Overview

overview

10

Static

static

10

AvisoCobranca.exe

windows7-x64

10

AvisoCobranca.exe

windows10-2004-x64

10

BaixaCnab.exe

windows7-x64

10

BaixaCnab.exe

windows10-2004-x64

10

BarcodeLib.dll

windows7-x64

1

BarcodeLib.dll

windows10-2004-x64

1

BoletoDiario.exe

windows7-x64

3

BoletoDiario.exe

windows10-2004-x64

10

cadastro/c...ave.js

windows7-x64

3

cadastro/c...ave.js

windows10-2004-x64

3

cadastro/c...cao.js

windows7-x64

3

cadastro/c...cao.js

windows10-2004-x64

3

ckeditor/p...yui.js

windows7-x64

3

ckeditor/p...yui.js

windows10-2004-x64

3

ckeditor/p...e.html

windows7-x64

1

ckeditor/p...e.html

windows10-2004-x64

1

ckeditor/p...t.html

windows7-x64

1

ckeditor/p...t.html

windows10-2004-x64

1

ckeditor/p...wsc.js

windows7-x64

3

ckeditor/p...wsc.js

windows10-2004-x64

3

ckeditor/p...gin.js

windows7-x64

3

ckeditor/p...gin.js

windows10-2004-x64

3

ckeditor/s...kin.js

windows7-x64

3

ckeditor/s...kin.js

windows10-2004-x64

3

ckeditor/s...kin.js

windows7-x64

3

ckeditor/s...kin.js

windows10-2004-x64

3

ckeditor/s...kin.js

windows7-x64

3

ckeditor/s...kin.js

windows10-2004-x64

3

ckeditor/t...eme.js

windows7-x64

3

ckeditor/t...eme.js

windows10-2004-x64

3

discador/Atto/atto.js

windows7-x64

3

discador/Atto/atto.js

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    08/05/2024, 14:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ckeditor/plugins/wsc/dialogs/tmpFrameset.html

  • Size

    1KB

  • MD5

    cc4e887260a0c8632e0758b34c3cb979

  • SHA1

    3315b8b6f2fc1b66ab2b4bb5f6e52a2817fd8a07

  • SHA256

    52b39519d34638a7220c0fee78ccba0ba9d35852a47ad24cf4753fabf1fd7a28

  • SHA512

    b8ac9aa6d1216e67e1502b85bed530b40e74568b0f24b46c820400cf3a74350daee480c84dd287f5a7c6276f3668b480b1727926694d604b7a670ec222cb404a

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ckeditor\plugins\wsc\dialogs\tmpFrameset.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2204
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2204 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2484

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b92b53adcb5a0a1e944588e790ef7b8c

    SHA1

    463c8154422d9daacf944bd239b2a3201aa37cec

    SHA256

    a8b010ef0e525b63fa2cb5823693e42201db0bcfbcec266a60476b5f04581da1

    SHA512

    d9836f40003dfaf250ed3a9cdf9cd573722966ceb4113a0ca17264d86bae73496140a4cedefc4ef1b7fce218ad9649c8aeafd2308990ecbc2efd625883e9ff58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    28444669735f5a52a6ca4dda81dc1d22

    SHA1

    72b71b2f13188145a90a2745e10c8d115519a037

    SHA256

    f4b7c2eb4d1eade128168c664344b4e47a7b30da88a034f457a4a02b5b38034a

    SHA512

    51b3171919d10ae62f9a24ab300fb3c835f892bc478ca7b756eb508499a53e50202b13b5d611a4248092c176439a9c116f88bc68c722404b499b3bfaba49ad09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f15096f2257267824a853f272f96794c

    SHA1

    69ab010eadd5eea773b52946147e012b0811c51b

    SHA256

    750ccc260d3d811182ab1bc3bc02aaada6627b769dc699eca5f192bf85008595

    SHA512

    f3d21bdb903f58f2a2adcd88cbc00df29cb6d13fe4c804e5de845ddc41c29e3b2be917dfb2fd224af92840a51bab88d51fefde3f64f561502f70b98819493ae8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3981fd974504f1ea7570e93346ded5fa

    SHA1

    c783c0ae487fa4532094afa572aa1bbf7168ecec

    SHA256

    d65e4e9960b7ba3821498fb350e63ae32218f57e08bf0a4176625cc4a37697ba

    SHA512

    cbe5b80397ae19a0b59ad51c165ac24e0ceb950b2ec21da4088143f14df9efa705eda6fcb5cd153e92849bc21077ff875836cb631749be7c0d11a606d7a40a97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac7af192ed1c42fb237f62df6522acee

    SHA1

    d3a6740f08c89255f6e8c4ed201b5d20737578a9

    SHA256

    fc374a94dc7e467e5c345151f8b9601c45822b2f0adebb62b0d27cb9a107d149

    SHA512

    d4fcc9558db0e6d8e9fa877e63aa7c0bf9a2cb97c0ece1e3a6a630f2611091dd93d78f1bf70100784a803f73c949be86331542b24726e51569f4244e36b28bc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    16ee18c73e41c1aca149d9628c4a82f2

    SHA1

    ebce7ead11d1727350d05ef8b30681aa732e147b

    SHA256

    83e25082632522670e423187184aebc1191e4787af9aaf0da55be69727f4173a

    SHA512

    c03b5beae7d9a0cff721da627e0ca3849c1ead3b90ca54a1c71708b4f734adc756318016f97def1e840b97402ed08a886f492c38ef9b344f186ce6b064249ec3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9fe68d37c3f33eb179540bdd499d8ead

    SHA1

    5e024979299ee81923772e4d0a60422ed2918346

    SHA256

    2106afe6c5d623b8c83292597c59e9d71d8a4c9fd086017339b326da6872fc91

    SHA512

    3d399a109cee5867148aab1569baca4bbf6de0c340f59dc1de8b7e5b6f7ab2bc3b7a45b784b273dec4c321b272e0b08b8afb01b974ee2972c5ce63d11cba0671

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    35f46bba83accdb9766759877efa2b36

    SHA1

    5da411aabead9f4f79c7f3dce3c69cfedfd89022

    SHA256

    88d4e92606f4b057ef00e23e1a02872d146e2fc20ee6981ea15321ea89b7960a

    SHA512

    264bfac0529fac157d8bc90fd00570003c8c225768a8f199367c7398973285d70cb3a5626e778a3f71d0beee4bfef549bd534ed1be74adaad893a6d314cc2803

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a2f9eb1b27ca29cbdeab02883e61cc42

    SHA1

    2a1c6e09131606967a47e2cf60998a9913dce76c

    SHA256

    9f2b94c5244e07cbfb48e65b27f1e50c55cf83696e363c48f23a5e347cb1cbcf

    SHA512

    272cbd52f170a60e333ca4974337a4cab0fd92ea4529e7ee3bff1ba697a5b7c4ff35f947815f982443e8fd44a4c70760fc957290c46d3e75f28f54fa9624b595

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0d25d638f7c116578b694aaf52cc6f6

    SHA1

    3816e1af4fd840953adfc69b131a9188fe002a04

    SHA256

    499df5b2a3304dc8c2a5de4a123e33739c723b2dc8dbe08952d1748573060620

    SHA512

    cec7b0be8bef6d587e94f9ba1eb2307a31d12caeea0c7db94a20d322114df1584af83cd42c7ee52d085061fb167dff3fac4b6631ff9b5faae0d8212e68de735f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17be288b5d2662aff45209c07cfa37db

    SHA1

    4186da6e633c8a7c50ce2962b1389a2e678f0f19

    SHA256

    cafd993bda3e8785e0343db74ec07040fed9d5009ce932b05eadab495f2f38a1

    SHA512

    9ffa4ab4de6a74eb87a8f9d2fa30628978faa9e6a6d8bc2e2ef1698ee35c35f1cb1c1d06b0e9fe6db920043c46fc32de16b06fd3436487d7a15fbf4b7a8b0ffc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    735bdc5995a8d01ac7b0b2df71b37226

    SHA1

    233830dc69cffae3dba764715ab7cb858f950cc1

    SHA256

    fd169fea6748db141e90c867fdc540a592243be6617c4466065517ea0803227f

    SHA512

    c7151402f864c24151ee0019d2bb6c8aed49d07735124be90f7c0bf85b3edb9fef32462022ceb296e525548b5acaf86bde0843f9816b58b73620fce40b9e71a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10eadf1ee5c0ddcde07a1c674fa3ceb2

    SHA1

    3b6445ed5cf96d774d82271f42be07d918c7c225

    SHA256

    43b0a386e2635927579cdd4a0a8a5ec40c9308b5f21a1b46003e5faeded894f3

    SHA512

    63aedd509dd7cbf6f205dd3279240a3d68e013fff1818e23984cf5c01fd874502910f6306961215eb9e3a5aa883d1aac32899b49cd9a6272de7abb6c18173c5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c52ea54c9d16073b7507bcef820ef9c0

    SHA1

    aa72be56e3d22e95e1a9fb9a44be65fc2bf37108

    SHA256

    d46f41f309f25f521892c634127ebce91b19d4e85bede1342615f43c05f5f3cf

    SHA512

    22c5d93a4dbfb81e7efe553d53bb2f39a9001e27c79a9c5a49185aa16bfc982998b2bd0d5b3a4bcf1f96b7f04b87fe0d0c96cdc0aefc6e57c642a1ccd200720f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dab11fdca764dc63d8c6d19195ecd33f

    SHA1

    998b99c8abb7d91f2e72bb91760aa58d6c8c4655

    SHA256

    fcdc30cca188da1781b4c45e326b75a77751ae1f62f9b498b8f5c5108620311e

    SHA512

    fc44d3fcc74d6f99520935e352f9043b0e8a49926d1fb6e308191b383379dc0b7dc53a562b3dbc72ff39c875493ed3ba0634276904d586e63e451cc61036b2e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff47ff93e70076f9715658b049880ae9

    SHA1

    8ed76756007fd97112a0ac583ad89425b1b5dc09

    SHA256

    64eb536b1d666159031b2d65f1082deaf387a591ff2b3b11d9ecbd18c56d83a3

    SHA512

    d0a7dd96ef2f555ed48d91ad549be04707e84819bf2732e7ff219954356fc02198944c2c3df2f9dcb95c37c3d3269c7c62c869bf4149dac7952ffbd29ba2bba1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cadfb54fdfdde566698a3f33e76f71c6

    SHA1

    290b031374c76df17c065fe95cc5605fff3e1c5f

    SHA256

    f7fb427b5ba93697e2c2b68845d2e977ffcbfb04507816951ae4264ee8333c91

    SHA512

    062ee1391339f5c48a7689084a463aa2197bb76b2e5efe64e4c5adf8c3d5f6349a7eff6a0ab2ed91a2803ef630848834277b081a1e85a753af4b0334f5060244

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    742c67841d1ef2237fcfda94ef4f2b43

    SHA1

    43095de9492fb379f9c6989d2b6b20b224aa6946

    SHA256

    ba7a84219c227f8966012a8894bd2e6c3c7997ef073a156e93052b61362b78bf

    SHA512

    89caafc955b0a078b7becfde83e802d169303be2da45ebc1e33d00d5899415776f9a44e9cd9a1d28ee95e0265adc0991d99e1c7181fa4d9cf06d5ba56908ca65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    159addfbd78f30c1d1969ca8aea75ee7

    SHA1

    789be3257d1d983cac2479b2aa5e10ce2cfe0b7d

    SHA256

    2e25ef4b63f522bbb3c00c0a1ddee2f4fa805f4a630821a9cff7979d9ef65e6b

    SHA512

    b9ca81edcaaf98b15ddff50d192772dd952cbfcbec272732510572352b2ec195821c7dbb5de4e682e8db9360466c2ef808b94a4666525c0685c45ffaeabbfd7d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab34A8.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar358C.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit