Overview

overview

1

Static

static

1

[origen]/o...ams.js

windows7-x64

1

[origen]/o...ams.js

windows10-2004-x64

1

[origen]/o...nts.js

windows7-x64

1

[origen]/o...nts.js

windows10-2004-x64

1

[origen]/o...ts.vbs

windows7-x64

1

[origen]/o...ts.vbs

windows10-2004-x64

1

[origen]/o...app.js

windows7-x64

1

[origen]/o...app.js

windows10-2004-x64

1

[origen]/o...fig.js

windows7-x64

1

[origen]/o...fig.js

windows10-2004-x64

1

[origen]/o...vas.js

windows7-x64

1

[origen]/o...vas.js

windows10-2004-x64

1

[origen]/o...x.html

windows7-x64

1

[origen]/o...x.html

windows10-2004-x64

1

[origen]/o...ain.js

windows7-x64

1

[origen]/o...ain.js

windows10-2004-x64

1

[origen]/o...bs.vbs

windows7-x64

1

[origen]/o...bs.vbs

windows10-2004-x64

1

[origen]/o...in.vbs

windows7-x64

1

[origen]/o...in.vbs

windows10-2004-x64

1

[origen]/o...e.html

windows7-x64

1

[origen]/o...e.html

windows10-2004-x64

1

[origen]/o...r.html

windows7-x64

1

[origen]/o...r.html

windows10-2004-x64

1

[origen]/o...1.html

windows7-x64

1

[origen]/o...1.html

windows10-2004-x64

1

[origen]/o...0.html

windows7-x64

1

[origen]/o...0.html

windows10-2004-x64

1

[origen]/o...1.html

windows7-x64

1

[origen]/o...1.html

windows10-2004-x64

1

[origen]/o...2.html

windows7-x64

1

[origen]/o...2.html

windows10-2004-x64

1

Resubmissions

26-04-2024 14:55

240426-sanrsaeg7s 3

26-04-2024 14:54

240426-r9vtpseg5x 1

Analysis

  • max time kernel
    133s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 14:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    [origen]/origen_police_menu/html/components/citizenSelector.html

  • Size

    2KB

  • MD5

    fb284fce586b213b6676eb07aeb1c57e

  • SHA1

    d3472a20e52490ccc0f273f08fae3f4d89aded32

  • SHA256

    3238012bc200aae8515a33a7351961dc4e131a217eeabea6113a7af8cb2eab81

  • SHA512

    cca4dc55b400aadcced64696109c647408399a3e4af96e446ecf5c39fde28b699943d01d6eadc30b47057065f56cb6771cba94240c3431cec5f567954f147e94

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\[origen]\origen_police_menu\html\components\citizenSelector.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2960 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3068

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    36067fa7977555d04eb5ec8bc1e1e2c2

    SHA1

    b03b0ea483b8c6a34b815d514a944b90def50140

    SHA256

    44ce7eb5dbdd7fda0fa76a86a2af61ad62828acc5108376e57c22846c677524d

    SHA512

    7944efa35f6c91c8fc790021d1ee04db4a0c5cb197d6a45c8979ea869d139c0719e26c52d1f6738778d26c3865eaf010dba992522a3f5ea923c491d959cc8ec4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c5117340cfed4cc8afa66765abfcbb2

    SHA1

    39cd36e2dc71b71808dc500fdc5dbfecdeefbb6e

    SHA256

    b652214354d1f562f83271f056ce1c426ac1f6fdcca10d8695eb96c38ed7d545

    SHA512

    860c6bafa16d73e52df048d1763b57a1a98a2191fb3fe191bad8a264520d03eeb341e7c0faf5ed0e8fc02dac3ba92bc832376204e9c7355c3c3deb18aa120271

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2cc007976171eebdcd6f372b49c71ca7

    SHA1

    fd55a2dafccc5f80f4cc9749a11749716b77105d

    SHA256

    89197e8b090039eee0e018ea0f84af9a8f628dbda8f13681090119f25a9ee223

    SHA512

    a5be1f7688b415f04e7b0df6788effa362edb017aa03c6d32f77a28b74b7f2c4f8d1f53632b84e96de471e9947b6e002b94cbfd5d4901a0eafb8003a896c7a89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe32bc9b3a96c7be6922ddf52b719dc9

    SHA1

    f3e13783a56d3a3e7834608eff228f3520a262ad

    SHA256

    91031e723402d27c22d1137e24d994ec2980699b1b6bf2033df948b947b9134a

    SHA512

    029beebffd1418455b1cc0b92898afacdf8cb02ac6b3d73d41916947956f16a2fc5038898a0cae2aef2df0f7e149a75059c2c40bed19403fa59189640906a51a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d078f5c59651ca0a23622c182835f294

    SHA1

    49a5aaff75844fa2f0144498fa7f4e57e21921ab

    SHA256

    8f85d6c5045a360672a94792f3e9898de76e3ffbfc3195d7b5f3827fc71d849f

    SHA512

    6ce74602906746d945bcc1e5a77a4f807fd0eb1a57d6566799b8159223993c7cffc79a8a0391e23f7f40571417caeb436b29a51f67ddd714eb690a87dca9dd94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0205dfe070dfbc3030f6e0fd31b7744

    SHA1

    b99f284722959e664cb1c97447d0a16b01f92847

    SHA256

    c04bcca8a72727b40fe460db4f617fdd08db452a641a052aaebaf7b6b779347f

    SHA512

    a70eab0ff219799121e5135a28ef5c08dfa8e45ff50c6a86352b39430f087bb5e0d0bda1e2fe6d7b56a202ca9ed06ed6155ebfd546b5cd22b446bbc91f20009c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b499ffb20958bdc6198afe01c1370a66

    SHA1

    54c35f7aba2d0c75c180eb1fef09c027620ff25f

    SHA256

    2ff0621454b211e1541ba16664af13e9d7987168646a281310ddb7ec05a83b94

    SHA512

    0963254057a35be8bf6a07c9dd9720844ffa87735a17ff32804100beac8cff65ed807ac2f1ead337d84822054428b1d8df9306bcc222d85730f18e9f6165b82e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1ae714d282471c157e8742cf6ee86b0f

    SHA1

    75dd4bc59c4c19b4a9803a7718709beb0040dbdb

    SHA256

    3851a0f1dd99a2c90e0e1aeecfd4d6692bb248d36a9d12d04ff3c773528da1e5

    SHA512

    2177da05e8dc7c178026fffbee237e947eb3495f435049340351938b3d7309b49696d0708800ffd43b5de13868f69175db8a1cbfdb1f147a7a69ca62ebbf24d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d544a7c51cef34fa2382e23333ec909a

    SHA1

    588fcf653ae369dd17604d173da8d1d9414bc39c

    SHA256

    cb3af5bc7883c844524ab785598cb323762281ba167143d456182f82cc33d478

    SHA512

    9c14ab348a5bd92aacd3174636e15bc99583c5276a5c3f2856e5f9ab430a112490ec93488fd3d286a5baff4dc47b36ef3974b496891f9a829b4156fda851881a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24f4a8686e209d759d54fe8f92cbea26

    SHA1

    b29dd14924addd630a241fe24893cc6d4dc387d1

    SHA256

    b6d60e8e650ea53550d84b48fdbf99e72095e045c1226fd9f41444a9871515cc

    SHA512

    c1e37e37f797de1042571d4f905997601d45b88d2e41d3c776faef20663bc0acaa5a236a64a97c1664940b63aad6cbab886d90abcefb7b0d8aa91ef411831f04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c34672d50f9b8953c2f4f67c14f7ee70

    SHA1

    ac1f9c7d42d0174e46beddbf56d9094a3c7cd229

    SHA256

    3f5fe114bf56fa242d77af1d3749920348d8048c036d78866f486cb803b59275

    SHA512

    711f2249f8c88b695ac7cf06ed47603c8f1248c527c5ea71a3e4bc71d698ae05ef75bdbb79302d1a1abffd4adf16c4b263706fa1e7c0213a0f59ff5e18ea95b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6d9ea31389f55e8f6799ace73675753e

    SHA1

    11b06b5a92a0db0480fcc3f33409110848664ccb

    SHA256

    3bed36990788611f426c175d345d5239820a9dfe36d759dfdcf10172696b73cc

    SHA512

    4a5c2bb52701777cdcb0c84fd2aa9319cf7064cd9486fee965f06e980933c4f4acd258534de4c6ee9a60586e0e4b110656399ef20f238e48e282fb1fbf562b0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    655c08a19f08ececa580372467fa2abc

    SHA1

    3d708b1c3f11df632b3299adbd85594d82501e4b

    SHA256

    dcd720033f816419e4f299d4c931f039d7cb954b09a6b33e5e1c391bc8cd4832

    SHA512

    0db63e02a30003a5050ed3925eb8d0cf2b6a480cfb5f7e06df2f9a860cd9fb11b92e1d95e91bd963b2aa173c6d01bafb813cf799c041a69e017b5abaef3911b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b5ed0a38daa139e60fa9f66986018b4

    SHA1

    b3d1dc42242bc0c67180ce32f3dab11dfcc75028

    SHA256

    105c837bc147346450106a72a74427854c7c37fb272f9dc2d666e588a22e8aa2

    SHA512

    decab9fd9b6f69e1377ed4f9908d53471c2cfe9e39e4b35b299be6241538a559552f2448f91d56be1f008950f60c8203ab9790f4e6e17490817167ba342218f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2fd45f94916c32a5b5b46fe706bcb2ee

    SHA1

    aa7cf8588e29e1dbd75d1fb97ff74f88eb65e6f8

    SHA256

    2f4ee80d4622d0db0d6ed3761d90e5a71fcefa01dc921c6e4cd05743faec2edc

    SHA512

    2e3e58fa8014ca15fe2b310b00bdef84c88c17bc829f14ce296c38316861d501d4456e2dae271414c41349673c9355f2cf65b19f5533dbeb8f4dbbb7720fc2fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a577ed73da8b2a05ad96aeec7054fff7

    SHA1

    e40263c6f98046bccb4714dfa8e37b314ad8828b

    SHA256

    07ff97c6b2967a1e4cbbf8a08c43e67d353dc653d5c7960557694e61377cde0e

    SHA512

    55caf490376451d8a5dc64eef7240a5910c2eceea615bd2947b7ea8fbf6e5a6f431ff1f9ffb691bd2c73c9c8aefc03c0d3ae612dea1c324eead050cb42cfd8a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b1ca6cedd33bf77aa564c5287a123010

    SHA1

    4967b3a488ed5430f1ba627f539e591d20ff974e

    SHA256

    6af6a0a604e8e24e0b4e6460f85a57da8e9a26749f11837e316ebdcbe5734e16

    SHA512

    7a694c87cce5b9e335dc667c2f0bff2c5d6702562111fcfdb7d4eedbf2eabb97d07509872a9f4a71a1fbf7c2834b8891738de0c8c47b211ca02c56625c48a6f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a06c30acfdf9a413aeb7de86af78bfbb

    SHA1

    6c00ca03dd5eeeef95968a4a7ac2f71d599c0bcd

    SHA256

    65dd60c17efb86693b6a187522f5b8ba64201cbba8469519b5cea0efe681e6f1

    SHA512

    10394e4108d09357e16853efe7097e75905b90227840de54ff2e3492f45bfbe917c022bf8acfd4bdfc54a77700ae07a2a54df4dfad22dbcf3d7afc4d44961232

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    850b29c5f7f219a5bad83962d062e69b

    SHA1

    470182104906f54ce667747f3dfd5905006409bf

    SHA256

    c1beb327a202c9bca9bff2d33a576c13e3023547bc43b116f8a72c0b28280f7f

    SHA512

    66ab99fb2e8bbac3de3ec8f5aabcff3998d9db058203793706acde02a991f54219615bd2a3c8d637b51c2a64ee07dabe9a45f11f8ce3805ac776a20a08527bd3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3C19.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3CEB.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit