Overview

overview

7

Static

static

3

11e12e0c4d...18.exe

windows7-x64

7

11e12e0c4d...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...nk.dll

windows7-x64

3

$PLUGINSDI...nk.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

GoogleTranslator.dll

windows7-x64

1

GoogleTranslator.dll

windows10-2004-x64

1

ShaPlus Tr...or.exe

windows7-x64

3

ShaPlus Tr...or.exe

windows10-2004-x64

1

help.chm

windows7-x64

1

help.chm

windows10-2004-x64

1

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    04-05-2024 08:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    help.chm

  • Size

    59KB

  • MD5

    950954cb3577222f97461599c44ac891

  • SHA1

    4d10d08fe971ba6aff7a74bbee79b1ca4390761e

  • SHA256

    833ab65897e5867dad5319b7f41294128185167fdc1c928b43c2a8af06078ce6

  • SHA512

    98de0beaeb931468d60c16f7987c79ae8abcb4f1ab14e4d89ab8cd453018b4638b907d11d62916e96ec83ff82958248ed4b0a9a59ad3f25f9863856c62a1ce9d

  • SSDEEP

    1536:Y9ooojhe/ro4uLXMsWCf2P6NTLGS0GgzMU4rlm48:Kor4ChhGSvgzWmP

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 1 IoCs
    adwarespyware
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Windows\hh.exe
    "C:\Windows\hh.exe" C:\Users\Admin\AppData\Local\Temp\help.chm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    PID:1704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1704-24-0x000007FFFFF90000-0x000007FFFFFA0000-memory.dmp

    Filesize

    64KB

    Download