Overview

overview

7

Static

static

3

009a813a01...18.exe

windows7-x64

7

009a813a01...18.exe

windows10-2004-x64

7

$PLUGINSDI...nt.dll

windows7-x64

1

$PLUGINSDI...nt.dll

windows10-2004-x64

1

$PLUGINSDI...ed.htm

windows7-x64

1

$PLUGINSDI...ed.htm

windows10-2004-x64

1

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ss.htm

windows7-x64

1

$PLUGINSDI...ss.htm

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...ss.htm

windows7-x64

1

$PLUGINSDI...ss.htm

windows10-2004-x64

1

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...en.htm

windows7-x64

1

$PLUGINSDI...en.htm

windows10-2004-x64

1

$PLUGINSDI...t.html

windows7-x64

1

$PLUGINSDI...t.html

windows10-2004-x64

1

$PLUGINSDI...r.html

windows7-x64

1

$PLUGINSDI...r.html

windows10-2004-x64

1

$PLUGINSDI...ed.exe

windows7-x64

1

$PLUGINSDI...ed.exe

windows10-2004-x64

1

$PLUGINSDI...lay.js

windows7-x64

1

$PLUGINSDI...lay.js

windows10-2004-x64

1

$PLUGINSDI...min.js

windows7-x64

1

$PLUGINSDI...min.js

windows10-2004-x64

1

$PLUGINSDI...ger.js

windows7-x64

1

$PLUGINSDI...ger.js

windows10-2004-x64

1

$PLUGINSDI...ker.js

windows7-x64

1

$PLUGINSDI...ker.js

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/04/2024, 10:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/Success.htm

  • Size

    4KB

  • MD5

    7555c8d6a61a987c47e26c2f491ce7a0

  • SHA1

    ef8956efabe63f5c95edbb142c588ef432b3fe99

  • SHA256

    91a4f307110729d83671dd4ce05dfea53eb15ea258ab9d4a79a249d08bcb2724

  • SHA512

    ce88a23b4f3fde0ea6cbb282eb36e66db39bc554010c0eb76c8de8fb1c5135da840c6982536c4bad9f64f57e89dd2965c7822d511ab8c7b5db8f88ce8e1b09b4

  • SSDEEP

    96:V9WOHLKTBGHMVtZTk/fOvPEEOINWjl2iXpZr8Y:V9WOLKcHwbTs2vPEdIKX3N

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\Success.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2304
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2304 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1956

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86eb46ffea6630fe2ef172c34d4e6494

    SHA1

    72b81e1a3aa1d481f9c6d9937bddcdf366ca5124

    SHA256

    8ca577da8d81b0bac5f906a9f90573162b5d3900916233a920078cfda1ae8f5a

    SHA512

    240abe751e9663116db9c50b1f2ab39d4844f4e8c8f3f2f69a78d661028012f99cb1305bbfd59e0c257b306772e6decbd56395c914426069335efabcc0bfc5f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1b39c5b781e19505a2f72ef9d994a1f7

    SHA1

    7b30ed2f7193a4b6351e4b9b6d5c4c13958add71

    SHA256

    672c1a151dbe283a6b21420758528fd4b356ee43833794f9af3734b64195cda5

    SHA512

    d3fcf21b460c366cd87655baac1d60b9347e53b6f9e9f1080a755493a639b8e80c6a89073d42b0ba05c55c65f45ceb9bed54c6c4b363aaa4831bc0ee3a30afb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b92db16a0f0943fabf2bf92c06731516

    SHA1

    e934465da928be9e9a193a91f6dafe142fa5a4c5

    SHA256

    d4c17b88589b9101efbd234dfdd7e55bfdc0937829711057bb92c09c0a94e3d6

    SHA512

    c2b11a3aebe3939b8200b6fb8090ab6c64bcdf9e0a7f26c3e64e5bc3eec8ecd010617297ec96e7dda9b3a247e9fd641e0a16d274d096a4165a9fd7a4067caa99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66c822634b11b1981e80b3da84296e85

    SHA1

    325c17701a4d5c36799a0c2a7f071ba58c3f571d

    SHA256

    66328e438ea41c0afbb0ba548ec833ace6d9248d7ed02e36a0fe67d153dea0db

    SHA512

    99bd0753c12ce54e9c5dd6d6f5b403d61ed6290aacf058043745ac612fe00b74c838d0b5138881f31b79d488d5566f27d6891b4cba8d3a07fb1bc71045af1ca2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf965411fc149a0e38dc3df81a6bd31c

    SHA1

    582b3aabf2f8726c90785474e389a630eb036d13

    SHA256

    32f31557a2a3f11099a413acd66bcdf15456a39db4146b243cce6e4db89fbe1f

    SHA512

    5db228a55fe1a2b68f610477b0794b8b17e5c2f86b268bbdc57ac1731bd3725fa590f558ea4e602235d39f925ea60badf8aa56935d610a375368688ffbbe7f05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d805e1e075fa1bdf6c7c709ef94bd95

    SHA1

    87a7c25614185a84da6731a9e5ebfca66d164c69

    SHA256

    d23993894dd7e9936d0fe72b26d68531524cbf0d891ec12271e3f3a0c4009c0c

    SHA512

    e4782159ed02bae76040aa1b0094b052a68f936f6d48b47c13a6e5e5429e11ec0fd9b3524619ce36651d61c3e6dc6d615cda2fccb3e1f1206747560103089624

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eebd62fce077bf0f98598a519ba05a3f

    SHA1

    d07e8ac379dd5f729112822db058cd03fa3cda51

    SHA256

    8adcadd4120cdcca4357004786826a7daf366e2192ef08312de655a912e284e3

    SHA512

    38f7d30ef9b51c2fba92c4752b864dee181ad84dc1d5cdae7a9b010609fe5704d0c34a16a5bee3d0c3d35f28b551f975e9acf9eaef9fa1fadb0715796137fb72

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e58cfbbfe69692f3a4e0887884f85626

    SHA1

    ca3c4d0fb99e3949d9e09bacaecac4c42a8347f0

    SHA256

    d3437a45fac9eedce1f19dbaefe62a5af07db02befe07f56db44914fd19d9964

    SHA512

    9fded9bdf84a5b169491a936f21fd19eed930285bcf5ce1b0a22e5c86e755957d61a52c8e5cbbcd0fa1d837296c91eb314b9fae57838abb09d8724f4adc390d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    525970defa1a3a29f432f2ff28d182b5

    SHA1

    0be5b1b98ca8ec3aa70a1d6816466846c838afdd

    SHA256

    4c595e13b9d9cef62acb53dffd7f8420834a6195bf92ef55ead174632b6efa94

    SHA512

    042bf27527e36ab5ba330064b74e5f12777b65f1ec0de92c1d4dabc6e01c9248943dbfdb32abdff5e6f5a67e79f3d151d21feafc4ed56524b60ffc88c4ba1330

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0ff90c74a7372ae3d96884aa5669537

    SHA1

    4983ea9907fd9c42d8de63c8fd985b9c856cf83c

    SHA256

    e62b7ae09955f727f19e30722850f6ee5020658e0e1f4b850bd8c81a334bb696

    SHA512

    d8c0a8ab85168e6d8fc3b93f59b83632ac853ce5dba6f3653f97033525fb7cef6c588ba726e85e5c9b7d92657efe3f190786e0a83b0a282444604c986e48b3a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a04c2c2c93c92c0e51022c977c498367

    SHA1

    7956cbb3aea6b51bf22bf047388c21e21b675515

    SHA256

    52f82056eaa4499e82fcf628798f9ce800bbb0862b61c69413d5ae727b25d18c

    SHA512

    6f68ae01b9a49dffa7239e78e6e4477c703db516b42a361d73c3a8cbe9f16fd51f8b41cad65230d7f82395382a6a6f32cc4a220be839f0e6eb162d732c77863f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d274167b3d6f74d498d8d71a73d5383c

    SHA1

    e67d3fbf41dcb46359a4562886b2849f3f91deb4

    SHA256

    5b994ca8ade13814e61a90219391fe33bf194b4573be6ad88c56ac87fc80c07b

    SHA512

    5372e5354a590e1cefbec35673ac1f2f7e687f4edfecc3174eab614452beefeff23a796ed7d8761efb01d23b1209184b33bc488f3eb2ec615ab4b63c72e3fcb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66bcbba1abc4fd7a4355f91b5efd4d9a

    SHA1

    9320103298ed388bf5de0007cd56fc09b89c576e

    SHA256

    9d59c8030348dc1335e3f4243e39620cf4c7f37f33f9e276b49a679a916cd2f2

    SHA512

    ada7f48d58b57f465072b8eed6fdfc68b5bd64fbbb5ee75e13b4638187dfe095bf879dfa39297d710513b1ad8cad98ea82904ef24c7b9a19b35cd09cf1231e86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e78ef91514bd345b13b9cdb72f939d21

    SHA1

    0e300f73a1c066851df8f04df71c767f70ea3819

    SHA256

    2d2ecc7c179dab41bc18ac2c280e4402e9d860c14674a817636923c171526772

    SHA512

    fc1f9943e2f3745314598bac1ba762c85a8506e283feb9ff6efed766a41b2266cfa6ccd0b65d4b4dfe1cd8105d32afb204920da567b7e2cf807451df6571b75a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    697ca75542c7ba61edda69fc51455e7e

    SHA1

    25bdb0f6e6ad1d751d0c81aeeca388c2a66f8ab4

    SHA256

    dee95c036e9d17159d4f75ecea33d9757b646b4cede2f33065615eacaa4cb345

    SHA512

    73fb219bfb0ddd0dd04f4da49496529dfdfb1a016b45a29824f4e7dd87672f542ff7b81a15f7602b5a907e80cb5d138036f5a6d6bcef66242b02f3b4a337f105

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    088fab2206f87276781a9293ff0b20c3

    SHA1

    c3503b85f105893a1faaad9a317f29ee1b14e206

    SHA256

    10380f6271886279974c8695d74c2bff10d5a948b4487dfd83d7058679b0ffe0

    SHA512

    4ee86ab4c04f4c27cc0886825d0d0493266151208a052d086b52f83823134da4c7712e0f967a1b039dc2c13e0b3cc4aa1708a779d3a18bea7607df4e6b6a31c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b667b8e599e2e0e28b108b7f93d26798

    SHA1

    600e526461d501d836e79bff90277e5895426d05

    SHA256

    5010d7662aa942613ee9a3481e3714d2228f90e42c3eb8c9a1b326990a3ec93d

    SHA512

    8ff5939db078bc49bf0a278da649e74fad69ca12f382a0c3e8c3d68d0195855637acc15926d06410efe33a81c0c3203eb8a21a692797650076cfc056abe2fcd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a3883b16504bf4eb34826db4ae951898

    SHA1

    76f537289fcb1e25648913c4239385f78d4c07d0

    SHA256

    5e96f0477865e0f22696d44572c94d5fce4decd262964279c31ca6410ed4ae04

    SHA512

    e0df64670b213bc647e17cbe232ed7215168d64c7cf6643fc25c095f213c5851a11a850d9f00f23dad1a9edaea1d8012654a6b22e50fb7ce301c70f5ba5221ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a6a3d89efdaa9313c4afe37aab66475f

    SHA1

    e60a3804d2e524a7cb645fb7a3dbeaa580f8b722

    SHA256

    7ab5f54efd3afb200f17b9f2cddf78f38f67d7f6b760e93b97c6401770729e06

    SHA512

    baa5de66cfc6f70bf93d99fbc74e08b8a760af66123436e55e480a23c030d67841272ca22d805d602dc329a79ef1b1ad06dc2d98c8bd3bf0693e26ba4075218d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bae108152438d9a4e822505a29404722

    SHA1

    94a217852dd0e98f5ba3e07110d3ab6861523879

    SHA256

    c3d1611c2f521591c4612cfc7a9accf2a670192c711e4a92418fbe4dc74a3e39

    SHA512

    bf787cddaaa308591473567d8d4b68d594ab732c5660dc6e0e9f3444aa94b6aaff142c3b37fac2a7b5a17e0aba62d82fc8b6153b3c5c4971ae279f2c824be296

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3843.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3924.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit