Overview
overview
3Static
static
3CCProxy/CCProxy.dll
windows7-x64
1CCProxy/CCProxy.dll
windows10-2004-x64
1CCProxy/CCProxy.exe
windows7-x64
1CCProxy/CCProxy.exe
windows10-2004-x64
1CCProxy/we...fo.htm
windows7-x64
1CCProxy/we...fo.htm
windows10-2004-x64
1CCProxy/we...in.htm
windows7-x64
1CCProxy/we...in.htm
windows10-2004-x64
1CCProxy/we...er.htm
windows7-x64
1CCProxy/we...er.htm
windows10-2004-x64
1CCProxy/we...in.htm
windows7-x64
1CCProxy/we...in.htm
windows10-2004-x64
1CCProxy/we...er.htm
windows7-x64
1CCProxy/we...er.htm
windows10-2004-x64
1CCProxy/zlib1.dll
windows7-x64
3CCProxy/zlib1.dll
windows10-2004-x64
3易网时�...��.url
windows7-x64
1易网时�...��.url
windows10-2004-x64
1Analysis
-
max time kernel
143s -
max time network
149s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system -
submitted
26/05/2024, 09:55
Static task
static1
Behavioral task
behavioral1
Sample
CCProxy/CCProxy.dll
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
CCProxy/CCProxy.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
CCProxy/CCProxy.exe
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
CCProxy/CCProxy.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral5
Sample
CCProxy/web/accinfo.htm
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
CCProxy/web/accinfo.htm
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
CCProxy/web/cn_acclistadmin.htm
Resource
win7-20240508-en
Behavioral task
behavioral8
Sample
CCProxy/web/cn_acclistadmin.htm
Resource
win10v2004-20240426-en
Behavioral task
behavioral9
Sample
CCProxy/web/cn_acclistuser.htm
Resource
win7-20231129-en
Behavioral task
behavioral10
Sample
CCProxy/web/cn_acclistuser.htm
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
CCProxy/web/en_acclistadmin.htm
Resource
win7-20240221-en
Behavioral task
behavioral12
Sample
CCProxy/web/en_acclistadmin.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral13
Sample
CCProxy/web/en_acclistuser.htm
Resource
win7-20240220-en
Behavioral task
behavioral14
Sample
CCProxy/web/en_acclistuser.htm
Resource
win10v2004-20240426-en
Behavioral task
behavioral15
Sample
CCProxy/zlib1.dll
Resource
win7-20240215-en
Behavioral task
behavioral16
Sample
CCProxy/zlib1.dll
Resource
win10v2004-20240426-en
Behavioral task
behavioral17
Sample
易网时代绿软基地.url
Resource
win7-20240221-en
Behavioral task
behavioral18
Sample
易网时代绿软基地.url
Resource
win10v2004-20240508-en
General
-
Target
CCProxy/web/en_acclistadmin.htm
-
Size
5KB
-
MD5
b710117d078bfe708c6ccc80d7cfb85a
-
SHA1
4e228f1052a1ab57c7686c402a7f84b808c3d2d4
-
SHA256
50cd5cf61b9eb1e5451fd41438f5e80b87e98104251485e2d4de22bb8ee77923
-
SHA512
5b219ffbfdc3f46d29859565e6fe2d827fd70bec149132c1efaa7a4cf896ac3cd2188b84515eebf4b979e458c7de16c1bc583fef6132cb6e99fc924e9b0ad340
-
SSDEEP
96:y8XNqO1g6h/lhh3OVJ128ZKYYsst63Jko8I2ZSYHdfEp:LIlc9yPYPLI2rHdA
Malware Config
Signatures
Processes
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\CCProxy\web\en_acclistadmin.htm1⤵PID:3076
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=4924 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:11⤵PID:4048
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=5732 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:11⤵PID:3416
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5856 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:81⤵PID:4752
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=4052 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:11⤵PID:4180
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=5904 --field-trial-handle=2248,i,10247514684337323751,15511974759131734137,262144 --variations-seed-version /prefetch:81⤵PID:2980