Overview

overview

10

Static

static

1

software2_17_6_23.zip

windows7-x64

1

software2_17_6_23.zip

windows10-2004-x64

1

software2_...in.dll

windows7-x64

1

software2_...in.dll

windows10-2004-x64

1

software2_...ua.dll

windows7-x64

1

software2_...ua.dll

windows10-2004-x64

1

software2_...gs.dll

windows7-x64

1

software2_...gs.dll

windows10-2004-x64

1

software2_...UI.dll

windows7-x64

1

software2_...UI.dll

windows10-2004-x64

1

software2_...ex.dll

windows7-x64

1

software2_...ex.dll

windows10-2004-x64

1

software2_...in.dll

windows7-x64

1

software2_...in.dll

windows10-2004-x64

1

software2_...ua.dll

windows7-x64

1

software2_...ua.dll

windows10-2004-x64

1

software2_...ts.dll

windows7-x64

1

software2_...ts.dll

windows10-2004-x64

1

software2_...ts.dll

windows7-x64

1

software2_...ts.dll

windows10-2004-x64

1

software2_...er.exe

windows7-x64

3

software2_...er.exe

windows10-2004-x64

10

software2_...te.xml

windows7-x64

1

software2_...te.xml

windows10-2004-x64

1

software2_...g.html

windows7-x64

1

software2_...g.html

windows10-2004-x64

1

software2_...t.html

windows7-x64

1

software2_...t.html

windows10-2004-x64

1

software2_...te.xml

windows7-x64

1

software2_...te.xml

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24-04-2024 01:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    software2_17_6_23/lua/Loading.html

  • Size

    5B

  • MD5

    ad42f6697b035b7580e4fef93be20b4d

  • SHA1

    32faaecac742100f7753f0c1d0aa0add01b4046b

  • SHA256

    0b8e9e995d8d77f1e4770f0f79665aee6f3f70247b3735422daba73df4c3096f

  • SHA512

    225d05b918519458a8fcc1e6493a4e854c004da76f6250b8f52197f47094f71ee984725c31446a1967f0d55f4dc74793dd44d932f2bdf50d77d4288d663bf1ab

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\software2_17_6_23\lua\Loading.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2336
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2336 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1160

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4eb65342a38516a74bed8c763eea52e2

    SHA1

    201f1ac725dc16aa2b6b4044f7065b3163dd7390

    SHA256

    fb234fc2f435a8849f9d420f6e46e1c38e483f0fa2ed432b830078c4a2695f2b

    SHA512

    9a35ff7e97260827bf258fde8022c8a73d75eaddc1eb7e3ade09f99ef05061bef100deede29e0504f32bf253d8801b93d710f01ec651bbf93cc9543def1f9341

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1294c741280dbc5643cf410786e9a5ec

    SHA1

    d55b991967f1403f6ca1c7b0d39ffa993fc377eb

    SHA256

    aa35aadde51ec4b70c515ff07dbfe86a15a8dcda25eab145908650696499e6a7

    SHA512

    7ad0378c627d91bafb00fc54acf553d16925a1dccc2768bc422bc8d366e0c85e238099e9f14008ef24ba2eae4c6922e1cd43344bec0b18a2487d7d1ddd0d24b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82041b876e5b827e1dbb5d0151267054

    SHA1

    fbc196ffe6a0243799d61b35f7c8e5e23fd352ec

    SHA256

    36b8bc974634731b3551ae7be37a279c85b02046da122083d7b98a4100b79dec

    SHA512

    5e195ece6d6ce2a4ed54f0ba654e9f073b5f1e8337b195f6c48fdd0b0537b610addaa32cfb687bef565ac338ef4a4392a44e85ed8825a8f361862dc7aa5ab044

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98f18c7beb51ca9be3a2f8f2e03dbb55

    SHA1

    d45f5988d7fec986a35f21f6780dd6c4b2109871

    SHA256

    f428d17bdf7924c2a591963054380febbe190452e75cc05297566d09cdaa0bc9

    SHA512

    1c7574d45834cedec42f2d7d1e97edceca881e7a74e194bf7db88e2b488faf6028d30841c20faa86aa5dc853da8825e9a39a591f2f73e20a7e7ef6b0976c343d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17f421d2c4fc1af8f9bbd4a4bb199888

    SHA1

    ddb4e68965421e26351b24333432790ed650f861

    SHA256

    7195bf59f52fd8df8761c54dcb03bc538ef340759e4c7125d7edc050c6951e58

    SHA512

    01a1d44467dfd9813afa81a9c376bf59f16b7cb016e71b6c4212331469cef6576dcb0b60f68759459b78f0f8fcc004ec4be48b7fb41d0a00f22adb75682039b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    48103c9db1042d32ceb69ba8450511e9

    SHA1

    121dd030363c65667a48446864ba7595b2dec541

    SHA256

    7809236dc78d8a178e16adca1fda810f7d6f5862c94e29ed2d96152d1c03b4d4

    SHA512

    da19c224788f27644e36ad633d4d07d5a0b658d4dc3278ff338e4f4ca9f32ba7712c77b71fa615d152a9b6f05a236b30d64b30d8d238badf961ecb38b1b912fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cae434aa2888f5a3b00bfbafc7b35c4d

    SHA1

    b70adaca518fe65078aba314cec9ace642e21fc3

    SHA256

    c0f1c39c3ebc66eacd36d54ced3c1933db1d74c076eb009929b7cabaf6ef85a6

    SHA512

    99cc817c4cf2b2320c445ca992aa5c4a07aa90db1aac8c5b2b93f2f2ce0f54e8e10e400cb446788140e5b4014562305d66aedaca9a3543656dc9265bbe1aad6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    874db33d160d5e4378be8ea80f623705

    SHA1

    01584b5e3857a3dcaf1451bf188a7597a611c12d

    SHA256

    48dcf45a370c5d1d102895829492bdab82b01a996af6666a137b96d808474a70

    SHA512

    5577b7a61feb3fc4a1626f07b1a72490825503306a0659e5b021945fca4fa6453a9381800f8904320abded3234e6117cc0608d782b09e3284fb8337e6adbfc83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be3e2b1b1f26c4d70f54d95e43a66f8b

    SHA1

    2613421fe6ce1d4ff0cde70788be057a13e690ae

    SHA256

    880569064aa173831656256cb66b53d92595fd5bb6f193bb6669ddad251022c6

    SHA512

    fa3490e1d251e0b2b0b1b176c727cd1ae50918e1aceb966223d2943c74ece762335bec04bf95834cac612c91257a84590b406697f71498c3e0478ae1abccf593

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    58561e0c8cb631f4b880b8e4e3e4f710

    SHA1

    666e2625f9bf8b79070d2983dcc6dafc80d08d0a

    SHA256

    beacb1f89315a222d153c841816c897f2a03f8bc932dd2387206ee5275c11705

    SHA512

    17ff9ab222d6d33b47ea6b7d02ea2c60ee73d1be28305f9fad41cbb6a4f08f69e979ee4f2f4134b37c483034882e881a81b30719a09f419c95907590eef05d5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e869dcb9a81bbd2d9b9438b370e288d5

    SHA1

    6f1321b6b09e3e15b071f947eba91c5c4ca12f6f

    SHA256

    e395ec6401f645ca594ee7c76484946616a32acf7f33186964b3840c194f45d6

    SHA512

    f3976fd675a20007f9a376a2741c51772403b3a535567ff0fd14fe08da51c9ef56b6bd37880897bad839c194c475c7f6e358777ad245756f1c282b9880847d3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a8960a60872125caafed7e8b8abdd9a

    SHA1

    4d27fb4b88dea582e8b1f24c8f1d86b47e153400

    SHA256

    780c8d906cf52349d7d97cae37eb724270b726362a9c070b8ee4e06814db3af8

    SHA512

    df11071dd13be5d5b2dfaadd48bd3e8136a22c5fb3383a96515d8b9829b0288dc4baff612b003507c4769cb6d9e0b2b4fab9f3445f7db52035c944b0e7c15fbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf9b82d3cef236c677f292a407e399ba

    SHA1

    bbed9cc3757de89c2089fc9c36a86fbb6ce7eb18

    SHA256

    4a7aee6ed704e3f8e808fcc6c8e7fb0814c02963416438ba02966d1dc865addd

    SHA512

    0ed187c067a9911869365706aa7a123a7c34360d5f3649434d06f49255927225bd64f1d0eeee2bfbcd5aec5f5acda9920ce3afbe6d95a935ca5c31462b777a05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    354d509ecb4a1c606b318c781ac37eae

    SHA1

    2f3aca13986144abd1f0d8c2a026ba7715edf264

    SHA256

    d4651ee0c1c46e6fd9bc3baf33325c8530f8d9ea837fd89485c99cb1c81c21cd

    SHA512

    3103bf654a902bf6d9f98fe446fc46585686c420b287ec4a7d5c7b2f61e4f2c6df1e8a9925049b6ac3388d9f569724f811fdbab98b742556e6a60df8fa7d8753

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    364dbedaf4f3823105953fc48c523b7a

    SHA1

    3e25795222de8aa99faf3c7247c5c36f52ae5469

    SHA256

    4c7e95f21aae174b386fdf85e3d6ccba9b720945a053250dd27264c193cd5110

    SHA512

    10a18cf7a24cb22b3db81700435833743f158d42d8bc8fbf261d262c4f10ea8ddfba717f0ef602d88775fc21ebb7c4d67100b239c4ab0ee5cf0d8d70e4c42c9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c79f694e5a7728243417275ee1057e86

    SHA1

    880cc7df424602bff657e25cb31a707f2c2808c4

    SHA256

    cb90ffa6dc57485bf330097028df4967bd61a1b7ee445ad3337488f02ddbe5e2

    SHA512

    8fc536e73007dba6565c4b55483f6e0972352a257ff83da9760ffa492725c0de4e3e238467c2905bbeb65f10b5c04923b79aef83dccc15d18afecce57f9b1c63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9e8271f4c13e8561fd4505dd773b2e5a

    SHA1

    16e188b544412f58b63794900b4b8eeb48ded85c

    SHA256

    5f5adcb7d2e927bf32b76d807b1ad9d54bf7c68d7e237407da0feb3a93f4827f

    SHA512

    33031f919cab36fd7e2d890d88d6af0558e57d41e58707c5033fb36e9d0913c1941365e3f55514a7a4d7a8b3bddf80f8a81501cd9f5b57b69c10fc5adc0b1e92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a134a30863b2c54322f8c1b9510fa2d6

    SHA1

    889ff9940a9739521bbe103fd5663e87c7a55c93

    SHA256

    1719ad17cda5610d7c5e751989f81edfae7b03d7f254548728aee8f3be15cea9

    SHA512

    765972ad179fa38e44e08c19fd81c612e7405f783d53bdbda6301f4e9e4576c0aae2eb7ef26a042ab00a71dbd7ae63a40a7467dc21c27983378d6da68412b49d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab348B.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar356C.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit