Overview

overview

1

Static

static

1

[origen]/o...ams.js

windows7-x64

1

[origen]/o...ams.js

windows10-2004-x64

1

[origen]/o...nts.js

windows7-x64

1

[origen]/o...nts.js

windows10-2004-x64

1

[origen]/o...ts.vbs

windows7-x64

1

[origen]/o...ts.vbs

windows10-2004-x64

1

[origen]/o...app.js

windows7-x64

1

[origen]/o...app.js

windows10-2004-x64

1

[origen]/o...fig.js

windows7-x64

1

[origen]/o...fig.js

windows10-2004-x64

1

[origen]/o...vas.js

windows7-x64

1

[origen]/o...vas.js

windows10-2004-x64

1

[origen]/o...x.html

windows7-x64

1

[origen]/o...x.html

windows10-2004-x64

1

[origen]/o...ain.js

windows7-x64

1

[origen]/o...ain.js

windows10-2004-x64

1

[origen]/o...bs.vbs

windows7-x64

1

[origen]/o...bs.vbs

windows10-2004-x64

1

[origen]/o...in.vbs

windows7-x64

1

[origen]/o...in.vbs

windows10-2004-x64

1

[origen]/o...e.html

windows7-x64

1

[origen]/o...e.html

windows10-2004-x64

1

[origen]/o...r.html

windows7-x64

1

[origen]/o...r.html

windows10-2004-x64

1

[origen]/o...1.html

windows7-x64

1

[origen]/o...1.html

windows10-2004-x64

1

[origen]/o...0.html

windows7-x64

1

[origen]/o...0.html

windows10-2004-x64

1

[origen]/o...1.html

windows7-x64

1

[origen]/o...1.html

windows10-2004-x64

1

[origen]/o...2.html

windows7-x64

1

[origen]/o...2.html

windows10-2004-x64

1

Resubmissions

26-04-2024 14:55

240426-sanrsaeg7s 3

26-04-2024 14:54

240426-r9vtpseg5x 1

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    26-04-2024 14:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    [origen]/origen_police_menu/html/img/mapStyles/1/-1/2.html

  • Size

    315B

  • MD5

    a34ac19f4afae63adc5d2f7bc970c07f

  • SHA1

    a82190fc530c265aa40a045c21770d967f4767b8

  • SHA256

    d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

  • SHA512

    42e53d96e5961e95b7a984d9c9778a1d3bd8ee0c87b8b3b515fa31f67c2d073c8565afc2f4b962c43668c4efa1e478da9bb0ecffa79479c7e880731bc4c55765

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\[origen]\origen_police_menu\html\img\mapStyles\1\-1\2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:764
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:764 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2004

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6188a93a9c8846c08854f6ca52400cf4

    SHA1

    868f1c166d02b132cd77eeb256a43d797f2c833f

    SHA256

    35d5faed0c4487d9ad1f4cb3cb3fc555e99a58bf4848e3fa87f29cb2e5669d8b

    SHA512

    cd1e2d4c8ae4c8047b8a885045da72dee517432aa5a7f5c3aedf8c1a2298ede71dd5d2b3929686d5a0c02c0e4292fd7cea423983b7916929a67e3f6fd5e76b1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    afdf234d8995e8e8386ae7e2107ce141

    SHA1

    673bdc0000abdf2b739ab8d5b0958693ed588ff4

    SHA256

    9e67aad367f2f0dfb1654fbef4b90755d39bf1b8fdb73277c964b551aa30bfbe

    SHA512

    446f58c5f37f9188422f255db9b79ad81776e77012f29143b268d55ef4038976de73ac96c9e6a7aea60654eab28cdfeac8cccbba1c62d7c786959852bdf808b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17d0acb6dd0b6cd536c03ed16f394c82

    SHA1

    8fb93e29e5ea01f70b9353d99f2ab378ac964511

    SHA256

    4a1792d23e28b730ce3eb5efa3c0596ad8ae78d73734ea0fa95bee0d6e262a13

    SHA512

    19cd561186ed4223ff8c7b5a649f637c88a2ec53990ac0d6ea10efc589b753da43b9b3ae3bbf72420cbfb59274372cbfb97771c94464cf2cfbb86eff7bf4c372

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a2c60f28d92a93b01d3a49479d3233e

    SHA1

    60ec9e70b3c70bc590101f61113abd1df9bf1b02

    SHA256

    3647cc02c900b8ee3ac61947100a577a262e2db19ec18eb82ca442fc60a25ed2

    SHA512

    fee7aa089f348d6f5b75bc7237cbc9041a755f37e50b4418abbb8b26527b3904f756758ef9202c4b16cd3ff23f0aab60dbf7b0ea9c4fb37fe7a634e1845eafd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6316baa2ca145ccd9ddcd27c41ad2752

    SHA1

    d5cffffd02292f77370aeb00d5284de6366779c2

    SHA256

    208127ba9095c4313090e1d14befd0784fd7ec29a66308c99175782bd278ae79

    SHA512

    403f07dcf5ca934b810c22b670adff1ce65356ef46879fc0e5f2922b178b1373c7d457433ecf0f631b8b885e6fee517f1263367f08c63b74aa1e65afebbc7aa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d96ecd42ada46602677143d934e55132

    SHA1

    a25d2d43a151f942d8df14f23e90d817d9589c12

    SHA256

    1dfdf220ce782d1cdb964bd733b66321feaca13589945fad3863deb0223cefaf

    SHA512

    d8b01e2534ac806589e797468bd84e8c2c8666b7e39982c3bc30bd0a7e6a6905201404c938bc0387624dbcf2b2a7e9434cb759f2a3e091bd9aa3f138b991c47f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a58237c59ffb47d37dfd4e6fa4dce21

    SHA1

    5ab3da2c11ea254ef5bcb103e7aa2da531d630e8

    SHA256

    2724606530060d6840118cc695b6fb313fd671fc88608cd01d2395cac2068767

    SHA512

    383a7b3ef996ec4bedf0cc93c97ebf0c3264eb9eed3be72349552df6a08596e9ee3dfbb4f5088f1b71e6c8ac40286abe28873615526b3dd8f9d09f41d25baa3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    015e6b4a1ce0b2877643a64340ff032b

    SHA1

    a1367fda1c6d93a8a28fd16a4cd2dd82dc7f8f01

    SHA256

    30992f8e92a1894fbffef612b5382c9be8b4f1ef5b0a7d5e68088b9cc23a2ae2

    SHA512

    ff912037ee99a2250f7acac6a48df5676e70f2c06094c13ce4bab4b610cef216e6454dd1d37b4935bdf39573b3a5edd3aafb45fd9f2b34945d531d8242502e24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34533fd02422c1d50b95ff50b3e695b9

    SHA1

    45cab98c3e0feaee105a186ced400982f3208090

    SHA256

    a2eccfd645923069d2810fc9e096e62a634d25687254a0cdeab016560389469b

    SHA512

    2acac10de903995036928dbb569f251538db72a135443714a78dc9fe13a1bbf7df8e238823a9f08b0f50140c0e937eb9c7fab96b079d82c41d18ffb61da99dc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c84e97efc80487c3666d0edf55678df

    SHA1

    426591c4674d9b0d21c98a1152b16c0e69927b5c

    SHA256

    fb38280701f1893a99d6effdf5a0f8944e2d7cc3377f84630cd7dd14a75e7465

    SHA512

    41b11726664d369d17f8e2ad7e0007263258bf4d23160dfd8dd81d09a957149eab43e1cbcb63d0c6e3065431a7e564117660ffa93a2b112ea70382328f31a03f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    339de6e62cf5250861f24c5abc1f47ae

    SHA1

    88cb4f2c148d55a1055c39f38673623c2a4f4e0a

    SHA256

    b9480a381ad0c4f03604f2845364c72d66590c1c70e3937f2ff063cfb46f7825

    SHA512

    3c187a48cec4bc4a2ae95c9772776856c9b5d1eb3af638d6f68717087ce424a746949f155c2e91f6b89b35a1e50a6136d11f480f26815c99fa85c85a2998e46e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34f88a5147a62841a04743ed66b4017c

    SHA1

    a01283dc6d8aad53c94a9cdc48bc0a1dc2d05189

    SHA256

    ac170c7b213203723af24fd6ccdab88f29776a81a4488f199cd4dd4fb363d396

    SHA512

    b1a596198d4c9b70e9a3c9fde9da197ca118beab6385a42bd93178f87f25e80a8bb60c65ca9358ea99727bffc99f2626a04795137df4e394542a7e057ec5c066

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    88eb705e9949a3e662267e0e8eed4017

    SHA1

    3eb1603f5d3c684ba0951db4fc6754d199bc6859

    SHA256

    4fb629b3eb1fc194f8120986e3fd4a6cf687cd2295165d9d3e72c6c5e4e4da9b

    SHA512

    4d82fa65a9c25996e790163adaaa9653249f552aad6ad0e0e399f80bd29bb47461af714ea8bfb1e8af48b9e509b65b56f8fee9ad5a6d6fff3b1c2919bdde28b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08e22715af4908d6ee6960e5997857ee

    SHA1

    5658fc6fb342a0121dab671e83b88e7d037ada39

    SHA256

    df7dff110da43134a8e013bf78af4e2fe4d0cd24a58ad32c29fdba0c4efdcf12

    SHA512

    7c29bb8401c170120dbdaa14e07a5a52165e2b7690409a64928d5be51cda344a1689aba23ca9d69d478250c7d7983e33c9406dfc555618fd98d3af978daab1c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f412091bd5f53645ab300fc17d93724

    SHA1

    b7aca3a95605bed5380028d3329a62d4bf9aa996

    SHA256

    afacfcf5f75d5140c19a3edcb14fb218967deb2b9c93d11676a99346a5ecaf3b

    SHA512

    7e9eb1f85779a40f4ad09a9118d14c7638a45a01b0c2bbca7acfc8fb924bdfbab1d6c0fd28e103d5cfe8d348683479bab5b0357236bd588d76177e7324d5667f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9268432ad138115ae54ef248125f826f

    SHA1

    2c83a9482b0d427c469c614cbc932f260b698ee2

    SHA256

    96397bfe78bcb051fdbc44e461b3f4ab42e164a41a5f2bfc201b1b337f44d3a1

    SHA512

    1c446ce3fc3ff9a422d0a259579f8bbf6f215fc5c0c20d209dc62a7bda9c4fa39fbf6d614e4e65f39021aea6fff4effac225b44402389d710130f03e456c1844

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    130ef286f49064a94622697da8f32765

    SHA1

    8f6bf9469489fb89cb7dc0eebb79ba3c123317f0

    SHA256

    21708364eaf4159e4e2ef06ae1accc5b2a4f2e24ead7a2b2675a0b6fa52bc6a6

    SHA512

    5d8ed3847d70839a85b02babcc420e7c6050b3e6fb65569f877461acb91512b150af56f561ef6a51338b3323fd41744deec6c6652773e95fdf88c714d39b76f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    932afbe5a19390d75e27713dadfa67cf

    SHA1

    6b230b19d0e731b1584a63b303766bca56e7d988

    SHA256

    e291cdb917697eff1f93952b1a0dabf261ecbe3427223a3df823fdca15ee4270

    SHA512

    79e6ba94e484f63ff97f48c755a36ad0fc794ebe816fee643565b0d5f1a13cce2472c3bb011e1cae1a0eaef00ac41dac4edb2c03c0f2adfc7bbeffdc27d32c6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fdcd4f033804d1dff2cb5fd8774f7da6

    SHA1

    3cac78f394daed17026e12cd07438622b36f832d

    SHA256

    ec469fe84fa4955168b4a40c0240851ee8855f3d7577c9bed433895688863e9c

    SHA512

    b447226fb727a6db04e6aaccf76cc102ac02d1672d7d3aaafd39a44b093d576812cbc0bdd26e6d23eeaabb4796383b06c0a45b833dc11e2246787fd975ae13b4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3390.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3463.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit