Overview

overview

4

Static

static

1

Readme-说明.htm

windows7-x64

1

Readme-说明.htm

windows10-2004-x64

1

bitcomet_s...58.exe

windows7-x64

1

bitcomet_s...58.exe

windows10-2004-x64

3

点击获�..._.docx

windows7-x64

4

点击获�..._.docx

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07-05-2024 12:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Readme-说明.htm

  • Size

    3KB

  • MD5

    21172991bbc600d35ee1e8267a67f7af

  • SHA1

    36c3061b5f9da720a6b3999c1863c015b48c56f2

  • SHA256

    5519639dc0831e124b5b2a0a7b28ad310f2e4da0c2f2b360606c96464a2fce15

  • SHA512

    54bfd0b87b79b3971e7ca1c7e34c8fc7a56e7b39b7bcd5e2a78a3675b0f93af9e8a4fa6d86bcc714dc36d77bf4dc942e91cad485920e76c695b8b4b06b92e6ac

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Readme-说明.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2336
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2336 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1160

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    28a077cf63a31dbdc6b11f3c1cba4563

    SHA1

    b6e77d351e8571cb4c24d91a162e34ec97f579ea

    SHA256

    fe5390b2199e0329436165e9d398764e2cde8c25293d09572eea29a2273590ed

    SHA512

    c93bc5d9e2c703fcb33824b628c031219bed580a875b034e90b083d16b3716c0b8135ca292dc0fe041e21f6c9144a99b9b3011573a1627fad6010ca25e68461b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af48b39db037ae5240847000b848a1ac

    SHA1

    4d3591a0120a13d6ab8a65855b621053689c579e

    SHA256

    8798ae880b2ca2fbf2f281e53206a82c8d82d125a8a8900d278b186c02efcab9

    SHA512

    aaef94366c74f5b3764cdaf0d07cbb72eb504bd77fe959a2f02acfe977f693cb2ecf5e78d21c7e3d62b7c5be89dc108233391ff27ca456d3a33175364fcd082a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    086b1f7bf3b9d4e653280504f79a42a4

    SHA1

    3f596ce25c9d6eb819b35c13432d32b2831e5c97

    SHA256

    138ed36032fffeb15e3d4afa33c0ef5365ef5f85fdf6451229b4c1bf6cee7f3f

    SHA512

    975542ec45be2c7254e4a02b138b5121966bb8d57f3f29ec70500a6e885d30303a6e9198e9d2def33c9f5aac0cf15ad344d8f532699dbd8611881b58ee111636

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fcad6882ee0bbc81ea931f8b78828971

    SHA1

    fa42905d97cd7e8e10eae05dbb444664837ceca8

    SHA256

    4defb60655ab9b4c146fc1dabcc9a5ae7bd7139dadd5793eec8ba232d6079f78

    SHA512

    151c86faf49ac5f1ed692d74c9cc54d6dd2ca0d8408b59e22799cab3ba6aa8295ef07cf1bd17056caad1b06b393dd59aacc6c753be35c05f0974bea815658bf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    132c1eedaccb144d75ee34ef2e11d9b1

    SHA1

    197623a189a9269d183e519e4bc33da7f2e0bcd5

    SHA256

    ad491b6e1318e69d25c1a7513a13e512c9380bbac2012cb329374889077f6015

    SHA512

    bfd63fb02f5209b0e7d5a7bae8fbbf15292ac1612d0f9055f8bb3c895acae2ae3ae7cdeafe21008b7a6fe8903827a7aa14431a166dc14285978420d543b5f9d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c97b413e893f1ca5038878dc1fd705f4

    SHA1

    80f9ee7872f3b3505b9769458cff7710dc919fbb

    SHA256

    8260a297db8515f4c9f6d1038c54fe8c7a0ce088c52a1e7048a8ddb0a69e33d8

    SHA512

    b1b10d4c851f412913a3f7ab88bae76aada5af559927958ac8efee4afff6013b670e23dc79f7a93f586dcf6607aaad8487961b725c35aed055b1477119dcf824

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    87b43a5674766c3b7a3dff40da492f30

    SHA1

    6742e2c700326cbf33b1d26c7aa48c8860dd0e86

    SHA256

    52119b7ccf756818a37fbab6c4d4855f516c64104acd87ca046a9624ea38b9db

    SHA512

    082b95284324a430aa11b9efc0f3f751fc7f44672b007adca37a663da0980bd8963d6865923c819a80b5ff9ede3ce2dcc2336d4b5444c34396210fef721157ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f206918212d04e06a7000c16c94f9c74

    SHA1

    06d19850d0a4e4bb93ba641c60bcbc2eae076074

    SHA256

    b8ecdcaca40f61b98395759194456c8468a44494a2763f719111c07f34c9b2d0

    SHA512

    e63475cf9b83f8356ad8dcce1d5ac2583101252e3b9e61ced694021985d5be10a33d049b01db3cf2371847bbd8fa0d63b7837957890010509ca1e028650d4633

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b5dbcbb34e5dad660d075fefd09920d

    SHA1

    0c8095fe975e7d2ae94cdafbd9073fea55170877

    SHA256

    73d6a229e9b499461d954cd2e07b5e40a49ce1df38bcbdcb055870e83d5c1217

    SHA512

    0bd7a49640e8bf5be02cc0fa024bba211b8c8c92c9eb21d4df9ac27d0c640b35a4cd18217d0b4917c20237763a30592d24803f97955bcd2e4c4af00b59c29fc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d27aadc1f561c0c2ee0c2e37f95e6da

    SHA1

    db28bf65d27edddfc954718643b927290f390de5

    SHA256

    02e0f67d07257a7e068a40a72ba578abc5df7c759018218acbd2c3c8d765e725

    SHA512

    bd6d84bbeda2518e9264d98e1e168a519e5ff8dd7be9e2a59ab191c816b7b32644bf3e48d045d34ad883d7609db2d454501932fb59f0b87765904396400c5d83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8d1b11758c6268ae454d95e95dd5d5a

    SHA1

    ed2b9b2b05cadca6ce556e19f32e798c6fed6479

    SHA256

    90f6db2a0de97aa2d947900f0e4f771c1cc927307afdb216aa0af4fbfb7c4cde

    SHA512

    210b099881bef5425e655438c496d3c3045d5d78d26b2881b609b0ebeda3d63f66a0db5a47f43a06052e9615754e87300ab6f279208372289cd50844adefc874

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fadd878a3403c1113d9088a7fb9fc80c

    SHA1

    6a4460646e30c0600bb1ff4e22a538d2485e186a

    SHA256

    662ae930b53fd981320771599d03531a335dc71f2bf489101f7fba7680392bf0

    SHA512

    0a61c09091de33b877bc6c3ebcf1dbcb6ec3b55538c4128e0d408a7d8c2e5496a06b73822fa9a3eb7ad8d0d883b3091af00aa4ee7cfeb26c4d2ae8c6511344e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    33b9a8adccab06d764d04b5c257c74c4

    SHA1

    7dda43280af21276dc30393b545d0d24540a183c

    SHA256

    d85dda50210abd7c871398ac5bdd29ab4a9fae214bfe7537bea72583b4f7fac5

    SHA512

    1b4fe48627d9f241125b47c71af061692d45a49ae3a3c6c552b46dd2f4e14493290f91ca5e00fabfa93c2a12955619287094562fac6c3d2eb4bfbac8ace471ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a82ebc408806b5d345cc5e79a2585ed5

    SHA1

    8fa925d6a147afececa2db4864190e506d424b7a

    SHA256

    db9b61fcee702144d80ae5c0e1023336fb09e6c13eeabc39354c4a870f659ab2

    SHA512

    426dc8cdd647bd9b5fda73e30e7713df322935e4fe63e93b0f2be09ef276b613482258013f938f584cab1e5a36dd28fa36821193d6717acb0c9e56d93c67686a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5b2545bd7d179d66ad96b6dac378943

    SHA1

    cfc1f9fbce1b4c522a9f77c08f780d8ed7077d27

    SHA256

    34b2fc0ad007e6ba8ef6da3265621fced3c5136dc30359ae8b7f08f296cba17b

    SHA512

    80de28b5c278f72d19973883c51185c2d3d7741e305471a10ea4e96f129d4b73de912a59ef46f549cc3815d8612726dd71fcff528553af1921e9685906806c24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f2af92c0936fb4502a926810bab80f5

    SHA1

    5a1b5f872b38d77c5dc1a334bb96fa031c42982f

    SHA256

    df4faed6239306b27e296d354ffb126d987e994261bed97d576d2e4354d75577

    SHA512

    e077da048cc852e042549b22cc4a8a43fe7070a9b7eb3a188bb9eed2a039414822a6c595b511fe58c9a4517ed9019295b9728e67b16c7757d634a80b92cd702e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    42ae4eeed1d98829a67a9f1e6e6aff73

    SHA1

    eb5496253016508589e6789c05f1b9edf5df3f35

    SHA256

    c7f36aaaae206348752072c734bcbff062dc2124cd3e6a597164cc7bfe5515e7

    SHA512

    3766ce602053e19ce10a742d87ffdc76091389331d6f1c9060886630eeee6067730bf20112231b6f180d84b74810e4148acc223c89d5096cefba0d6f190273c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    43914c64bd776bb6673779b06d4d39a9

    SHA1

    921bc9fd042129e5198e7d984f5f982a27b4158a

    SHA256

    b21623590dd9e0ec566ee5a521767da5b890ed1e4c6d8f46f53570ebf3593788

    SHA512

    88b454b92d969b6d68342e0f11498846ec49d7d2d85c759425cde6415d39544be45be2058a59e5fe75edaa7d286cc4a9ab84d5e616ff5dff976a06591d9db86a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1CF5.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1DE6.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit