Overview

overview

3

Static

static

3

You-Are-An...m1.vbs

windows7-x64

1

You-Are-An...m1.vbs

windows10-2004-x64

1

You-Are-An...t.html

windows7-x64

1

You-Are-An...t.html

windows10-2004-x64

1

You-Are-An...er.vbs

windows7-x64

1

You-Are-An...er.vbs

windows10-2004-x64

1

You-Are-An...es.vbs

windows7-x64

1

You-Are-An...es.vbs

windows10-2004-x64

1

You-Are-An...t.html

windows7-x64

1

You-Are-An...t.html

windows10-2004-x64

1

You-Are-An...ib.dll

windows7-x64

1

You-Are-An...ib.dll

windows10-2004-x64

1

You-Are-An...ot.exe

windows7-x64

3

You-Are-An...ot.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    04/05/2024, 17:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    You-Are-An-Idiot-main/YouAreAnIdiot/Idiot.html

  • Size

    178B

  • MD5

    934a02d4710c7c4c60822dc2a0503696

  • SHA1

    9ba1a0c272b86b18cd397ca9f696a82f5e1cdeba

  • SHA256

    a58f42a785a7e8113f870470391e5f7898adfc85e9d95aaec7045b17d36fd782

  • SHA512

    e5feb23374c7c50398d28de18377dd3a78c7cccb64f742d79c19b42da42cfa949aef32f1b21549c2e89e6fbe51f1f56a6be203fc8f41dd5cc165eeba8dab12ba

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\You-Are-An-Idiot-main\YouAreAnIdiot\Idiot.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1724
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1724 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1968

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    582f3561a2ff5d126af643809171f525

    SHA1

    32a4ab91d6b4e22af543e9213b6db7fb0af92ee7

    SHA256

    a1348cf3e421dd537b4cce0aa05b970a2679f025670cda386b6985c63dca38d6

    SHA512

    5afdd04232647c52f7c234ceb164100b320c7e20e51c7689971cf53e964786d3e450aba0d1c48986a868b9bc350c8ad1948c859d48796c20e3de6d41f68dbbae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5f071d8688b33977aaf8a1a0f63f5f56

    SHA1

    8adc68e7296c208cb8137e3a9913be61dcb5e133

    SHA256

    8bcdf1dba278fd2da578901990ca6caa962f11a82a0d5f15835c8dd7b2721373

    SHA512

    b6667fefb33cf195b58c323689c69e8f45311a95da987d55c2824b5fecb6d2b7df7ccb77daf7d076782d16f2ae48722dcf1e6911f3c2feb044445c23cc3e63ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b514ddfa58c4372de29634e8722bba6

    SHA1

    16522055f925b0cb4993d09650c237a72eb562d1

    SHA256

    449c719c164fe9c3f8d9073f283e3c039c26733d50b1329299c9ebeeabc838b8

    SHA512

    0cdb9e01bc6b30acc72f9012f32cbaadc5bd09fde8dd9baa255e0651ec9d85677f951ede4d358f9c1b62d6047e041fab51b8aee962cf3f6635183dc524713a73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86eaac5c6331a0a5e116819a78f90127

    SHA1

    885e861fff10aa09b8f3d1f54762be23800b7091

    SHA256

    7ba8f470d835e07c449f56a78520382c9369c8175bce84a03d7d56f6f0b383cd

    SHA512

    b3b0730aef7c46304586ff4a88ce093fb9c4edd29ac1569af4a64d1ed9cf1a603323197d9be622ee89ec277587623d2ea1ca028c5405575951b1549f5a6d69de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    710b2d241a777e4bcbea743cef0fbff1

    SHA1

    14d598560fa437a5348dfb6a30fd019da816e1d3

    SHA256

    6f64c5d74a890f7918d92d52d4bd8c3cd254afd406b589dd2ab57046d5549e95

    SHA512

    8e3b03d5a42c7b4d718371a5cdee6d99ebf2080600a912a67203277d3b207adcf42a9bef21c6858ef5680c6406381e91d451b18762094d55b2a8244e3395ef7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6d4c78b451e3cf2facea93a74fe632af

    SHA1

    e348ed5b745944d7dd171a6db783ab44550e7e17

    SHA256

    6e0398d2cbedbb7cdf2f1d07e8ab69c76a1c111b19118d81355b37eabe7baadd

    SHA512

    c2be2a8d5d57691fc58f37fe86efa17a930bfacfc68994efddd83cd2627fcfee0304310d487343c18027cad7e6bdc442a1831aa30e9159c91504b6aea192d4b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa2700add469c125fd08b6ae604e4ed7

    SHA1

    ef131b9a0ab33b9a7f0ff563662adca96c227256

    SHA256

    5c753703a0e1f1c103213339405d2d79ebad1b3e8e9725a334d1ab24644fd8c7

    SHA512

    52dfd05c7c2345b4df088c0197bcf8b8ef60c1f771d0c47334df56323a1c150dc5ea63cea777af27c8a4d067f3608ce8d7fdcbfb50c4d760d4a9b55337180c46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    983028c6bdbf32dd3e6edb78560ff913

    SHA1

    aa853bfd0ee0d5416d87489ca616f0064a63e040

    SHA256

    b2d4f1c7cfa19006ce3fa803da18c40c673572338362f31068410e31dfc4b69a

    SHA512

    cc65e23710ad4100df547e46e5a5ab18191a5945d68964f7ee2a338da364428bb0aa522aa28d69b7c22954705a9d210b7c7a6a8126cb9b0eab42231ee9b2f005

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da3c1f56a110d9e261d0fa93d5885915

    SHA1

    6d192567e00dcbaeadfc88befd14ac19d581750a

    SHA256

    6d4e770bbe670a2fe38dcb39b548f8f0443994f0ec79cf24d8630a270599fd56

    SHA512

    31853222e04e1282bd74b494ba39f74409da8a894c0c7b932fc54f95f57657147cb4ba09394947a3fba2e01df82f8c8e0e0522fdb0c524a18fc3d32969427d7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3cab75b54857fbac7e1b5952400293f6

    SHA1

    411f04821f65905ff0852cb85ae1d27428b4ac20

    SHA256

    77c432a434b9b02315b275191d9cd1610e5dba27c3593f43bda8aec8422b40ca

    SHA512

    a671d34fc0911f919fb737e9df4762ada85c0164ec4e062890abdb39af6de2445a7068d878c279cb2a2654f021e5bb1bbd19aa641e1d0619b6dbcb75ef811cc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eedbafdc2b937f420f0988bc641e57f0

    SHA1

    b424aea6b07b615908f81df15f081255b9621a37

    SHA256

    d8288ab1b3c18a511bf4f228906fd7faa1ef9bf34fb400815577f1d1e2a95d93

    SHA512

    62dfb07ffe64104df1822165ab8a6050733ad6de26cd668e6de0f63034e184fda52a3a5ade653a8bfc3d10c68eae71ffbbe0b25429aa45530033516d5f0c5ab1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47075898463c35ad5d87d1873d023ffa

    SHA1

    b6591d10ed3f71964bf8d03b316480f10c395323

    SHA256

    003e20a91fd76eb2104abca513221475bb2da4ee22a45d9ba989f61f08aad665

    SHA512

    773477520bd6dae941a9be64d00436e8aa5996c671157620c78ddcfb3c3cac5c76cc354a9b23abd35cf308283fa3582864b9f28d014ab002d3c7ab6df3032a2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    19bc8ea2426c9c5517b62317b4f27959

    SHA1

    6b5601ed2afe452fc7feb6ee196d29f371dde8ff

    SHA256

    c202b766d51f1d55fb77dbf55d46b606a217d029e8524d37434c872892890204

    SHA512

    cad57634f724e1b0595aecf9ba61273bbfb0a27abb09df659434625586441de0cfef4d7a579ab6b55118efc386be52dedb2327ac88bfdf9b1b273b2204aecd9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b97d52b04bea755da4a3c8955163f4d8

    SHA1

    3e26a084ff082449eebf45eb732173bc811f7a3d

    SHA256

    cf566cf1d2057bf1f3b0276ac027f6a674211d16dd515a6aca75b0fc94a40d2a

    SHA512

    64b3c0febcfeff1b4a664b0ee25599bc233636acb0c9499eaf242ff4d1705f931b9171a58f44a3555a21814041e61b3990c6fb046993860b1f10e826154e3f14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa9bb0382bcaada439146578137c2c70

    SHA1

    ca7132a1cdd9b24ec65fc9976951b8d8da9f992f

    SHA256

    4a1fe82456c03cc4868353e004420503e8be8bef8aa7013a83cfecd16148c94e

    SHA512

    d406ed73fe88c0e26639f6974a6e18339a9584834c84365a3d4b7ee0204e8041e179388577cab583eaf0619fb909bd664fb3fab65ef63042ef5c3cd8513706fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9299c224398db6fb2dc3522d390e34f

    SHA1

    490e71b8e451131a8be94b57aee3ee0c436980ec

    SHA256

    5e890d5437d31b93a6818831d8087d54a10e9369ce1658de1c7d78fd467615ec

    SHA512

    85960dc2e613e627b52c75f59ac28671d50fb5a21b4494ffe91039a3b3be97c357d7d3dcfcabce640617e8f0f6579a3feaf05d045e038a70059121acc041514c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd0859b68124203d7623afbc87e6a3e3

    SHA1

    7f3ee093d984a2d0797ae9d7e3837ca4420084d5

    SHA256

    2fdd9c08d1ddff06748fc764fd0d118b782f6defeec86c284bb1fcf19e2c23fb

    SHA512

    37fcb4e7312ba3f10d0afd67493c88826c4070b7b7acf5eda45201aac43cda86cdd29a99ed305b70f54338aa640d5aefce8e9c15e935d4adb9d54c52dccbb2c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    472f195f0bfb445c4aae0efbb1708c09

    SHA1

    1a2238ddd6d798b88ac7f285d0596d61daee12cd

    SHA256

    b59966a1550857cdabf542d4b46e83699b786f4555df4f0ffae84cb99514d75e

    SHA512

    c3afb24229319059a6ba30da71ab233393d3df31a438dc95fb7756fd963b5a5bfe00162f62d7cd50a7a2288e7b72bcc226887f2994865abc86f0da8d08ec7c3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    c1396a5ee51b1782e229d9b8475f394b

    SHA1

    3653e1f2a74fe5ef18ff40e6b11fe9740ebb44b7

    SHA256

    07e971b4fe5a66cb5951ee2ff025e2264646358a9c8abe71ada91dd63d14da5a

    SHA512

    1e4f2711968aa33affb17deedb02befff57c91c24ef0e03776f55bd893cc521b33075b702ac8e83d10c4ec263ab6f394f8584901119e5e3589bb78c8e70ac050

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3A1A.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit