Overview

overview

1

Static

static

1

libfake_pl...8.html

windows7-x64

1

libfake_pl...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 10:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libfake_plugin.dll.svn-base?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    226KB

  • MD5

    cbf58c38777366eaeec4615b25fc5580

  • SHA1

    f7da2ecde858a4528aa1bba4080df98d0aa20a64

  • SHA256

    61a1a38d2ff6f1f5fdf7343f682f5a1e36fde2012fe8118f1878873c8b501e83

  • SHA512

    df5d36dd418f95a904a4225fd00eed2647b0dcbeed32ada94442b7f448b71996d0291243121745e36462a511689f57c1cf6387619d0513d80b36472fbea8937f

  • SSDEEP

    1536:wh/pO7N2KaI7PKmLZE83chuBVHZ+b/OLMYrKXMBQghALXrPJLnE8B:wh/pWrb39RiSMYecBQzLXrhLN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libfake_plugin.dll.svn-base_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1444
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1444 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2584

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0faf32a495540d2d23288332eff07f8c

    SHA1

    0aa6d038944bf14255bc2501c53acc9ecce021c4

    SHA256

    e5b8906775874b62ec3ca6d97fdd4329ef21b142668bb78c803a7af57ef3640e

    SHA512

    3de8c74fbe9b3a89cef6332b479ba64264e5a04981861c0491902b35e1844216e2121251b51250813861ab201695099337de28db1d58d23b6cbabb0b824a2237

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a7b8b547d9cb74cf7d07fe0e63f16644

    SHA1

    dadf7c1e50887ea11fa5170cce9c4b2c88991719

    SHA256

    ace760d3487b248c9a13041dd15b26e53fc553b1e830cb58254787400fe40322

    SHA512

    ba15ffa45f2015eb5f1978a377d75d6d2dac0179c14288f65fcb6a270f26c4bc2436ea8e196e5ff823c9f37130ac28f24720cc71f6c9fde7173f8ef643e47f27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d113bfe804354ee0181d11eb2775ddb9

    SHA1

    6ff13ab18f28b4b31484899e7721cc7586781478

    SHA256

    1b877a6670b10d7cf313b5446143e29a7ab78059031688f5247d4ac067496d3a

    SHA512

    0c7bf35bae3698dffb7621cfcf07092a8903f5c5e39df7085c193b34785509ca7fbba49d714f1027463ea43389a902896fd7b368207349cbd99c3907c2f53daa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    92107688bea7a375804ed0d26a62be8e

    SHA1

    bd2341c6e4477895c15d14b6c81922722420c49e

    SHA256

    c6a558dfdc47f003f59bd65cee4a5e9f43abcce03edc18e7cc877f341482859a

    SHA512

    d36d439851978c201720a0baa89312525bb9d2cb935b7191eb78992e1e4c0492df06ce1f69095c1cb6534a42e783ef94677e976c48a60e0dc8e43d64d89969ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dea6fddcf598befb338fd317a341ed9b

    SHA1

    1d4f8a49ec683f24021cfab447fb552885ca756e

    SHA256

    d3c2df556fc5b977d3cf2371c8797276edd1b644dfa2b0ab321b8fc82afe8131

    SHA512

    2e1689efb6c9aa96eea1a9e7f13ddc58d880f299511663ad42633c8ebd8fa1efdff0fb15f85230f51965783e5dd0129a2656e5b244b3752b2a37cb03e7093d25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7bf1d97cde8d693fe5900ba2abe25cf0

    SHA1

    94ce508f6446a474d53516265e58a7814ede3674

    SHA256

    5f15646cc61cfbea421bb6d7b59910cb9dea51b2bba6ab294170819b18a2cd78

    SHA512

    b022b287b27b9b55878ebaa4281553f45e190d53093eb56837fae566ad3ef782c356eab8b4dbf08492cfc05e8663f0f7cda5a2d747077c73010119c5dcf04730

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    90b8df41d374ae979b3d7723b4a32339

    SHA1

    4532220681ff75b9250be569abe2f966492d9060

    SHA256

    d72b3e9891a42a97ca41aa6fa25f749cc41689bb61d54c016a9490e5ff597c7b

    SHA512

    0440a61066ffa70946a1e216e9277f60683fe02d6c61f08733289530f8383e7ea56e9bb9cfa04d1befae0b2632858607e86bde1f1d71bba642e03fdac3473d6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be40baa418267d561b4dc35139682e43

    SHA1

    e20e5271dca266e4392adb3765ff2b99a4134ed5

    SHA256

    76cc5c1b6e50da25dfbfb151bbcc507927e9565934047650994a73abf4ede0d8

    SHA512

    4e75ac02f7f12bb925bd18eccc9652e783a0be65934bf7ea5767d8acfdda1db7386ec8088cc7fae2bab3bb4f01801ee1333fd6b3447713e46ed99e8934636b3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7ae1dbd6b1854d5d4950314ea2249c45

    SHA1

    d80128381c9501d5c90197354cc4c71c44f017c6

    SHA256

    199cf3bafcdfef5477beba597744901d430145cadc2b430b3fcf26a4977fe1e9

    SHA512

    39c56d6d326a5dfaa2d295f8743df3232ced0896ef616ed629d0e5ae81402ebda4327e569b55e022dc9418e1a3c730987dec99ae923f1215c36578b612f688f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54159109cab2b259c5a0fb08c35c5822

    SHA1

    4ae5c7789b1fa9a694861d4927299f8cc42ea0e8

    SHA256

    8c95ded9dca11004763b75deb180767ef357212a29402611cb06a0a25586bed7

    SHA512

    d4e5d59ffd0b0b06b447c024d6dc18b37b3e51cdfb9f0503590802e0423000f4ac210dd3b1885ab76ee60594c9a4be070cd4ca6bc48ffc98c1ec5373ff2e8cf2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    48797f56bf9a14a2369f8896ff629bdc

    SHA1

    1bcac6470326db27350b799782f959dc03518a94

    SHA256

    78cc6d8a14302856d0fce04352ca4a869618ebeca697052cf115df6f40686f2a

    SHA512

    3a815a0c8db13ff0920fb18ba1043ffe450102f878136e5ef8f5704885976cd517ab18efefcf2572680752bc0d42d2c90593dccc0fb2ca2bb8b29afd55372373

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ed20f75b39ab1504a1b373e148bce6fd

    SHA1

    e7e2c4d54bd3550513ddba305eaa86ea1a495346

    SHA256

    ad50bda76c83953640439eed9767faf9d0e5d80261deaa693b81c502fe37e0da

    SHA512

    37745f66555f874b41851f17f61d192097548c3e0a226967d9f8109b6637bdc2a2d6fb4432c25bce941ca44af54429efcfcd4edd4386befbc86b756755b64d92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7837f4d88782467040ee11042f133bbc

    SHA1

    1d7b8d39b6df5a147c7ad5e431075c676e42bab0

    SHA256

    7dd917661dfa60884e823773175b32e31e94ed4e8eae46f7f325d25b14ae3704

    SHA512

    f107545c3cda0630ded2aa18c0f5aca37f170153f3f33f83ee613632f86c6ef85ca5127a29704b33a2bad5963fc88b018eccf497f50571f046e79b3d693a78f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da38f8e45e3f05dd2e428958943910b3

    SHA1

    21a0812e6d8ea5faac29bfd7896023617133eebd

    SHA256

    3cb6c5c3d6930f8c0cccad520385bc7e516d92fa776191b21dfee7d20303be30

    SHA512

    f8040dbc054f0fde89a868994d6f613ec11cf62b79fe9cf29d5976e5b998c92cea669d256c6f038f77beef3cc137a78c6039408652c08d7b827f6826daffa642

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2462b1c557afa9297eb009f8aaa0bd5

    SHA1

    2698080dd14cd94b3866e4fbe74751678ad4f936

    SHA256

    f3365ce8c60d798530558aa016a4182e85534a69dd82868c0fce8383e4a60fd8

    SHA512

    b87d7d36e1ba12c6f78ca0d97fe5c4599dd70ecb0e1ca8507bac86ed1c08fc9a77ca9f749a3bdcffe8ceba9c465a46d6d819690843a3e9921a9a8b4ccd1e48d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a981efc56d1133d2e5de95c483051cb

    SHA1

    6885288db0e6e12a04abd23165ea93bebe13b3a7

    SHA256

    d260f4f05de369ebccc10e858f3ec27dc5054467324778731553ee9e8cd466b5

    SHA512

    3af32b13a8b66881ad12fddd72893381489d999c3402bb5f8eec15d328c04dff163db51fd79824445fb53611f2cbf6eb42392c6b3711b4cbffea7f7d234f84ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b38eebea6fbc6e7b96c9cb50e45afc47

    SHA1

    383fa49d93ee168c263cc902a8e61aa407e592ee

    SHA256

    66d23997fc740029286cfa16c2f8a09263bc64488de7af6cca3bdfae2cdb6d37

    SHA512

    9f7525c895583dd2eb628fd68118e36146a4d8df3d4258ea2e5e935ccdf7b8b74619da4fe59c619612911ea7c1d73deab37f94cf0e3f3c15bb7bbf864d3ee988

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b3e1d8145cd38511ece7943748588e5

    SHA1

    cbb96e250779100d3d65d487c52698e6e8ce1a8f

    SHA256

    b1dc7801d90fbeccef988231ac3fae17e0ca6a7ca13e84d115f3d9bb73d42f23

    SHA512

    c90ddd2ae86864fccf9d21e94d3fa841bf0ac96658b10244cd5e07ae0d4c71b04401c0d4a267042031d14e90e1539f1af6951ad08d472db025ce2c73dab3d68b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6BCE.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6EC4.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit