Overview

overview

1

Static

static

1

libscale_p...8.html

windows7-x64

1

libscale_p...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19-04-2024 10:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libscale_plugin.dll.svn-base?id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html

  • Size

    196KB

  • MD5

    254a2e19773b0cddefd05db5d686863b

  • SHA1

    60d9eaaf40e947cb6ede43b8c5c46b82588f2886

  • SHA256

    b40cb0300673822584791e124b5960d23f4216ef0efcf441448c3bb7a6349144

  • SHA512

    6763a23e0a79cacceef7de22ad095bee8a98a9fbe51f2a4faf189090ded1ee8b62d9eb240806c38cc6c0ae9efac30c4d93429bc688fab081f8d60383a29a4779

  • SSDEEP

    1536:qh/Zvh+u9UzacTWo+VKCYIqnMk5E5ruEDYxzGcxQ3tXFE8B:qh/Z4oQM5LFbSzGttXT

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\libscale_plugin.dll.svn-base_id=8328c31dba7c71ee20ee32f1a735d639f9e43928.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2172
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2172 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1708

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d33e02e31ae4b761890e361d0b87e737

    SHA1

    3f9d5d80cd0934c3adb77224be2e565e222e3c19

    SHA256

    b72aa76fce6e9d55f677934a323158711ad2849940ade9e6d13dc9cb75a00f44

    SHA512

    8078a32f70e807bb2ffacc9d06d5c014f40e9ddb69b364b4d77a83d39b24a8a13d954bdb684eba58b17d2e35408d7f06af3d1ebafdb16fbb2d42d3d5cd0db259

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9913ab2059a405d396f195dd603b092

    SHA1

    59d86d9bdfb7b5558ef1441468a8895adb11410c

    SHA256

    c43622a687f3d65037e13dab5165db0f4f21eea03a389c962bc02171e6dab782

    SHA512

    1b2329af6459e6dbcd048a5d36fad1a94180a114cd92a3028221f6dfc686916f5586b7410d0bf7636adb41dc470ff6c0c35cd82a5bdaaab47344dd54300acee0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5c4efc3840a475f5a415697e13dbf31a

    SHA1

    4ab98de949802ef58ede9c37d161a33e81fd95ec

    SHA256

    80eadd232395d5689d4e81f1cf67a7cde3edb167a5a45fcfffb5fd13cb993830

    SHA512

    6237bc0b31d93475ae96d090bef1cc3986817e607c19002b460ac4cb10973ab6e3294757725b838fa9d305154d38c21adb7f5bef3418391e1bf24ef706ab1886

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0220851b87c50ccfd42edcaa87ed797

    SHA1

    7ce44e67fca9411c9dcb21ebd5a8c93fa71a1c3e

    SHA256

    60833272409e8e60ad65dcc54eec4b2be80b7e62b2f557c37a1384033458e8eb

    SHA512

    28271d2d2e80c6b7394335c3d5f8be4b443eb74761c8b7b409b5eb817231ec2c8d35f6b79d8eceb08ee3657c2691807d16f5a04637c1b77e607fc59ec2727c5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6fb3e2b408ec2275367db39e66ed587

    SHA1

    c054ce5426595b7d743e92478e8e4c9d842fdf94

    SHA256

    6ddd13c218b2aee692f20c3d09228692f476d2ee791b1ec74f5ffafce2886dd0

    SHA512

    7b4d57de7bcb7bc82fa9faf8614822691958ec45e2287edbeafedadda0899e5af9bb78aab3adc9a2db299d5232e10d25f20d1a11220a01a998db05011f7e07d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    84f60ae4b5b44776d83d996e92e53d9f

    SHA1

    a021c3ce7d7310c0a606e2fb522610214f2273fb

    SHA256

    525a17dbf3974db4f0d8c76a17543953028636b86f8ca024c4542a84412f0b58

    SHA512

    aac81ce01d82558c4e564441122b091b90f0522d7e603313e17a238922d6c4183811bacb55822d3ce66a54a95eb0da5a1ef8395f488eb9640a9f9532780e8bba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6b34c6e9c7e06e1f17d66b40dbdc16ee

    SHA1

    36a2144d8897f60e238f5088d2ddb3d76b3b6962

    SHA256

    142e44c9d969fd5d8ad5d0a4b85e201396e7c96b6efeddf8b86175f6144fdc73

    SHA512

    3a37c78a907bbf69813150b1ec0e9a81cdd2891e69987e630b92e89e4726e712c446454e2293ada2c0413cd0454c85ed7a6bedbf2250d4280d58727f5b9e4896

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab243439abe8a3e023ddc96f6e311a5c

    SHA1

    4a45211cbb0e5822db7c1697a76333a248ff7352

    SHA256

    b704fd3d1b4d1b6258d309e02c9d7273819c584212d90b09d1cc607d3e057d4a

    SHA512

    1a4dba4d9ca7db6ab7bb6912607777b630304ed8eb01d32b2c61fe1e9e769c6e3459e80d5b3a9400a452b62998b3931be1e4858f52a823f1287665029f2b36ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b9b2640090cbdcbaa3ea3e90004c66c6

    SHA1

    401227644d58c1e02e14c3b9c2d7acdedffe247b

    SHA256

    3a0e6a34920c26277270d55893aa21fb06717f45ea17511d0758d9c70768898f

    SHA512

    bea432e68b05b3e75e3c224b588c21682c05621a1014ed1eee25d35131466fb174e6882c87b0b8b7a3cc00f028344f9b772ca2abf70b4215fa75bf3bffd1a202

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0936309b12661f49111d32224d0415b

    SHA1

    644570ae0a281c0cfb0e50c503925e2d3bac3363

    SHA256

    4235655fbc3e088b4347a88327ce51932923003a87474187993a80df56bf42d3

    SHA512

    3a1ce14b51427264e0e4c02707aba6852722a3b27a79528be5ceb5c058d03db3d65199147b74985ef8ec0ff68b82e38bffb613860a7ac546952ab4fe14408534

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8106c5bbd9621456f7815473d8056602

    SHA1

    aea69590ec8c83fcbea1fe78d4f7fc34e55ac385

    SHA256

    712414757b61276ee8e5f8a2b4cdd0119cf5249af253e03f1c027765246a5c52

    SHA512

    06358bfecf408c48d8fea451a085e0bed5d342fde842f2aff0ea70304fe0b6bbf71f1db23f7c958de326dbe2d94ef4ae4cfa9c13c88c5d9130d9ec8875985c33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b08d5421a4bcd3b94c5ccd2c5f8040e

    SHA1

    104baaa7e1107fcc7aa2362b244b65ef7b6f4540

    SHA256

    71aa2bfa4a331ba4b1b28217b32c3a319392e03f6a2f48b4b5cd96cfd7f897bb

    SHA512

    c6627ff14afdde6e2b7d80e07b05f7e95c4e14a06b07ec022c138104539cd98eea646c64e2516e95dfd219b5075d1c77e1841d2a69687aea75ddbe752d0e4bea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47e5a72ae00fbb3c8de658614a82693c

    SHA1

    ab59e76274a99e7699623016dc73e4aaf9c68737

    SHA256

    11761007a444a9d8c3ca2afbf86631ce3486ae10a928d837025d438259d76a06

    SHA512

    e20bd62c21e6fa5e3055022dbeff9f921787dc3ab54ac4ed4e597e12155799127557591dd6e1c5a4660e862075b33bdcb174ff17f7a47097d97e23c84868d34b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6e74f72add731a7a7774c859ae91dadb

    SHA1

    6d51eae43d360ab0d0234a68d14bd6b652cff8ac

    SHA256

    171e004ae98b27445cfc87b749f1dc229a07cc247b742e6d3e4e2679759222f3

    SHA512

    a844bf11a5b818ed7f2b2348024ce0cef20d94720281e6f70c93d7c5af08e10af158ead1b223c5b35ee9a3675d47bcd9fd4698a53ff0e9394e2d1b564c410478

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac64204c96d3ed7dbb85410f97faa9e9

    SHA1

    4edfd31133a5ce836ddc9941d94336fe9882d211

    SHA256

    6bd4f994f3da963690d70e6f1ffb7837718ef18990f47a4542a7520be888e1be

    SHA512

    60e556b870f22cff393d28abbab1af526d4994ca336fefca712e183aeb5caafd7de725f8e66e895739f61d0207c72e35a5aa9e63c41a5c4529fe60df4cc31ca7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d72175a3fed77b64bab332a0bd168ced

    SHA1

    e94d5be76635bbbbbdeff6061ee7cea0977d0156

    SHA256

    04be184948ceb0fd0b12ccc55b152d3e438111a35fb322cbb40d0f673b677524

    SHA512

    f45fdca8f7a1e99910472d2998a3c677932a07670d36e2cdf16033abe93f22b8370684966911c5c07e5e661292f83aa0512b8f634ad35355c10805e5a090d6a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3cb170a59bcb2eb699b8140e54ef4170

    SHA1

    215263b9f549647bba93988c85be96ae0bfe0373

    SHA256

    ea63ceeb612b51f88c9159c7c8e09c3f7d6c2881f60eaab4b054e71cfb09147e

    SHA512

    a7db29565464a387652a12c4fa0b3e1aa89dfb41bcaf12bf293517532ab68fc3acadaed2aee7a77681526f7f62d073534a969114ce769002ddc4a8d54ba34e82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc9d7105929d621ac8b48dee8ee6d8b2

    SHA1

    ba2f67873ea7c064f24f9c847d9b1cc6355dea56

    SHA256

    ae75b26d5be9a3b5bad50ab15a1572f868212ded69859e482cd077914f91414b

    SHA512

    e7ecf3360cf95ff0dfb60561138622a0bcd97e8f53ba9816e7cbe8e3894c4c407409be832ad2611f1d7b525596fbe8acf0c715638eb8084c6a72bcba46e54f31

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab75FE.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar76B0.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit