Overview

overview

10

Static

static

10

AvisoCobranca.exe

windows7-x64

10

AvisoCobranca.exe

windows10-2004-x64

10

BaixaCnab.exe

windows7-x64

10

BaixaCnab.exe

windows10-2004-x64

10

BarcodeLib.dll

windows7-x64

1

BarcodeLib.dll

windows10-2004-x64

1

BoletoDiario.exe

windows7-x64

3

BoletoDiario.exe

windows10-2004-x64

10

cadastro/c...ave.js

windows7-x64

3

cadastro/c...ave.js

windows10-2004-x64

3

cadastro/c...cao.js

windows7-x64

3

cadastro/c...cao.js

windows10-2004-x64

3

ckeditor/p...yui.js

windows7-x64

3

ckeditor/p...yui.js

windows10-2004-x64

3

ckeditor/p...e.html

windows7-x64

1

ckeditor/p...e.html

windows10-2004-x64

1

ckeditor/p...t.html

windows7-x64

1

ckeditor/p...t.html

windows10-2004-x64

1

ckeditor/p...wsc.js

windows7-x64

3

ckeditor/p...wsc.js

windows10-2004-x64

3

ckeditor/p...gin.js

windows7-x64

3

ckeditor/p...gin.js

windows10-2004-x64

3

ckeditor/s...kin.js

windows7-x64

3

ckeditor/s...kin.js

windows10-2004-x64

3

ckeditor/s...kin.js

windows7-x64

3

ckeditor/s...kin.js

windows10-2004-x64

3

ckeditor/s...kin.js

windows7-x64

3

ckeditor/s...kin.js

windows10-2004-x64

3

ckeditor/t...eme.js

windows7-x64

3

ckeditor/t...eme.js

windows10-2004-x64

3

discador/Atto/atto.js

windows7-x64

3

discador/Atto/atto.js

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    08/05/2024, 14:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ckeditor/plugins/wsc/dialogs/ciframe.html

  • Size

    1KB

  • MD5

    520b9beb2d3b0184e7ba21172261df57

  • SHA1

    b2a61129e2395a9e7c7b122ee3812b9a587fbab3

  • SHA256

    afe9369f3374b01b90814a7d2db5ae6ddf3ac6c66f50d01023699b66c58b817c

  • SHA512

    5ba2ab84ce3a56f03f72199b446ebcf238290b9606a2632eb9ef467aa3d33e203767fb49751a233da459582e99765ec9b0fcd16c74d0cc2bca1ac070cf290c01

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ckeditor\plugins\wsc\dialogs\ciframe.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1976 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2016

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0019354a6c30206de05ce376fe188bd

    SHA1

    b91bcbee1e321869402262b51349498be2994dd5

    SHA256

    838d87e129c01265f8fced34c76addd256845469457a897f5ff26b21f129801b

    SHA512

    0a7b532d01245c2eb149b8f3e2e1948bfeb1f794eebb381cf7da72e774380f182c8661864a5e95cc1b87fdec43b7526f8e315b447d387096aaef010ce797e7ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5c72e9d439e898bf37376cb3c88764a

    SHA1

    d8cfcefa92798be8d3b36fd091ba1dfb4d49f7cc

    SHA256

    518737cd565634787124add9987cb8136cf7dcbfbd340d9d0ba211b7e870707b

    SHA512

    e9c155e5d3a46deed20837f0338fa4f9a561ba106b38e2b84cea1304484206bbebf96c231739a1089ab47553bb535e469ff872ed527e6393910f52761195368e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7563f7fb3be812703e385b5e6936d570

    SHA1

    19e4d180f5c76a8e5001b98a70254050ba7ef8b3

    SHA256

    59c2c5c89b793d52cd5a336ecad3660b14becf2510a5f1d4f16133af1b74bead

    SHA512

    56e817e416cd297e5ec328231bbe31507bbb8cb545db34f7e1056ee422233c29174e50c7f020aefa9c353bc03b9cc0bf323504fac1367798f7b0bff5a8dd84d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3ea11c884ffeaf9a7991b39740ba18ad

    SHA1

    56c7ed0225ac2cc67f2e15288b34a7e22adc1c96

    SHA256

    6b27616aa0e8b3a4fa15b7d88352e50617c47a9eba81102c78853bfa9d18a804

    SHA512

    69d248199903d72615b950f6607c9b52adcce01b0f4b6f2e33cb0b02009bf3810124addbba8022b0898c735c3b2f83f641cabc8e0fbca3718a2ecf8c17834fcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82f0cfdcc2ead569351057a37b8c5c4d

    SHA1

    a0063dcb69793d2278c24e08158111a703f303e2

    SHA256

    5f4d134966957bc8e3ceaf9d5395cf45e99446e1be0ceba5a5b4984b2066efaa

    SHA512

    5bc07d5052eb69972ceebd07275a23648ba048a523fc6a21c0909ce04e46d06930d55933d24d91e54711e566f3d0e74d97b8a53d39504a6be3d56e427d4b6778

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d3b92418fcd89cf46a7e7ba2442980c1

    SHA1

    d4f0b78a9b6a71f93289432dc002b5897d2581ab

    SHA256

    88b6ac805a233cbc664970d0e22969b5b06eba82fbcb47a58840ea4e54962770

    SHA512

    bf79149b18f15397617aa1adc8e7a97d60428b892a7be92d1bb736540d1ce74804538e50c0805d2383a73cf9c9f002f6be1714247727b7dd15bbb686371555aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a42c04c9898ba1ab7c84606ebd7835f1

    SHA1

    8f2153a3a29501670810e51d73a323b9baaff141

    SHA256

    f7a2ccb0c668f3e5258f9284c3e0d8eedcc8fcb5721b639548ab1e0596e72751

    SHA512

    90f2b18256ec1bf450affbd5fd8c9ebd31e62884b9c5cfd92d62cadc5f56e3af049a9f07dac8c48da9fc86ac425fa2a25ddfeaea5e7cbd2d74434beb65605861

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff31fc672122231013e20c0f9c8ba70e

    SHA1

    ea953778eb7585a12ba38569d0802648cdc6060e

    SHA256

    433a269a6156f0e568e022d6a78fe2df3210a7a5e17df104022502306a9a21a7

    SHA512

    e93cf82cb01442ad52db57f27f24fdd3563ecac781f83f3030691c17c7457e6cd910ff6b88dd5bc3252f6f9ef37876ae2113d85ef5097c89ca4e79d13653380d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    166a9b53628690936e708934adbd444b

    SHA1

    2eb6603a788681af56a8fa8a6b6c992ff6affff7

    SHA256

    f1d33ec4d7120d54b6cc91055d100e7ebfcc3a154528105324c1a6e54d859732

    SHA512

    5026d061cc87e30178f560a1b27e0dee49b3eb8706763d5b2296ae48bddf5373e62c025f958cf2772e18b7cc46de28657fbc81d88091c8db9da50d0d72124e2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fd7fa5214f361c06482969ecd7ccc9d8

    SHA1

    0908d4490cd690279a60d4317353a03eac552e5c

    SHA256

    38a10ff8221b464a345045f35913625e0fc24c68138d3fba02695363756a4070

    SHA512

    aec4dcf05c3dc21daec4fb65d0455e65f5745ee25c45290b4d0981726f6fffda56f7e04fbd9af8c445212cc2333899f9f3333102ae8487fbfed200610d9218f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82dcf40cdcfbd44404472a4b22b59bde

    SHA1

    7991e180f1224a3a6716a862d0b622493883fc92

    SHA256

    1b815336ee7725480ff540266391f07b941d081caa412a379dc7619c2ba3c8f1

    SHA512

    d29e6bed82bf926ead0921ac611975443757add17776ec0849e5c40dfabc47517ebad69d197653595c361546c36d0a77126c0d6825c9c2c65659b9b4646ed353

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1c49a9e2bd02c3600130d8ba679c5b7

    SHA1

    581c741911f61bbeecf3eef31975b3e9d2b30de5

    SHA256

    09cd43de4176d213581f69fd6672961b5b2d32b2d0d44f6620c7965642d67713

    SHA512

    2c43c9569d4348adefc6186af6fbc3287b336d143f052731c50c568d612bc09845f453ed83831863c3dfc72db9206d738439a62a7b44fefbf8a50ae9150df573

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    12e1485335f6d56dc46486a1cb605491

    SHA1

    82b11849cc26cb558b8b1e997a8bb19b9cc2ff98

    SHA256

    82dc7896e7f6b28b3b01bd3b1120151552e59270d07b9eac3c80f00f2c472782

    SHA512

    d9024e7d50c1467b897af3c2ddb3ffe14e68300d2f32f9921c6a9ad3d6a3c8c3069115013e182fa8ec4dd3d1785a4b476b38a4113cfd1c302756a9419c79527e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d284e7bedbab3f6427695c236cc659fb

    SHA1

    a36dedec12bd395e7c327511c9c57d77dabbc3ab

    SHA256

    d0129cc2a08a3151e6de3eb67f5e0148cef20fe56e37985d05c88b9d5ee34746

    SHA512

    84c3f93f53ba818dd298009b5fc72418e343d8a4f56c4fa3cbe63b5a0d254ae6461ba229bfb5484632ae38834fc573f3d57b9e962fd4442ee0a2b341e07fbfa4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    81b513b78570146c2326e8ec0352cc23

    SHA1

    54c239351aba009e1149333e04d7a6dd60f9f726

    SHA256

    b029ec0756606cdf5ca01eb38ae08466eccbb3cf2b5a7df453ed1172d3e834b0

    SHA512

    8e3ac183e0968fcb4f2ff46cd921c6bde2a14874604a042d785cf5655f00df5058569f38cd59c349fa8f6a18d498155054c38ee46d8f8336889998cf025b53d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7cf65f64771c1778cf98682b83ca1304

    SHA1

    d302ff7e8e100d891361d159ec64f97220fa2e04

    SHA256

    ec667300f4173d4757472d5b3e4e6280b155a209a65add86f1c7ba6362fc212b

    SHA512

    34a698dd27969ba83ca4d7490411d82f382b35feb7b4569cfeddb1fe0fcfd57ef2b2c6bc58bd84088a669e627b53a8f8dab95b9400989d1b45661a25c685980e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b580c87aca04ee9e4c56267f2d818e26

    SHA1

    cb04e170a5eb92deee6fa0a36ea61bca8b95c7b4

    SHA256

    740ad965620085bd8c7e1c3dfefa97fd9c1b51d087d9234a1eecbc8479168a35

    SHA512

    ff656c0c0b696181eb924c5cb56f72e6beda276f8238873f76daa76a88e9dcd99e23118f1bdea43a752053ef00b466657837fb07b42b93fa64592ab21e77d5de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    001a928860135dd9a36972711b5394cb

    SHA1

    968e10aace6d4393789e700e09164c79b2d66205

    SHA256

    5cab6a3ee299ebb2a82953e0f25655a8dca70c65a7f9a10538c51e22d0d5a113

    SHA512

    338529949bf7174427e68eb0864f10d91f1fe8fe21f31f05a33b99e67c1355f4217b9a7793b1a70f50a92aa023da3339ce394641f0bddb0d37f980cc652b8928

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    757da157f4814661d67e77e24352ad96

    SHA1

    3ba76994365cb0330339f1403e4c6dcb89f3d331

    SHA256

    49ef0ac3c72784c2745e8b299f7b83e9b5bbb1816d1f0bd5dc79c35246ef558f

    SHA512

    243bbae07d33fb4d9aeff58e2df1c764ffa722d0145b297cbffd559d26acc5ba8fbdcb8a3a3d528ede0b854a79f79fbe60852df067a9f7d5e14605e25d74124a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    89866ca3d15cd941395a39b70c28f5b3

    SHA1

    54bfa6c5cd4e8c86e10e690131c4d7c0e856ee05

    SHA256

    defcde8d99a5bc9beac8c07b5123a5e4ddeceb6211c800e47c8dacf142af914c

    SHA512

    38f7eab5afee54d881e3a49b24f3c45869cfc2021933d3e80cac246c883c52df3c29c9401719bb88b562e22f77179b2562291d96fa49251b5b1e1d937db63cae

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab51CB.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar522C.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit