    SHA512

    d70c3b72bed5196cc4c82c591def98d8c040a7d9237026683822887e8fb0adf3c354c8814911d013cdb160dfb5eadb50fcfda8fa5bd55f87b4b1213975bf5add

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3966f3d486087d565dc113442247cf01

    SHA1

    89b0a2aa6bbe598a9962ffb7227d5f0b10919e90

    SHA256

    195f30cb3a673ab3c460ca4c7d467df6fad6f943d90ebd57bb0d937be7453f52

    SHA512

    bf6e378b5d5673d700ad0900e0960190c586a42cb5b70f308c4607f7857e1ab837765446961bac4cf7bdc66575540ad5a06d72e68fa672202b6184354f6a6818

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    759d11188b9e9c8624ae06cfb289e10b

    SHA1

    5c104d1f40886805891e08d076eed162588765e2

    SHA256

    31bbec90537df54bc65874204614299d91bc64f1b5f3f812874a541a9d32503b

    SHA512

    7d1f6c21fac143542f4be0b738f22da453c2df568aa88364b7a334a28c2f60352539cb1691e379f54e9680e6a6ad8ad0aece7fc40368b567683df9ae18839edb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db3efe3892fecf2d583b4601de562a27

    SHA1

    2e1c89c2b2ab17c3918770d5ec5419488e274f20

    SHA256

    5e84fd4729a3504739c3c66b84137dd8464fe71f4adedffa438a7839cbc71c18

    SHA512

    7b1f94c6c544eeb71dcae8a62ac7c801d64dbec160208f37103a3ca5ab7ba48d14cb9aea3a7319ddd294021ee32c61fbdabb42aa6e519fe7f27c3171f03592ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7401ac5aab01278713e39457ac02f4ff

    SHA1

    f14488cbe012ad432b1647ce08b3bcdefc357fef

    SHA256

    120db85dcc3065a26799f651126c84d79b50d187dfaadd3b3a47044d5ec9a408

    SHA512

    fdc90477afeec35870bc14e8c35a564c568d4f8b4c3be4eecf8b54269cf4706d30dab21097623ac0b46183568d7a97957190ab902b10416be013780a3ae12592

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ba52eaba0343851005cd080a124488b

    SHA1

    05d927d9ff9aafafd513be2a67a5d3449e64b185

    SHA256

    de2d0e3051fa1b2447ea0d0b404d453876527e6e087180ffc46eac3bdcfefeec

    SHA512

    1a9892c40b68ee1f5d072e25ee3d49bbd906f87dc650f08471625a978337279053e70efd666939984db940e0c036c8c44c18d1fbbf021d307f7ed609c543c34a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    49838012445d4e868ecf28fffe9e7cf1

    SHA1

    24d6cea13363c11fc95b93551968502c3f59c0d6

    SHA256

    54e10623565a0673878711a9bec9bb6e552840b3ef9543c445343bed7d339de5

    SHA512

    8abf481b9e0503966b86779c457d6132db4e45a51fdade6a8b4f15cc1f452078921334b2a9b17102ca03eff3a3b2d522d331635f0f07d771f852a959f82d7adc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab657A.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar663C.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit