Overview

overview

7

Static

static

7

!目录册....2.exe

windows7-x64

1

!目录册....2.exe

windows10-2004-x64

1

下载说明.html

windows7-x64

1

下载说明.html

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 00:25

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    下载说明.html

  • Size

    2KB

  • MD5

    301199c97ca0dfeea3982a25196bc290

  • SHA1

    a388cda7d6868d51503dd1556ff40b92d530f5a8

  • SHA256

    7d3d10044a954539b79888f4dfa5815adac5297c47767a62735c63a10559b504

  • SHA512

    8fde0a403b9132434e82e5e0c08dd18a81dfed4b23607be66cb71810600f3dacc84b66379ae1e4bd3f6b07a99fd6843453f13433bfec173d26199d94040c273e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\下载说明.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2388
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2388 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9d53b8023ec54fd7f7fc6590f1f78110

          SHA1

          84318de7b129571bf592b22f104eb0f8ad5820c5

          SHA256

          10ae14428d4e9fcd2c14ba1b9b6fa5d1615f8c80a1c5cc5867d9a49e7dbe9c3b

          SHA512

          b58fdc01e4aba40fa8db3ba4ddd84e8d903182471a1dba57606b91678cc3c4461e40d54cd88f77b9268038c8373506339b332c3afd31022744e48af7d81732d6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fb12edd4ff2e5212f8601c279b539462

          SHA1

          da345fa8bd112808f4d85d6f97f96a58eb4e843d

          SHA256

          d82e0b30a6844e3a908d34967e272e2152d6042b22f3c38f7a6e19193c750f0f

          SHA512

          313905195baa4ee86ecabf37177de070cbf5218731b8db718988fa9850d85d9403a606fae0c85194aac025d342fb7f657856d651935e922f7d84dc2da5065c7d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3e29e7186d7febe9ea824a1d8b07698d

          SHA1

          5536bbaf704e04e1070c0c2c2ec5069498f4e1fc

          SHA256

          7e1aa961290dfa1cd0b2613401d5ce782dc01fc5299af94758988e3208bd56ce

          SHA512

          14e0ac089401b80593112b5993814dde42b6a5d606f862e2a002579f6e1262a7d709de90fa823574db2096c8142bc2421f422dadfef7e4cafbb179977a11083a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          59830b5d277be0c49777f3b82d317021

          SHA1

          defc82d0e87be2211391e03b8e094ba8c9be93fc

          SHA256

          67a4ce1755316a8aa653a8057a68e85a691303c607825294a960804202591fbf

          SHA512

          13c552c1f2e96e0afbbfafdc72e9f400ae7c0b8e6e9b07c8f83d35940864f9ea9572670e022d0b53ec6196d55dc7133004d4e997934d69c2cc2087b3b4178650

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b4c5ef2ba7343ed3918bc1baeedb9aea

          SHA1

          e2ee93bd2e0ca3251a8a779bfe98934c92b06074

          SHA256

          33f0b6a7bdb3424270c6444030eeeb97963ddc531c21b68749e27459f8e4a247

          SHA512

          44923404c5580924fb5132fb71464988aad2c44ea8465181b11326e4c658cbbd10b69b7d49b2ce1fff535030b558503bad104b5414b6f1d7ac35f66cf751e688

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ad89adacc1d9af8725bd35a76215acc9

          SHA1

          20425960664b77a15e5695535cea10e0b8991884

          SHA256

          7659a77cc9ca790b16e525a888c7822ac9219ca53f7b8959b1c2c5b440e0645e

          SHA512

          abfa4eac4d13712083ca86a44664a29c0cebe8008717d148286bea8f015cba8c179856a64b3f548b02f3601f6f675a1c8145aa9edd8eb339f149bd7a2f210963

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          68553dd74626b5744c0a80d6b9976316

          SHA1

          a1572201102ea66ea130213d0e27dbd942bce328

          SHA256

          020d90f1b184f0f425f3bc2505491d951984d224488537b26a284b558b2dcd73

          SHA512

          88008e356d9882f99f312c8686c480bb51c6d74d6935258af25dd3a9adc28d9103d1e04ece17361d6ab9dae7d42725c6c425bc84cc0b203dcf970120485e10e6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          02605379e2b8c1a9b98dbdcaf0c44008

          SHA1

          26be9125280e7ea4755a09cc9f714d84eae9d202

          SHA256

          deafeb548f49bd346179888e19c2d75ddaeb8f2c5af8409b0ddb4151878b83a7

          SHA512

          b9217ac41a77406b7a133c71df5af24232afe0cb698879b0e873379644d6faa06a312733123ff1ba1de7dc05fb8867c9fa1aae9874c08ed9f77773b7b00990e1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a6660b699c170c72deb8d8a8e7391bb5

          SHA1

          597415a34f81880be1ccdb998306bbd4fd74594a

          SHA256

          5c5733067c7a92758ba9dad6c1a7d52d3ebf9b403ac3defc0d8a3bbc703573a6

          SHA512

          ed064eaef12508debad6e3ea73e3f6d7b6dc20d625e08179f52387a6586536fc9251d3bfd8bb470373366af428857c355b6ea91bfb73edca9e31213014c6287f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8cbd8962c0f6986ded2892813df78655

          SHA1

          bf4ab2ff58eda84c711ff2eac3b3b5c8ca369009

          SHA256

          d865c918dfee1b4faebc0637124af7a99e3679a7910a3cf8d2304b73e9b6b947

          SHA512

          28d81a165a411daa48ea0ec6d70ca6d43e00f780d37456fc22bcb128c24cf0cada30ecef3ea2b64e26aa66e7a57e9a7f35e1fcc8c8bdf5c8717c70dfa8cabc37

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6722729d9ffe8f8d5a4168c36283533f

          SHA1

          148aaecd6d3a7dd5f5faa1b311652c39999b3ed6

          SHA256

          285a6dd57cef538bc59859c79cbdbc2f286a05c154d50fd4ef85055706d8caa9

          SHA512

          b0b58fce7fa706e79a5eadf42f28c74bf5c1114ec7b771dbf1037168f9658746ae4da33278c81a20c1978db825cce8aa748abb19e3767880255162fd3cb152dd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4db9fcaa36b704f244c2ca1b3cd1ec4f

          SHA1

          068829612b525cbb36f0f783d1c23d4384558d82

          SHA256

          8ba6e4a40c5abc906e47491544a1c72f84b7e0edfed7c005437487dbd9e2af9f

          SHA512

          a8bbfa7b621a6aad17c78d95ba888dceb6e3513e4208cba78509ee86b43d858ae52aa57b43539991accb6a13b4986af3f4848893d993f94c87aeb84a4bf64163

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          308dad755dd5576571645b5431ec4fda

          SHA1

          12f8671b79c9abf3272552de6e4b0f286a7a0180

          SHA256

          beb57ce97c0a1fca5e81f49f68f62d5330b97ba3d9a49486d0ff150dd17a8e91

          SHA512

          886c2f41199a2bf138e99f65e1fc0afc3f21b6248d6555dffa3ff7759daae87035bdc6d388ad327ae1e273270620c53f9edd66120695953abe7f6c5268c89d30

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d7ce4aaac21b9713e28be5863cf39910

          SHA1

          581d2a93e7940cf7d47cd6049abdbb707f89d47b

          SHA256

          a96c1b499078ae77808edc8746f1f1d0d7386f4be413c6a802360dd8373b4b35

          SHA512

          8d54ffccc2a97db468754c0656879f7fa21de3e8032a196ded9cba580cc6dcf0c7a087b7a829a26cc185cf841a40fa64f4f560dbc7f37d7565543777a14cc871

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          479dec2247fd40a37b3f381553c614aa

          SHA1

          289d75bf45b3c7e80f323e6f6375f7135efe08c4

          SHA256

          e60c1afd8f8c91c2e3aa719f3f21bbdc6a3b48336f5db66d988908f13787024f

          SHA512

          ead60528e73c5aa29b3b3d7d2cdeac26ebcd6e4e2cd7fcbe34b6e6c77694235604526d1e8bc0261b1f854b383afc8dd713896697066b65e6974f4cf4c7ede8d5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          879a2a89abe57dbf72e0c7907a7f101f

          SHA1

          5efaa85b977cfeec77360a5b71232aea7edc8800

          SHA256

          e1342d822ee76253fccefb3e2a2fa76927989daa65fe0cca049ecd6c67657868

          SHA512

          25eca26b187e0778098ee51126a86149cccefe520559fe61f02ed464df1258b0d67e46298ae6e5c4dbcb4fffd7c3ff3e9508d0f04f0bbb5ee5dd008159fcc694

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d32a58d0d0b2017abdb75061b2aa6f3e

          SHA1

          d3dbbc6956a9e2c5626fcb9812d70dd48f39792e

          SHA256

          9f1a4cb4dee018c15506fc72669a06d3a92a273be9a5b08d1e419a5e6f94822d

          SHA512

          55cf41b6134fe3fc2f46fc38e5db277e8e9ce45f797d161d61e38a40e4e83d8045c4714cd2fb9a17b24b406e1f32adc73e5a0081b5d394b13d8e31a60ad2cd26

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          61b57a2598e1d1af4c0b8c351c5712ed

          SHA1

          df91c73aceb959cd301333c1db44ab2bcedf14ae

          SHA256

          72256db9d938e46b3fd90a0b180215c3ba03eb47df229ebf18f2a2cb991d2523

          SHA512

          b13c1a5fa85cf012c58bf6a85c473c663f2567c61661938449768fefb7331a933266dcbb16eb845655e323a422e3472637f39e8273bfcc46f0a551e3d84a79b8

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab2475.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab24F3.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar2508.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit