Overview

overview

4

Static

static

3

Setup.exe

windows7-x64

4

Setup.exe

windows10-2004-x64

4

keygen.exe

windows7-x64

1

keygen.exe

windows10-2004-x64

1

使用说明.htm

windows7-x64

1

使用说明.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/05/2024, 01:40

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    使用说明.htm

  • Size

    3KB

  • MD5

    c27c0730b858bc60c8894300a98bba55

  • SHA1

    0277680d624e609f23aec9e4265c2d7d24bd3824

  • SHA256

    a5dc318e23ab98774c6a075fc8ec461ad2ca86c568ff514aa4d49a41090470d5

  • SHA512

    52e949524df15c71c2ed633724c0623e046b75a672147522de310410a7026a8feede76d5b31e4aeb9b9df565b4941c1acf327a0bd5dd8254e393d4570fb345c5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\使用说明.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1612
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1612 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2744

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d7d7f1e025e345976a7dcedc6830619f

          SHA1

          77a21c26817c9e30dc7a55c7b629c3ba6e808570

          SHA256

          3436ee6ca6ccb9658cc389eb67f7f3c11c9a23d43fb119213e5480728ddf74ce

          SHA512

          b3f07c6578d99479d9c5c44118aefc2f065ab09a8c8e1063cef0d001cee44f1362f07c45747f2f996bdf258e4d4f04257460ae0f91dada2bdff2b2ada7a4f0e6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          19ac4f0ff1752b6b91108b2bf996275f

          SHA1

          bfa1fc0d5b5a268a7079c9a30006d01601a10f54

          SHA256

          1a8248b7acc9e169b181d53fa94c13f282ea4d6bcfe66a449c709b321819959a

          SHA512

          dc600a8a4b2fc54d150263888699c2313761d37804420e36d52de0093972facf35ebdde604de8359a7c731c0409df472deda16b198a5eb8e3d6e02e300ada125

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          106d9c67e0e3f72c3111101c3467da2a

          SHA1

          d5aa4635895b0bdd478f5b50820543e2eb95c0ef

          SHA256

          22072c76f1ac304cc861c8be7d014000568444a5f61a1bca4f26c8f627d4af8b

          SHA512

          6922459208754dd00815a4230f8905b158a3de91b4f1c68743364451029d97a65d1dcff28261599648e6dc0134e0b064f96a6730930d65dfe3052a45e03ba186

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9bb8ddaf52b084605edb217b25610454

          SHA1

          8d762ead4a1240e3de577db3f951243aa52d7f97

          SHA256

          35c61bc4d99cd2d1f3845d187ef5a67266207105538aba06b5d7840d0bf3820e

          SHA512

          be333f38bab7394fb872e2a77b0eb457a0e19293a9f8504694cefa3d5e82e9b8bfa7e3a6ed853ca3e4a2b97cfc29b5a1373a5fd484b5c263b4d82bc5327af0b8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fd76d8fe4f4deefc189b8a8faff519ea

          SHA1

          8610de712e176a5d5f09ba00caa02e6c942678f1

          SHA256

          11f936161a4e0f1e706502bf0caca20b6bbae730dc7f43a243d4ac1c1b7fdccc

          SHA512

          2cafcabac79dae5d272380f21408a289debd764095edf1b2042553231cd37818e7214bf8b2767259b2702ebbaab1d5fd5a6c416f190a631bd27c06a3f957ff24

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bb004bb8f4973ff80bd48412ea70e823

          SHA1

          a6d3af90fb49aeba55c785a7c4039cb4f9a61489

          SHA256

          2343c1f5479860bd1ddf3159d4fb6c958934e71f255344c6586a5e151fc53c71

          SHA512

          0d232f6978d0a0e4b45bab00c822c05d6ceebcf628301e863e69b7a790f88b77f327a1a566d33addd0eff673c54c0bd8ac8265db2c7ee2f40444219139632b58

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8b350dcad4410c9e56f23350b3cc9167

          SHA1

          37eb655ca1442a0f5cd988f52565bd1d42b297f9

          SHA256

          3ba98d5885b8a854cead31349432eacb8f26abe54f545de8afe62e4dc1c5ccaa

          SHA512

          59b5cbf257b5efb97545d486e481ce2fb6a37984277c12fdd0536354afaf2eaf05be54cde691a80b5ebfc9d53d35d7806e1f111ef1bafed03e3d2bd445cc9908

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          69dcaf044f042de4364e1f2074f30028

          SHA1

          629dcd469494554148ba745df4bcb2b9d9a1d20c

          SHA256

          04f4b8cb1cd3d3c2ff2a1d41071ca5ab1c3ba7ba724f5af3b89f820080d42f1f

          SHA512

          b5ffa6a29c9233f0e0bd40b101f17dddb9eebdc8e1e158cb556eb20e762bee3ebafe2cb6ddf8a2f3f71648b7057b24e74c5c377b2289c39e16a98c582a95c67a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          dbe072088fd560ff6dfeb9e7976c759a

          SHA1

          8e702b9f83b0fe1e55eda39181bf390c793e00dd

          SHA256

          37dc5add08aee8dc24509481c8f3c04ab2a7c3eec6df0bcef0d4aba27fc60601

          SHA512

          5560772186efa90078b0acdf9d7a9ed5dd6fbae9fd887e2d08d4d77203745f9774faccf781677f2d1ff27af1e2aee3cffecedb69e783b257beedb1504cd09041

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          488b33a7da945e910a2d472763f10595

          SHA1

          1750d0d2e2208c6e54e5c4d5ab55a54fefe47fdb

          SHA256

          7aaa0fd9ef8aa73be651b1a3450a8cd66b135e4dd8777fedf484e44a20824d24

          SHA512

          ab0c33417774898fbd1cb2efeff251c2547e7c2c1216c339928cfa0000df8fe54c05b7af460371c7f29fb0e142ea6e67e7855e2537cc115befb2928d69646f4b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d92e93a5622d311a262d634d844d8830

          SHA1

          096f5295d19588edaa0a7537db0eeb0733afbd8b

          SHA256

          67bc5afbaf3555846265711296bf1f2b88d4ea07eef21e668eb2802dd4c9c314

          SHA512

          c6558002f7007a315ab2466658a9c8dc176efedca6496449fc387ff261c8cf73e61b173bf913e49ae996452a3ecd2893088052a562c562f5f4e53026fdeb488d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2c419c88a344192e3ffdb5051150bcab

          SHA1

          8b4f2f1c905854c014004db31ba57cd37eb361f8

          SHA256

          1a219cb8d1d94a3a467b885d8f8cd11a5ed2b4dd6b6894c3ceee9d3f1657772a

          SHA512

          a18676053d14e9c249b71786a188e94c723641b2e58fddd4d127dd2e7ad00ead8a68ec0d3eaddd8fd13019b40f9c9d41ddd8636216a99805a2c4033776ab6693

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8578299ab82bdbf862148078ea4f1be5

          SHA1

          cafdf490929ffd3372223399f67c85e1789521fb

          SHA256

          1e537650496dbed7c8028c06183fbab750b0d3d7334ac6a281b966818ab0f631

          SHA512

          e588fcc84a6e112fd40be95a4d8b68c6199ccf01f792d38d4d21208dd7b480b14e9ae7e5aa18e12e49c03ff00795813d4fa9c0ac38971ffc0a5d9228dc0fbab7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b855765dca643f3e17ec11f023d6d6ac

          SHA1

          866eb85e223c00e838e0828d7e7b2f5b25285257

          SHA256

          2256f16795eec344eb2481f6c1f7685316e2d504ff912376ff6fb13703c44327

          SHA512

          d2406ccbb5e22764ed9fff61b65a872f2832bfed4454e976c469b7e9fd9166978c8703f403e08e282ae14ee6a81c674f07d18391526e64e401024851fc5a956e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          93cc8010dff9c8572bc5713a7589f1f7

          SHA1

          d9304201365d1acb63469f88dab134be46dbbf9d

          SHA256

          22278fbcaba3b0c2a779a150c4ccdcd240f31f1b1725b54eda057e532783f9e5

          SHA512

          4cb002fdc8ea81d18e6569bc321a2c83ed88463c56b180d564ba5fedf2deb22ef9cd46bf97a0e38aa335c56db72ed8731db7d890f31557b8a95121bb48e82ef3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e8ab2515b66a2d9e7d353e06a311f3e7

          SHA1

          e87b33fd631781b0207c88f4b4b610bc36fcb708

          SHA256

          3b54f1ebe4b84094dec184452f81ef94d25998adb2cd33f95f5a932321a327c0

          SHA512

          159ec2247ed4171d22dc8c80fa140c3725cac5700d7a03b6e3e01a9fdac3c18fa508ecd1ed2c05f15fea98a4fdf1c3021b799c0504073b385dcbc5744604a7c3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fa79a7047d1fb4c5eaeea75791f70019

          SHA1

          a3db8d8e8b0bee4ae135fff73da8e5c22293dfa5

          SHA256

          210fda443424cac4663223d631b8d87bc828adac12eba3a66f489ea554b24efc

          SHA512

          f0a2c989e3029297071db21cb82177b139cbe6dcbb76cb509aeef8029ad0d7a3bbfd475c327189a69f6e4ab8401456d65d0298edb68f132955831fc1aadcdab7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          22f83132e7074f08adaf38560f2b329a

          SHA1

          516c5ee1185944e30ade349c2ab66930f9aedac1

          SHA256

          b191b6a006194349d6980ee94040c97a7e566e4e11d574a3a7167fa1336bfffd

          SHA512

          bf69c36c9d4691a61932e4cf1a700ad926795de9f4844d9ac27193088233f8f541d954ddbe8ea6441e0999ad7bcf1a34793f92ad6586739cf2b9a9b914d69703

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          04420a45511d13406766deb2dc61d23b

          SHA1

          dc4e108c275707e06f94360744e464c457aba138

          SHA256

          dd0a7478e20d938ba98fa9b3a5041df8dbc59a8e57ffaf8475f3990550fe4fd2

          SHA512

          9ea295974e30b93604d5c61d0d9c2cf12e2b4131442bd0420128e8c319363e02bb6d65c785584ed5b4129a03bf7628fe1d204dd1b6352bde4cb7d17d22a4d049

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabB3F6.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarB4E8.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit