Overview

overview

10

Static

static

3

Uw Factuur...df.exe

windows7-x64

10

Uw Factuur...df.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

403-16.htm

windows7-x64

1

403-16.htm

windows10-2004-x64

1

403-18.htm

windows7-x64

1

403-18.htm

windows10-2004-x64

1

404.htm

windows7-x64

1

404.htm

windows10-2004-x64

1

Linker.dll

windows7-x64

1

Linker.dll

windows10-2004-x64

3

Warn If RGB.js

windows7-x64

3

Warn If RGB.js

windows10-2004-x64

3

asyncqueue.js

windows7-x64

3

asyncqueue.js

windows10-2004-x64

3

compare-wi...cks.js

windows7-x64

3

compare-wi...cks.js

windows10-2004-x64

3

head.js

windows7-x64

3

head.js

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    19-05-2024 18:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    403-16.htm

  • Size

    1KB

  • MD5

    9d02dc79e5a6215c2931e56925a8bebc

  • SHA1

    17f413e8eddea932d0088a4a86c43fc8d06c8c7a

  • SHA256

    30c45a56c91ecfd5b654ad172fddc84e5d930e18f5031c778223651c5348d612

  • SHA512

    7f64b11eee14c4e13d084211bd4848cdb27471dde064fad7ac787b7307a85b5b8c953d40b26b8db410bad2b268d6bd94e4e4cb8be6c299cd32e5818988ac22db

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\403-16.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2232
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2232 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2556

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54532b3a9c02f33b231f72df16beee7b

    SHA1

    422de21bd0474eb5070900b6e3a52878979eda5a

    SHA256

    397588faf63ea16529552b804bfb3c69893e755d2ed6af773fd61598a86cd1df

    SHA512

    1d7a4ae328a6806c238a2a927f912b4aecfe6ce65a9a46c8401f71f5d6795f3d6ceb779efaeeb3ac3f6d312b6b34df693ee6c971a420a28f1ebda3276c0913a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b36a2bf4d615439236fd4adb73b37d5b

    SHA1

    ab94e623464d9ee8a5ffbcceeb5bd95203a95f02

    SHA256

    f92aad74a99558e3e4218849ae3b350923cff0f4feec5599695b4a28831c61e2

    SHA512

    190ecd5489df881117b210edc3b1ca994a4b8a5e4cf1dca372585b5787a0f02a61b7a547cdcdf4ef209799b86377d593b8ac055eaf112365617fac332d180cde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2e25a2d6b6db99f8daf3c8f1f2c20b7

    SHA1

    600f8b91ce8348c1dbbe10ea9fa5812bfc3cb9c5

    SHA256

    d44e487506c183408ae67bab504616873309375e2a3d74d4541c56e3d388384b

    SHA512

    e02a8bcc7fae7b5309dd5a31592406b68ac81991e5fa4043fd30c412a58fa6e19a143e76375d16f0316b5fb6967745a95b0f717d0cb8b6398ecf94d15a48b2b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb7eb0637bf183fadc94bffaa21edabe

    SHA1

    63556aa21f6b6d321fd73e0f3c76bcdb75e5d393

    SHA256

    3083ec785bad002bad49f265c81d5dc3d6ca4cd0b5e6624f166006d1f6182ffd

    SHA512

    9ae2badfee667c464f6b79e17f16e61a20277131a01eb446408f61429dc820a2a532ae81f54081165c96e6ed7b2ea991161ac6db158809d7879794b979c82907

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a5a15d55a9e3817c95e8668970db4cc6

    SHA1

    3ce124abe07a62a670bc9fe60585dc6554675764

    SHA256

    462a528c54d61e512a6336916038b6f053b197a0e30112815ceab33a716884fd

    SHA512

    4f7b1fe211f1cc6bdb8eabb0b7e8be51e924af16c45ac0628a1e88c752df6d26892c57a0d987e8720c5553d66977413193fb51cc04fb785d38f3abb50af7a660

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e865f5ec285ddcc06c03b86746e8c0f0

    SHA1

    5f7142865c0f04c26dfa617a1d93672f4986ea7d

    SHA256

    41a268033ffe61e32f0f1ce3d6cfef3e43116a751213de31daa3bc9996a67654

    SHA512

    da1f3c8d223546e2b959e37e0d5ec8198f33e787dfdf1d1ca2d6b2c6f6f574201439ce3957def534f1260f6cfb876f85b81fe53078b2bb71ee838bea34acffd0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09c50dcd1b6ece86abbc56635927f21f

    SHA1

    c84ade00c3e9b4d4895ef6a844af6c7bf0ac1b14

    SHA256

    888302cb320bb83c0201c5d007f62b0baca1bfcdf6b9c3833ad44dc065f34af7

    SHA512

    b38dcd356540eebf0c6c2d06dbe029ec9bc89e6715d365031c97be1951a4c5f6f664f6c5998c4f25f886a48af0e6a23d0149e8a8ab87f71169a1411171b86d69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3acff33030c30aeb54590f5d1fa625c8

    SHA1

    b85b0f5377c5c38441398fb6c916d12aeaf1aa13

    SHA256

    7dd605ee5f1b052985bffa560a4d2cf4ec9e8a95894bd3ca24844bb7d99aba30

    SHA512

    90aed8ce56d90127694b68067691bf1785598853d247c710bdd9ab95d1a9e1dfcf61d9067a69137a87da36f4622861dfbcef0198d01b6b9a8aeb0115370904a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4297a51840b7bfee198510d7e298a89c

    SHA1

    4862b2c99b75bc42f13260382b5cc711b55e4146

    SHA256

    7a35d0d4bea16c66bf1b4e392ec394c1ad870567eee79b8b8178923031fcca89

    SHA512

    b1f5f63835d789113e027e40c3e15722d8b45166b40d763d4342493c41c908abd56bf602fce425db5ea927695fcdd270065af692e6810f75f3c885995676a552

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    37062377314de7abba15b74e3106b6dd

    SHA1

    d52f7e84490d3654f7939b7a708a10aef8098348

    SHA256

    a7a73469806a5584b82d8947fef5d3cca89b6c41da1880346c5f86d66e242434

    SHA512

    cf7023acb96b62c22c61ee588a5a157a08c59af7aac2b3db7094bda4220e0979e1431fb1b03fa847952aca68ea41769e152889b351ac8d72284a63cbe98730fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fac048a1e6670573ae4df3d92f1806f8

    SHA1

    7145ba70a6c0de12bdc392a12bbfc3aef9e5178d

    SHA256

    87a068344e5c417bde3dd018d618d001dcbd932f2401e03118266142ccf98649

    SHA512

    617747f97badacae5e9f77668f6ea40db3cd733b639db1c88ef443db95910125de12c8990627ffc092e19cb9808094e6f43412e6483d3fef01ac2c672d6dec57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ef17293a23c5c7de05dad71bd4b90561

    SHA1

    0ba3bef37158a0e37bf3c0ecf9e05071edf62c57

    SHA256

    52994531efd5d193c3fa551826e9618a9935b146d990e76b84d12e379faf14c8

    SHA512

    58a7c818d75b074137b7198958cd22e1550da7837625c0f893c602dfc2c646d422941bc45565074ae2392317c53d3b2a07acdcc6b1ccb170654736cecc44036c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cbee586f5281c15ac52ec9015b41608d

    SHA1

    b6024585d086fe3c341c16dee9387c2682782806

    SHA256

    6b67c1ce5ed7342000f1f5b799c59c6505eb5e8998d0f97f57fd3143eb933178

    SHA512

    7d1057ca3aa4ead7e884e0e5951b226e1315f82679d6128aaa2acb5438aa9394c2321d7e470b5efd3d72511399c0167b89a33457b4052b1ba0c07280d196d6a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    62ef19a7939c55c843f36c5375cab584

    SHA1

    71bb6ef8d1ad2d23a83647335dc4f5fb7fea3997

    SHA256

    d8dd08315fa82fdc3800b775e97436c2146e48e7064076aedb7955ddbd9bf329

    SHA512

    9fcd2a6bffc8ad742bf6879f4af2c86ca02129651b6c6e89c4b50f23f807d89d41176b4a9b675b29a7af4d9f00da246cfe159c30cfdfd1ef94eda807dcc7964d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6d12653f94a3d45cd2d6ebe2786e4da4

    SHA1

    89cc35dc4914c2b28c6de67020f389cd68c29298

    SHA256

    2de730f608bdba8e88992980b5de203574ef2fda99e8138843e7033de7dfa30c

    SHA512

    0a1a842af083ffa914587c5de2d0e1b1542cf4a62d3cdf7d8631c32930241688b4507f2f9fb0e5937d6439b4ffb2acd32535c785fb8b4b95182ebb5e460c5ef8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be3e0120977deb9b4d5fc8d322917e0b

    SHA1

    fc5c3f6c27cfa5274c48461ab0d9fb04cc2410e0

    SHA256

    f61939ee04112b89eb61dfc7343ef7f41428f404cab87cf0acae098758466a3a

    SHA512

    2fbed1a47d3970ec32e72eb601f3e4c96f1d1f2031ab90304b9daf0ea556b82c121e4581ed9f85f68b8f2106a71473808287a9397f0838ed28194eb655bdc504

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2b3d23c1e1d0ff91fe41772ae1d25b49

    SHA1

    370decc5dab1027d817d57e8f0f04d9b1897bac5

    SHA256

    7eb51bd5811933bb386eea85dcf031d18b85358bd04d130b705c2845b6be60c0

    SHA512

    d261ea0f2bad3514f33bea7b1963ee5f8e5a8a272abf4f987702cc4a8d8869594c5746b83f2b8f6bfca85c77433fa631f5d25d0b37f040714569d1b704d1b762

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e09445a7f0816263b6dd0a0c3059e4ad

    SHA1

    c622de10676e7b65e54647af529e6c1ff14936c5

    SHA256

    074e825d577a0feb3ba52e40904d2f683a53fe89b1ae8314f8e3ab3e1d858777

    SHA512

    b8c70687bcb400aed2de140617367d220772db96c21801549b96441c8d413df9ccd6d3ee083a64330e561605b5a07d432efc3dd661ce974af361dd79fe863489

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1E3C.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1F1F.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit