Overview

overview

3

Static

static

3

9553下载.htm

windows7-x64

1

9553下载.htm

windows10-2004-x64

1

剑灵双开.exe

windows7-x64

3

剑灵双开.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    131s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    01/06/2024, 01:45

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    9553下载.htm

  • Size

    861B

  • MD5

    03033cdf475f981a1777c0fef43f8700

  • SHA1

    8ba65dc9adaf9fdcaf86efddc4c626e2cf26668e

  • SHA256

    89439c037b34a0511f794c1f98e8a52a64910dfb8faa93e62522b83a98b327e9

  • SHA512

    edb1b1a710733a2eb236e2d2920884754f88846fac4e6bde1fcf98d719db1211eb9b9f4ee18a560e9a7243b7caabccbe642fb8e02db4fd62c6d7b059717d35f1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9553下载.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2124
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2124 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2348

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          86de9156efc31cd0579bccb469d2361d

          SHA1

          8ac4332e64c72342453c18bce04722cc75b529ae

          SHA256

          d49021fdacdbc8e069d87619064a8e78e5aef38ef5ef24f25e85db004e8d115a

          SHA512

          0a635fc82d3a083a5ebf6db99e12a215d0f9d80ef3dc6f656efd7053cad6c205f10a6fdf762dc4ee6bb71c04d5cde46351e46b2fc10bf840c4607f0f31c61bf4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e301bf890c3a36503cfab138c5b0e330

          SHA1

          aa5fa60a856e0b79168598189ca932efd2b8edf1

          SHA256

          c3a3b1b61bdac2b05447e4ff41043673508bd49ec6f78ed8770860d186b5b6d6

          SHA512

          3ee07f50d72220aa5131dd000d8d9cdfeb437857ba1d3160e8085b8dea455dea30fa9ee3816c3c3a2b10f5f2d85974c2af2962ac1815f26fd1cc4919f2dc10dd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          933a2a487d12770d0017102de8dee09e

          SHA1

          05b168c58feeae67b93951e70216d10774cfa095

          SHA256

          f6e4547d813871877bd4c19e5d3466e1880e1cd6067b4b55c3b7e8f93efeda6c

          SHA512

          ec72e4bc949acace9c0ca947790a83e5a2c0d929c97bda9819443b0e932cd66c680be063dcade1530a8b5b4d44ca1553a3e20f1a876815cc81123f7d466a279f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4bd953fb23f0250277f35ddcbda65c4d

          SHA1

          cbabdc58ef09af2ba2f766352e694794b5fcd0a7

          SHA256

          1e4a1c828af64d4f225b6b02cfc09a77666803ededcdd7d649d42ec0154aceda

          SHA512

          6f4d4edc319e13e1863bc050bb676b459d58a6376da6b673f4fe23b8db1b75d63e1a623ea73e4eeed883d60102ba3c13bd9db211c8187b40466842beecc54246

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          92d9f560a3c4aa4030f1a4cad4c3c3f4

          SHA1

          d32ca24fd934f61e551202cabe8ac6b19a89e43c

          SHA256

          9cc94e4743a87c889d9eb57d7c7adbb08f3b5079cfe573f1a50b61807af44a27

          SHA512

          301e1bd9d86bbc1165dcf0cfb0b78c4692af68f12994dd077143b35e4fbc82e65632591cb03c7853b782bf5aec55b9f10686ff80a77839dfc9169812fa6da3dc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3070d9ad4f3f7a8de67cafd5a17e2cfe

          SHA1

          99feacde8cf721d12bf64af2d6a1d309307ac4ea

          SHA256

          b54880f5dcfd706bd8ae0327bdd6a4fe37f6aa107f3eb3a063064e016fbbe400

          SHA512

          2efdf78e44982dcdc92ca5674abfbbe4d18326dbae02d82c26792beaff6d0c3b185ced41ed3a6770a3e34ddba2b9f4344ed932254475953c161a205ba3dc42cf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          83197022b2ae748faafb50263d9bf058

          SHA1

          aa16ec49c5f0e250941eb8874f1cdda162f46682

          SHA256

          f8201795612e3df4ed8bedf735f5b475b56e92c205f6879a1eb98269de21b943

          SHA512

          de15faa744e211ae06ebf53695395c087b34e422e142a9f536f9d4b7c0c95e7e108902355db9708fa1249c395d9372b7f22994f869cde1e28e586588b201d7d9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e44d6f9dea1ed370f9881e5c8fc56847

          SHA1

          cf4e150066a56c2a67e9aa879991463f4231d50e

          SHA256

          13574e2dadb548cd5eae85226335130cc2731f9203542be67ef3ba6270e58b26

          SHA512

          8973237b65426202f9f3528769cf3a9403960195d70f5090d153a126528bf2c5c0933dd941cbfa88ea1c8f57f9e6788b582c94ba3618a800d606456c46b1a11a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f567b0e23aa67c6e9c880687eb8b6cc3

          SHA1

          44c3d12798cc585a3b7fa65b89be2bffbbe6ec65

          SHA256

          21618b761524c73940c03036e66c8435600b98c00d564330edc6c87d1413a08e

          SHA512

          74aa76244cce7e270d4971f6f8ab3ab492da5cef945c22d9cae55768404d071d17f9feddbe5b0865feff2427d25f56b687f3613411d9e634c7333a517a3a93d2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b48a65dcae1a359fc497f9775f9d93b0

          SHA1

          67c00abff0124759d0bc2d9db9a9cc52bc39deca

          SHA256

          032c06565d27178a78f00b37e4ac59709023f45979834717e3124d2ee0724738

          SHA512

          e394456d541714004f19c547adc143775db9a0036bb9baffff9f2c806b2eec518c74895f713db73b7428afd8d4afddc18b999321a42b6c3fbd1fc3818cc76ff3

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3370.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3444.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit