Overview

overview

1

Static

static

1

libexport_...8.html

windows7-x64

1

libexport_...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19-04-2024 10:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libexport_plugin.dll.svn-base?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    226KB

  • MD5

    7904b3d3e94e3bfe301ea4e42adc9af0

  • SHA1

    83f65055dee5536f237d7b6060eb786cb2519dab

  • SHA256

    8f5eb4965b49ecc5470b352c3cfb525b249dbb5aa9843c502f033eef7c89cbac

  • SHA512

    bfaf9538a905bcb1138dedef375b24aa1b59ce7a3344bcdeff3c6a39408c05a2f263b17d04fc5484cf8102bba71c98d56846590cfe3464eecfb8a81c513afe0f

  • SSDEEP

    1536:ch/n3xWmxBz+TdLPXY5SRErvHw+0gVkmwANP+7c0yeU/J3B3OedE8B:ch/nBeXcjGgqmZNP30ytJ3cu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libexport_plugin.dll.svn-base_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2320
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2320 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3004

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0953467867f63b50d7be6ee8b37b0fdd

    SHA1

    0f539727444e5e38ba7cf9eb49545280da093855

    SHA256

    b597073b9d8e0d7cdd1ee8b0a83e5108806b4314dcfa27c05f26600573a07a44

    SHA512

    89b3af6c88122fdf9b483450969ab2f5bf52a93e0301868a72efffad074e147b4bbac29693615351208b28ad3c949a60c9c8e8bf4e84de06f3e79ac37208427b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a4e2dccf16667207cf69c1feb35f8fb8

    SHA1

    0f51dcef8aaaf16c16cbd1e05c64da9bc71e7ddf

    SHA256

    d4d0e45e938ae2339d0b7f66e8d457d04b5e18cda8eba37e05e29990453ecc37

    SHA512

    35f0174405c4e9f4bbdad524059c139c1146a7d7707a64c4ce665b95426d826b7604f84a0376e71166554ed10fdaa1b2a1fbfaf2582cf2adb5c0e9c1dd5f3812

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d8fb8410db3f3c631bbdbf2a6879585d

    SHA1

    61baf5d20b03eace03b5e92a04f804951f2717f5

    SHA256

    356b02dcea58e01586c950c57ba95f7b771cbed01a2659eec3cb8a906aed6fa3

    SHA512

    60a857d2a0bdecd4d01bc7668c65adac726b80ca500518221b99d5528dab78a10c2cd10003770113471880759883d20aea70032aaacec3580cc20e0976a0476b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    63dc2b3a3615b02e6cf4634a488d5154

    SHA1

    616b8b629f4a4ec663a0afff1573ad84608a19eb

    SHA256

    423ab221f136b11f6debd0a5944b90e1ae525541f7246c4fdcfced637b787a65

    SHA512

    d5cc03e5b3e9bd23e0f6ccc57f9d86a9c073069df0a98f37ef453d092f92f3c26e3a18944592f42b3fc481cd289a4bf38aef652bafef64dee1600fa9d70d8091

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    80a4922959eb307c97f60a430a785a8d

    SHA1

    c9c30cd2bdfb83097fe3940937b99b28f8155940

    SHA256

    3dcef00f3a1f02b606f0b630894ee1fbe5b5cae7566c47cf097252832c29e5b7

    SHA512

    c5376ae32b3e13e587ef4f4eb1aa83b9c20bb1c9fc3961f505f742e5354ee403b06e6c5d847071a31d912090e6d5fd364b386c561926f1703378f746b249b367

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0de01d54381f5075265ba66c42b1a2be

    SHA1

    b9e7f1c2c0f39c7479fc7934a6e9b35aed1c9900

    SHA256

    e8aa89c738a6d60d3ca2f165d885b1e1011b153ad0c969bf416af7fa583c89ac

    SHA512

    ee6ddf435c31ffc83ac14e78b7ea1fdfee4c96831e2141fc45008169dd55601c906f4fac920e8188c78cca1142e6d54b62dfe5f54c74e03437e7e51c186068b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    678463de3f3af68e24567bf76eeeacb3

    SHA1

    54b6825da0acee55d06a9122d2ab5897dcc4f9e8

    SHA256

    c662751bd9e5b42a07f30ed162c7c07a38a7062549fbbe149505e2c2f3fa95a4

    SHA512

    521b37ec0da2dce2f63aa8cb8d0142529cf84a06aa45936e09b96128de81a1bf10a47573378a6ac5c1f3ac5595a52b36eacaf940c010f8b6dc99368e0764144f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc81df0257c3c1faf77fed578a19fd35

    SHA1

    eb7c4202817af0c348d4036c1f7bdc0ec0b73d5b

    SHA256

    24bde20f3a634534d4ce33a7780896026d4bbd8f779ce21f9f4d1e239b1f9d65

    SHA512

    ecd856fc2063edc91bf9d660dd0fc22f1bd3cf72919df33dd2c8aaed322eab31c46afe6e125fe78282e9a9d20af681ce330ec534ed561d01bc346ea614c6d881

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2bf6a88e330d8882b1f1f33159672b43

    SHA1

    f3cc94436a778d1850f60245aec460d8a3cb51f8

    SHA256

    b6bbd080213e05b5f1cab0c114d8c5d18397c942a68f6f6c691db48807b34a63

    SHA512

    f2a0eb5581db61ed316009571cee170cb32cd0704c499abc2545d6d0db501f6ce27ce355d6699624983a74c0a23168c7acb5c791df5e7f69530998311ee45691

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4377bf72f67649f2d4d609e4a89620ef

    SHA1

    9d10aa73dc036aabf0a74f2d9f864a0578792cb6

    SHA256

    dcd2ec9ba2027a31a576348cd41f25771899905dc8243e822ea7f48fc7a62939

    SHA512

    108ceac5712e748d7244c9af20b3fd374c43c796a725940be52d7ea826ad714c6b222e152f1cd0f47ef6e3012e4ed9930142204def17cf85f369b8f93a25d250

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3990e29a70a1213e9abea7f08683eb44

    SHA1

    9adeae090b9beebb0f39221c92d8bf9007b199b7

    SHA256

    83bb76159fc2d73504ffc34f39e1ba41ce80afac7fb2236c03a0099d7a95a26b

    SHA512

    f66f8b8b70406b576e3726839a47bb6db308b8965cd1f720ea3895d3811975cd93b7e9dbee8c4f633e1a398ff92e5e4531cef8130fb4afbf664737a603edf49d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7db4dca6012176587b50a91b67e9fa0e

    SHA1

    56886806e9b0159709dfc63795298aa6764dd7e7

    SHA256

    83a02de17b8539f8e447a6295da8911a769f8b9b0a59612d74140917f607481b

    SHA512

    1e1c0f592a109cff432feee5b0bb0f976d4da71b91b2288ac32b71b747b7b67b56f410650526c9777b0e9696257ac5608f49e8ea224a33ceb8adccb976a0eb12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9424d980ee06fae85176e1da94cf250d

    SHA1

    a4b71de7b94eaf4947437b15c5c7c5bd70b06c34

    SHA256

    9be9bf7438b620173d6a7a20bf3804bfd4089efa3c3256701646ca7a98b412e9

    SHA512

    3f46c9af6efe766861955435af1bf8c79d18bfe0c578ca1dde8578d0892309b9062311eccc45dcd67d09db1cd2ab03079821552397e8142c70a8637bd46c01eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ac70ce463117a90aa8a41412cf7c632

    SHA1

    dcdfd42fd6b8cf74a068ade4df65e324a0751e5f

    SHA256

    f18a2904566e0ab6c2be8980382ac1b91a0d8d9745731da8bd38de989b6bb5d2

    SHA512

    090852ce23ea756a017e6f82a203d604b31bd1f33490f849013f64f50d0933c166c4e9fdcffc7beac929264f35c23fc9a22da287bcff05753512ab305aed982d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9d040976f031dd62c9be696256724e72

    SHA1

    bc45cc320c577c1287df8b746d49ea1e5c433530

    SHA256

    0feda273090fd9d269e5cc1347c63f41a30706c57c0f205168e976306d47d997

    SHA512

    1c93026c1c916bfe11b60a9f4e50ad33414b9975ec8ac7afed6e77dc149151b4abc028db48b41113e65968b11e0c9b9f405e963ee7cd9313e14f7d4c0614a839

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a10425becd3e4dd6234ab4b79a4e61e7

    SHA1

    17a06d05cadcba51f73eab028d38f970af64cfff

    SHA256

    7386982f42f5b65122f44d29ba52e487f5d8d381dbdeaa938df0c772b7eaa894

    SHA512

    2ea962f212b32b291edc4d21741ddb5c153e726549639e2bf0bd3e21f7e9a82f2d331fe33e8db3a8ece9330cb02f8ea3949db88f5586c9ce4eff3720d01aeba1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6490ca5f1fae26d5eeab864bbf34f9ab

    SHA1

    da84b56801333718f3b4d0c3d8fe49833fa63454

    SHA256

    601ae137d2c9ecff92e5271f301b9202e25b35397045e2c54e4ce5badac23e49

    SHA512

    f291f59b805a7e8e76d51ee37828c57fac334c04619d3a2209165e47509f5ffb48c98c9e12c54e9c4665ac3e3bd021e4fa74a203d9fdff47ecc3caa272f09465

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    556ca2c821e9130aa791dc39ae4027cb

    SHA1

    2ffbf7f19698e78b35f44ae27ba1f5cb7b86eb39

    SHA256

    4548901197b531f71d0d8c2498bdeb5db0c68d76b7e61fe08122ef6c95f2345d

    SHA512

    708b677e10dc60103712d883f87a111abf061a1610353c81842c0ae4fb530b78454c70632181cc4ffa2bdf7b7e5bd68f8decd8a24a8fabd5343fe147ad2f266a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    695040529b9bbdebaef009271e9b03ed

    SHA1

    9e07a622eebd8df61d24e242366698d0fa47adb1

    SHA256

    052e5e39b9f45bb5ffa4c4310901cbaa19dbe05f19ba0bcfc5e0f5b5034bdbbe

    SHA512

    37dc6530b7307c5312206e3cdffcb6da09c169f1f9d71ed6c8733949c637c4ddf4165d4e1b9c2b089e02c4d5307ca71ed7ee8ca63a4260090ab859e48de85538

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab30E1.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar31C4.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit