Overview

overview

3

Static

static

1

post-install.sh

ubuntu-18.04-amd64

3

post-install.sh

debian-9-armhf

1

post-install.sh

debian-9-mips

post-install.sh

debian-9-mipsel

pre-install.sh

ubuntu-18.04-amd64

1

pre-install.sh

debian-9-armhf

1

pre-install.sh

debian-9-mips

pre-install.sh

debian-9-mipsel

pre-uninstall.sh

ubuntu-18.04-amd64

1

pre-uninstall.sh

debian-9-armhf

1

pre-uninstall.sh

debian-9-mips

pre-uninstall.sh

debian-9-mipsel

start-stop.sh

ubuntu-18.04-amd64

1

start-stop.sh

debian-9-armhf

1

start-stop.sh

debian-9-mips

start-stop.sh

debian-9-mipsel

applicatio...x.html

windows7-x64

1

applicatio...x.html

windows10-2004-x64

1

applicatio...x.html

windows7-x64

1

applicatio...x.html

windows10-2004-x64

1

applicatio...oad.js

windows7-x64

3

applicatio...oad.js

windows10-2004-x64

3

applicatio...x.html

windows7-x64

1

applicatio...x.html

windows10-2004-x64

1

applicatio...x.html

windows7-x64

1

applicatio...x.html

windows10-2004-x64

1

applicatio...der.js

windows7-x64

3

applicatio...der.js

windows10-2004-x64

3

applicatio...x.html

windows7-x64

1

applicatio...x.html

windows10-2004-x64

1

applicatio...x.html

windows7-x64

1

applicatio...x.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    21/05/2024, 05:52

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    application/helpers/index.html

  • Size

    114B

  • MD5

    0227cfd904e99656279202032b98d4a7

  • SHA1

    7f3c810f643e9c100b82520a7c11aed6131f7674

  • SHA256

    0d5819fed1543a314272c42a0b0ec512909f690cb9835d9631abc2f83f3c3c86

  • SHA512

    a39d6f75293deeb537e26a4b7c1aa077f1b27e3d008e99e560312e5081206bdd7856c974aa5cb2b0b20f95d34fbe39bf1941fd62abbb999988293c8986202b7f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\application\helpers\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1876
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1876 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2516

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b0a0c9941cb3bbb0867de8c1b85e9f08

          SHA1

          0b7b48166c01714ff0619ff46b039d7e65ec8651

          SHA256

          abe55dfd82f7bc69b0808e1dd788ad557d911c5471c76ffa3c27cfc20f9b274c

          SHA512

          b74f636dee4de194bf84cecdd0fe6491c394ed54e17212c3bbe355bb922bd931b81261de0ddef82a38289544355f91159b669605d13ccf53783950555acef381

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3cd9133c2c4305f67a9f52f864e937f3

          SHA1

          d53355c86de6305e1494814197cc75734cf3f61e

          SHA256

          3d0fe1b9a8c0929c0badcbdf7fa8b29fdfeea17c17a3667f763fa6cc815b2b06

          SHA512

          a88e8975b816855a7269b8903c873f398ec4711d06823f6838ca3a40ed135094b87eadfc1aae8425ae4bbac2b0c2b74d3a5b7f627ee86e2b5683ae1fcb703850

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e8ac4f6175ad5633d10b4e1f673433c5

          SHA1

          c776409a2f4e13ac7953e3f1aa03e70fd6f18fd8

          SHA256

          ff80055b48f375554b4e260526c57ea88fabb6bb35e6ed7d5488b5c6aa5dd470

          SHA512

          2f8d6ee1331371e97f8e61d6780bef3d62a911282e98f2c9654eadd6592adc0df26d66dff874410b8425bb4c2b1d8e455b44982ebb24076ae4361a7acf1cd0c4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          59dc6db4e6259c85e55e846b1b38078c

          SHA1

          7eed9148c7eedbec5290b6558ad2370699101bb0

          SHA256

          67c7b63fd632b025291e2ff7e7d5d7a2cbff62b724e0a98b079d04fbbe18ae83

          SHA512

          b1d6b71f72172307ac6d7a7513350a4f8db022ac8835c796e21359dc4b347ca54bb09a019196a52e8ba86e058313fd8de6ef748d598c0cb5439b0b1639bcb99d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ac2b4d6c86b808c8b5bec5cd319a0407

          SHA1

          b9c41eb5497f014c02eb40804335b5c61d897492

          SHA256

          cf29cb1232323ac9e9d2b79a3a36aade362e1af15b52f9d04bf7265fbde94273

          SHA512

          345fdcc02560635afd3c2b627bd984d3b3d7671a636e9b924af634209af0ca760eb6a9d4e8750ac8169cc85ff7a15759309ffa58440771f0fb1cb7e478ae85bb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          958b285bafe9aa37ac0d2657b9ff5b32

          SHA1

          7f596b28b73f8f5ae732b27e5f61ef8fb71c3c5f

          SHA256

          1d31a9e50385a54cdf6eff592340e50ae07325ba1d19a524430183b0e3aee471

          SHA512

          3f04f19bc341c678c11135a874cd2ce3401296ba53be4e11655a4a62109316df692bad6651a25d66115d0be3682c8ebfe954b03f77803b8edf41a89e90c483b2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a57b59c688a6f40f0d22f7e24e15a195

          SHA1

          8ec4489895495d96b8a3e65dc76235caadc3e54a

          SHA256

          a92cb6f775a8caa5212ca8a48af49832595e0a3e03c3628d6d6b78948ae6c626

          SHA512

          921e34a519336377482fd5e3c659b187d84a9687ec9992115a3889c7fd7ffbe53f2f7a501b91c6e4c44920d9bde77c43fc61128c4ec25784a6db09900a577c98

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          81b8983e060a6c6349e967de6d016688

          SHA1

          deb872099e50f5c38d6e1a5ca538aa6da987931e

          SHA256

          161ddc843cae0d95484eae939593a7d475ce5e11ffcddd8719c567b4627f6906

          SHA512

          9a81bd4cf7af303629badb0a96a92ad218c1aed9e9df3232cd813560872a3b2e5e26df8b94065828578b501d2f4be9528502a13a6348270b51bcc4a4dff96210

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          782338a2c055593744e093a73b73514f

          SHA1

          6d5bd150fcf34c94ed3011fa60795a1770deb276

          SHA256

          54ae53180f0da68a14736a05c0b46883c9c65d219fef36834f075b1acc6c16b9

          SHA512

          df0c808e8c947d89cebcf36ee770ddef7e1ac09136ba08de6828d047fea7df4c42fe926258748fb850c7c0d3dd4eae38341b2171e2539baa22e65750f7069a37

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          75b09d4e3e7e958c5115f21756c5f9bf

          SHA1

          c31843336b2e57c538a57e6573074e6d5624c987

          SHA256

          d17eab0cba5cb3324b5aef12eb60bb6185e94496cf602174bdde2e3d0666a9a6

          SHA512

          5a7d5c630ad1346d2d166985b22fc2483bca9601a5afac6497d3c427a0bd8fd9f5c75a4f8eb992e833c4ee7194631fb0345a26f58e6be97fc3623a5f277a5581

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3d441645baa35d56c115cf3e69809636

          SHA1

          ffd2404a910ba1ec1d788dcf1568092b8baade20

          SHA256

          db34c2cf8c72b1e01cdebee99ddbc6e803ab0ad00792f93cec36ca98a03afc55

          SHA512

          91745d78d5334cbc935a24c0518679aeab38ac09ee0570b8e9ba791b4b790b4bbf0a8be3d23e43257c2294b1668c2cc97defdaf9d789c1ca9064beb2ed95e89b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          69b4aa3d5b7fb993e70b8ba2a10025ef

          SHA1

          df0375b865e511a7233ecfadb30f7fa2c7a34d58

          SHA256

          752642baf265a83aed21fd8fb0644be68e0f7d9220239c9fe64e665f6893c076

          SHA512

          c145d5bf3c262d736394b15e036f1b72d19c63f876b997850cfb5528d4b1d1db1082271880f0d0adfb740ba6301c3285523a4cb7d3b4548b1385e09d5ad209b6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          261f39400075d81a9a73a2e6faf08100

          SHA1

          223a4fad92c4aad01692cfb37daefe77a5a3bc8d

          SHA256

          bc1efb22cc49baa746bb0df05ff13e876f1e675ab4c519029cc557cb5abfb107

          SHA512

          672036bb5ede2bb466122ec8e1e8d247103fbc7fb5ad3c7fd267413cf44698f9751b0af560f41a7cb76c3442ab999f38dc14e6af675bb0516d390b270f46e7f0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          87725bc260ea611f629a5fa4b4cbcf1f

          SHA1

          3f5ce41cbb80588595e3fa16a72b9ca9fab8bfa9

          SHA256

          a69f81f4ae65dcf043955fcb81bc1291f85ff514e92856ddb7e1c093a8992953

          SHA512

          c12ce511fe13e97f4976a4de6253b130cc3430a63e7b4467f25cff4d96b363a6c6d10c3937b223d33d074f7041562ecca94525e3cbef426737f48248d2048fa3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f72e84b950d7c5f41e65d38644d9441e

          SHA1

          877ec78d521317cfe2d610249aedf7397e3d8ac4

          SHA256

          76f563d441bd9836af4a1e79c9791eb603549ec0b5cafa6683285cefaab576fc

          SHA512

          601725022459d69c49558df18fd93279d84e6c65f5a9dbdddc0772f511de1f5a17681cc90030914d7c9000a16e23abcf6f22a91e3a02ce586decd297e78099be

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2ca74a75bc3f83bd9b335369b7a0bcab

          SHA1

          2b091d5768c7aea8e7e7608313b4f41de010bcd4

          SHA256

          18ec69e4affe7f91ddda9f9342627e976d028b2120d16134850d8b19f493caed

          SHA512

          49e298313aa090ea3bc57aed53be1d419e9432a5618fdc59d867676cb37ced2544e313ef26237cafb5921c2f62b1f6d24e6a34502383c1365e76e0559770a137

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3efd84a7e8b70371e344a7fa6491420b

          SHA1

          06594b543d7e1976f4642a045eab7164f8a264fd

          SHA256

          f6afde3cea4be5133a1f700bc758f759590b54c456bead1240cf8e2810b05827

          SHA512

          b8d8fbc786b128a110f245ded3df00814c6f9748e1a3f82808888667fa90edb9e8d81145c58350d4250a60e114fb08e172bd2329d0b7e2e07fea052cf29eade8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          04cdb2ef8d7b0dcd07a2cf6f02171aa1

          SHA1

          bcd93938e39bfb2ea73c264be8c9c94972556931

          SHA256

          c570c6a2970886700ab285faeadbdb149ab1754b67dd198743e77b0e4ba5c10e

          SHA512

          0bd3db1e42cd64d67e72bb72edf4cd867194ee5ac81f202c88888ae3755f6f039bc146c70cc326966e3335449e07794f14877c3afc0417e74a6419b5597aa3fe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5cf35de941d9991c27cc5f73a2f54bad

          SHA1

          ebaa85de2b5dd7d3bc4e01ebe1221249b357e27f

          SHA256

          f65fb2ddd6d4c7752703d9716a2cc3a885349a197b6d24eb359ddb22211dd86e

          SHA512

          be33f504e17a49c6e66fb0941e2c60aca893d0c14a16c5e9899a79297af079ce807295a337e94d37028d4580e75e4ab632603330354dcff895228343a04bdd7c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab2C03.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar2CE4.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit