Overview

overview

1

Static

static

1

librawaud_...1.html

windows7-x64

1

librawaud_...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    19/04/2024, 10:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    librawaud_plugin.dll.svn-base?id=e3b43bd36fd50840467669364014ee53553872c1.html

  • Size

    203KB

  • MD5

    e66e73a59563e29168bf22a5e5bf2109

  • SHA1

    085e838957436f467751958b1b82fe3270047e57

  • SHA256

    9e7f2232d7ad0bab938f2a819eb7ef1f8973f3fa3b98df3f198475b5a41e9e3e

  • SHA512

    8c8fe8527bf8813e525cac57bc57ff14165661cb310e86f8bccbbcba2031683f9255b5fc82f52d2ea316dc0d1538db7839291e0df79198b33e9d0506fbab5055

  • SSDEEP

    1536:kh/AVY9TDknvDQbNp35Idgb665kVV69TzRuLiQOyJlPxkN2EwE8B:kh/AVYrM5+gqlZryJ/EdI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\librawaud_plugin.dll.svn-base_id=e3b43bd36fd50840467669364014ee53553872c1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1712 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2120

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ce27e1ba2b44fc785318c8a105d4e8f

    SHA1

    f05b97bec77fc651db6cdd874f55a68bf9323b58

    SHA256

    3e7912cd7cc14f15c331bd045e79668a6d7eb7b359fa762cfefadbab86bba348

    SHA512

    02b12fb5804070ffe6280e3ba66af41357c4db3b204a14c91acc6568d5358bd4954df5ef574e26162b295c1bf925632b78de413069767194ea9ec805fcf2d53d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d4a2d67a3503e5e9518dffdfef4852bb

    SHA1

    5a51c87ce67ae4bc2d151ce8c08b609a3b34a786

    SHA256

    3dd0d7e9a5d9b1ef3a335661ccea01d3fcd08b20a38ddde0d6713e7b8c204594

    SHA512

    71b15eb0487f9b5d1f6c009ae7581483e75c5ed7a3c4bc7c255e58488469cbd0f2e016ad0ac90a76a7d905ea88cdf53eac5e7ce1d234129f6f6969f29b82d6d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c380e37f90f7f9bdec5fd3845fb0fe37

    SHA1

    6b804561d86411c81f66912a01d00c3b4e7250cd

    SHA256

    03d60bd33ca115281bdf273cd0ee709f1beeea86154b742549f4e664ae9ac4ac

    SHA512

    64578ea0e9a90df62925be424d6a9063da6cbc769dcdf5ca5fd049948bc5ab96be89647380854496467504d23263b4c0c219646aebdcdbf037a391b63c3adb48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5a0f5fa08d088cab6a69030e907a473f

    SHA1

    9ced268d17d71fcde896700fc5fa2d062885b927

    SHA256

    a8d0c37cf4a72938024d1f2dfbe14373604d6a5f3bfa3c7b7a4267701281fca9

    SHA512

    8c7a67e877c86d738f41d5878db311d0f6b041b58de4df7f41a6c086f957346af9be62e71fc1e6414c7992acfd1c0ddf60c3298a55ba692d43edcd0cfc1f55ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    967cdcff6db9f09345aaeafe078a5d06

    SHA1

    3285b46ef7d222d0d45ca955de7180676901f4f3

    SHA256

    c17a770330375c5f670ad8f3126cfc3e79c325d53ae4521518cb9d43dc1a304a

    SHA512

    81323827df604d284a86161afe9e0771c6f378f9f793202217f985b874e7c6a7cf1cd3e595605f08b7d2f991a2c4b4e71067b9ab78c30efb8b0e5ca31365cb0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3df64d13ff0d70f4f79b39c57d9ace75

    SHA1

    944239a39e1bc99ca6a1c282556f9d39a47906b7

    SHA256

    435b6dea5f993219d7f3539a150715542b9721ba3fcf9d11c9351e3a7e3b2fe4

    SHA512

    9a6cad87866790a6cae6f424afae4ab87e9c23612d7e71a9b12fba07a15eb1f97104e8d82c31d6288f036d55c2e3c21563fcfcfbf95e960fc6662a715c74ca58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5a104fa0189bb420aff9702f5717a171

    SHA1

    79e0c83694aad3d80e3aab2fc7ffebde0269cfbb

    SHA256

    82ee280f95f84d3d20ce76f35e97523f25d252283bf2ea57e62731dc327a7d0d

    SHA512

    8b37fa35901d7c263b2dd240a9d7ef22459e1e015c391a9d4759b4e18d351508082f9f35f9096d34df0b106ca51c8416e16a0168cc93fb40ac8301d9c4e59566

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f6ca26250c794f6f1fae32d1e7dd319

    SHA1

    01f111335e7c689fb00829bf91e25a02db04d808

    SHA256

    232eed9fbbe14c656f7d82ce4ced7a43b32275b60daf9e528ece013903863dbd

    SHA512

    f69bbc1289d51d89b5271c7af59ddc3e6af15ec0f8c02ec27f9bbe874058444b6aae3ab53b5322da7cc00591c4cdb48eaee319d34b85ff70dfc0b9ffd5a87c8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2eb746e177cbef69d698b891b92c5ece

    SHA1

    2fbad63f31e285e6ac6990f21abc5148e5bf0773

    SHA256

    37094d270e3d07538ea2965788a91668b98c658c307493cd0d87f595fd5758b6

    SHA512

    c3c0ba72ffa42c995ad1c0a092287e84714d71597a2b96d8cf4022f9d8669738a587f6ed29e01c43c52cbeee51915353ccc06583335d051b037dbb64aba45829

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f1a8b0add82d3cd8835f3ff38c9b5d7a

    SHA1

    598b55930c05d7c628c6308781f44697d63093db

    SHA256

    3a31a82f1a32c47c956c1a2f600d9aeb144d4fdd8b26abf43139bb7c53ffd720

    SHA512

    ddb91ed41acc90c6bbdb5b3051893a5b20fc70fde1e522e6f1b0b6a9f7672b04217346163e6ca901df82174a42e99e8c3c35f083c82c4084e71b1b2a67b5adcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    610ef467595aaf20d786341292c37dad

    SHA1

    1ac6c641f369ebbea53fce1d86d76da0ca4553d9

    SHA256

    bf0fc28f05b57b791842854520c7dec91bdcaafdd63b16210205101a1c71b726

    SHA512

    85299f8961623404020e8321d8b77df41b62528403e633f4d3bc1327839a089b70c226b090bcc9d3bcf2859475977134c840f90c94691114835926118f84d3e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    32e682675a2e2d48a069f58ffac45020

    SHA1

    a6d6e451d9405f9fc2ae52be610d9d83d81ba688

    SHA256

    52da2d3199b68174e0d60524df6dddd1ee41e98a1f48b7f5a9570b1f4c893a27

    SHA512

    11bdc5615382927ea055852c9becb062fd0dbf1fde3c64c586a2f25f273525774cf8d8e686ed3ab500ee16d5d688fdc40e66980a09dd9f32de393a432c27603d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f2ccea564cb5761b5aba25ec14bba2ca

    SHA1

    2af2bdf4903fd5778633a779dc1553ba65eb37f5

    SHA256

    fcb4caf7a75d7b9e6fa30eb1ee9830b4294a3c1bf33d8eb83bce96207cabe863

    SHA512

    b503602b54c9f3190dff8a93633fe2f26a186a12963aba292897253117d8f8d2ca3638880857a6654a1e5f7f7bb667405a2a3a74bf87a31386416e9018229488

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b3c8e5015b1aff4b5aef74be8e7dbc25

    SHA1

    813dda92f57124462f14bafb985ea57374d90918

    SHA256

    99cae1196ffe8640add175921bd93347a04cb58500f278c2b0a2ad794763fa76

    SHA512

    c0c44bd6f490ebb3fd964bdba3d4bc6611a4142e72910de2f25c25a38b259944902d7c75e62c5f3fae24366bbe0b1f1a31001678d9428764eb44d63914969b73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86cf41acf3f20a6ee3de48d8e39500b1

    SHA1

    a4bb5e99482fc4d865dadf94f1216b859edfef4a

    SHA256

    ef9570a5b124c3072e6cf1874fa23ad19d5a41bd02139aa6ff4d3ca5df35eaab

    SHA512

    72a0bcd7a1dd79409517e845045bd632e49a3b1b6295fed323645378e1be94c2304b8b05f440dd9fbc83de50b33eb0b08beb42a34cd332db972d97150b9dc679

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca050f2c82b973783f085c48087fd624

    SHA1

    c6c3067ea357e5e9b5f16e7b89e353940123133e

    SHA256

    f799fc17a744234b091bfec57daf63daf71f846a198fb06b8ec9eb8b8b934aa8

    SHA512

    119de0812bae7db3d87f53618a4b7d9bfd5737726ff3522e2d451d35a8dc09db7535e1327260f55fba87e29f81598ce50a0fae020d3531a3547579f084b8555e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7797161af4deebf0ee4a431136d80be4

    SHA1

    f5d646f460036facd6b590475be3472d8d2b1d8c

    SHA256

    ec49dfe547f088364c4bbf12a1220488cdea0701397d479601d8ac6e2d3b5f4b

    SHA512

    145a0891833b4d02157a755cf865ecf3a09128676254de9091a69250bc995e011eaed133658c0218c115fd0205567bdb1720d8d0acb90fec5335b2558c90f48d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c92fb1304639e4932928779ca5353b8

    SHA1

    172aac05bf55f74fd1c4550d8d10076bfa495936

    SHA256

    2e357f0bc9cce56ddfb1c0c1c2ed7a4794d85bae4b2229248f9e160c04d67900

    SHA512

    d6dd075fe2b9a0091dd5ef4a606f2582c9bbd07698893eea37cb67dd2eecffd5de66140ad1a98a1ca7774e94e0ad8fd62ee222f778d989000661e2c82a91e86c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e4a5f6fa03adc95c4c474417bd035b01

    SHA1

    8152ecde62f34b52ebd39f01b9308edf75eb5bf4

    SHA256

    62b555083368a4b2e00f84b8259ec1d5c526c2689c0e34e1aeceb64514ff3ea0

    SHA512

    15aae1a7253f623f8bc41a85efec6dcf6103739a189fabb8e057743fc817d9942a5bb4673318ac38c34405cff9ca51f77f480a7be093a0560e143932c224d7bd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab23E6.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar24F8.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit