Overview

overview

7

Static

static

3

ae680ebf18...18.exe

windows7-x64

7

ae680ebf18...18.exe

windows10-2004-x64

7

$PLUGINSDI...nt.dll

windows7-x64

1

$PLUGINSDI...nt.dll

windows10-2004-x64

1

$PLUGINSDI...ed.htm

windows7-x64

1

$PLUGINSDI...ed.htm

windows10-2004-x64

1

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...ss.htm

windows7-x64

1

$PLUGINSDI...ss.htm

windows10-2004-x64

1

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDI...ss.htm

windows7-x64

1

$PLUGINSDI...ss.htm

windows10-2004-x64

1

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...en.htm

windows7-x64

1

$PLUGINSDI...en.htm

windows10-2004-x64

1

$PLUGINSDI...t.html

windows7-x64

1

$PLUGINSDI...t.html

windows10-2004-x64

1

$PLUGINSDI...r.html

windows7-x64

1

$PLUGINSDI...r.html

windows10-2004-x64

1

$PLUGINSDI...ed.exe

windows7-x64

1

$PLUGINSDI...ed.exe

windows10-2004-x64

1

$PLUGINSDI...lay.js

windows7-x64

3

$PLUGINSDI...lay.js

windows10-2004-x64

3

$PLUGINSDI...min.js

windows7-x64

3

$PLUGINSDI...min.js

windows10-2004-x64

3

$PLUGINSDI...ger.js

windows7-x64

3

$PLUGINSDI...ger.js

windows10-2004-x64

3

$PLUGINSDI...ker.js

windows7-x64

3

$PLUGINSDI...ker.js

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15/06/2024, 12:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/Failed.htm

  • Size

    5KB

  • MD5

    dc97ff133e028759df5f5cb1614252b4

  • SHA1

    67ab60e8bf101176f62007558a4063deb5b0f993

  • SHA256

    31126e10bb189aa23ad62f61dbe8ac09abdc47c4065a44fac97918da5bbc14c6

  • SHA512

    2102a8508175bd387aa75388a56b66e97558ea855a57a195ea5d2786661176018a796ec5d5ffaa86dcdd5d8b560ad1f998138c3382a8a90715136886ffbccb88

  • SSDEEP

    96:7rBd6l1WOVLKTBOIHMVtZTk/fOvPY0QINWjfalZNpRWr:/BA1WmLKgIHwbTs2vPYLIRZNz6

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\Failed.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1252
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1252 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2612

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7b285010050664f228befdd2420151a

    SHA1

    3dee06016f5b6a8d0bdd2bb7eddc05ea74d20b58

    SHA256

    5d4a320ffab6130a3587f70c2fcf3aa662e357414c6ee4fb36fbc430853e823a

    SHA512

    ac7e656783bd3b55bfe5b3a9edb372aa57378c280c6d46f2a9c4069cd2796b8917bd98fcf13d2c8c4135668f3a672999937579b86cd53babe170a6bd4fcc24bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6425b7cf932c014d58590f9fb9a0b41e

    SHA1

    080c3d33ededcf14bcc30c91a8ab23d03aec7f78

    SHA256

    425cb6fb050c9a7ecb1ce9ecac62b0478055161b0cb0ddb8a3e9062573fa09b8

    SHA512

    ae61bf9a192d427eb4fa28b039a3ce59833ef4d617b961ea023f270accde377a5a3739909c22334eb212de014b205fe1e4c33918c894a4315a630112d725ae1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7f276149f48b5d5e750f90fa0bdd91e

    SHA1

    127d60caa2af9f6a3517358c91e0e1f3492a6f95

    SHA256

    d345dcd822fbd34d9da8941ba79d915daac89631452645fbcab7a03b82e930ac

    SHA512

    e430e71b2c02f2a7cd4a78a34c4db4ee9c69087e8b1f6cea24b83b30bdbbc592cd8f386defa5160910a04c93dd36bef66df05a7c643c6749fc4d49488dae270f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9c87d63a0f557b1e0dab7cfdfcf1474

    SHA1

    ef4ffe2b5fcb6d3461c97986f153dc944ac5e336

    SHA256

    b98235c1e26c24da9406d1dca292063ac3098968af308da5470c499b4a2620ce

    SHA512

    3bebba8b3a3f700dbd4c5dc0aa838b973f0533aaec3c949618a708dbc8d31af0a3720204771c48fb130db693846e79bb210a56fca1d8da08c2933ee84d16a015

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17630ce731bee3a4e04d0d1ad7e3d385

    SHA1

    99606bf233f4511ee4b49ce7dbe7a8a130f81130

    SHA256

    bc8ee842460632a88bb8ccf2cbda679f3cd0a95a5ff4da93de681efc08767087

    SHA512

    2331f5f9cb4516e7066d4a6a93bbaa0fedfeefb8196198f76535db6e2bcba0e34808658d995c67bb02060bcf618b8cf28a5719ade38d672a1182db9f206a9b83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78f5cf9df971d4fa5647a948ccc836a8

    SHA1

    ef13542a723e3423f5181745703a90eb623e3c50

    SHA256

    2a3e750a0e3ae033cc6b40bb161ba65d7c4b8aba8a3bb5e3428a03a06d33e75b

    SHA512

    13a4ee2c935f90b1b7c6a9bcb7e8011dc592b38085ffc59a5e4f13ea9533934697df48adf11cfafb774fa087a3456e44ad6c0eb6d72f2365f1d46018bd4a2ec0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b81b410d8ced9232aa8bc3aab3038a9c

    SHA1

    e6abf3d9bee3a842d54da72d310447a3f40a3ed7

    SHA256

    038883994982f04df28f976104417d43f2415191ff57021de239041b22a9f4a0

    SHA512

    aeea396477065285fdcb1c0524e583ba3ad1bfa91c3b4d66cff61ddedda03357ad77ec99ab8a6442fc8804a94733031705abcd0ab3743be7b52afccecf77279c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    578d319a89f734b639a703dc5018cedb

    SHA1

    1e81ad998002a872c955f134e9e44a081ef0f6be

    SHA256

    282ef9cc878acac6a10e85e9c0850cb0bc273cab745668b4818e090a49c6f0ba

    SHA512

    46c132ab39b95ca4eb5c735bd6be9799b638b7a3cffce6238a892bba9bc4b73bd67de79000af771821aedf7ce174fefa700b25bc07e371f2864296a63a068f5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf3f7398affa736bd74154115929c579

    SHA1

    65a5cf52a9a714dd690603a258ba2b9ea75addf6

    SHA256

    546e7a8535763f05eaf2d0bd5ad6f82d553ff57817c789c2f54fa94a415ca211

    SHA512

    7d171d7fe34aa2ac0b1a2490467082b00eec50bb5259b3453d3d731cf0ff44dc38464704f36dc9e34ec8467ba9a608df395e94f572c5795a75a0dedd77440c3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc088bde89d408479bee314d7cc6aa13

    SHA1

    d49fdce56b2578f59358d8c04221c55903b5691f

    SHA256

    29272e68fb3a0aebb285831a39907b43d98a27e0e923f506d6cea47dc88f1ed7

    SHA512

    fa033d2094f0d138a5dad0c2dec331b1c3a539dcb082a135cabd21a67294257c9ed75d30bb421de95cf683a8a6d79e2df014251b28ad9ea0618449448724fe6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a634408c2b976587c24fe953116acaad

    SHA1

    6ee1c7bfac97efec506f83a26e46eeb6331e9c61

    SHA256

    b13c20e85b1debd9de865f5d2a8872a0299b14118cd0cac0170b9a97379c3cae

    SHA512

    c2c537b023a9456b86408b9e87128ff13517e4ebdca150110a90d7a0f0f740bbc134f12147457f0ec24549ab3d4110b5bcc848351d8240a2f4a654e5c2157b9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bed7b753480dee38cc5ba1b9eceed7ad

    SHA1

    460d43c39069755ce27a871acd816fdd2e7bfd13

    SHA256

    ba2edcb9d92398b64d9d41fd353b1facdc07b30ce19e8f3d42f3474bdc35c5b5

    SHA512

    478573c600738a9649e0ee8229c719d2213982d567dc6cc77f9c451866f977e9ccd864e4df3cc16ed00d03142d413df7bab313d6107529c93a8fc6fb36494e36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    896ceaaf725d69d8b85a60688f453476

    SHA1

    f498705327d8f1d1dc3b9765de4e6230ac1f23bb

    SHA256

    ae8ad15427ff3c8ba4a443b9ed4fb3165b16bf46cd549f857142e8709990f3ae

    SHA512

    bdcf30a6acd506de7885908713f42a747869937d3da615462c33739fe2b8d195a4b9883de45af8612c3b9c77ad36388d7646b120235bf8c2f0eaad39b0088fe3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4138dee5d2761ea61343daacd014eb37

    SHA1

    396d076f38632ffdbe4cf2fbc30c38b0c9eecbc3

    SHA256

    cb109de091cdbf1a14269343edc10362fbf6bb1b7abfe9ecac2a7ca5d403e06a

    SHA512

    b5f21d3ad5ec04508ebbdf3f69213272ecd2d623b6f6172a496c831799a23ef98387251ea2b422f152404670b2b53da76e66a47f3c6e87a907443d0960c1394e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c6bb7015dda6313a3c8aa3e47fa14b6

    SHA1

    7d6b34882a1ea31d2fa93cbf2e1d9049ced89a96

    SHA256

    c92dd6293b219327ee331c3bb91724578250833fbe0d89e80db704a3cc1f28dd

    SHA512

    350b6650735c09d6ae7ee7d4aa08c68cc37289e1ac41932c1fe03da27dbb0633e4a7e71de197602c5c59ba17b5989b400f4c5fc545edc6cfc0d36038c8850f1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d800fd63ee5601b7a62b88501525e72c

    SHA1

    0ef4804c27eaac6b3e9697fb3f55a5f3ac189fce

    SHA256

    5559449cdf7356aa6892b6268fd4a16f98fe127a2658a18f3174fd1cf7bfe157

    SHA512

    ec05d24096c28a5093487de48bfc2b96a70dedfc2025b1326832c6d3cc2d2ec6b8aff1b2c0e50a411b6bff007e662f6e74e7a4a7fb671079777b0dc590c3eb47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e437979fe282c2420d424b7f84fca3ab

    SHA1

    5a4391433442cdd23bdb60d0e0abe5fd0704ae77

    SHA256

    78f3ea04dc0f46cf6e0c87c3900fdb7d4b35a570b0e47d95b8ed8944f4668cd4

    SHA512

    f521754964626d5181df5e84d56e748df15d4bfad0d0e76c20be57c88761ab7ef138f52db482e9fb5101b08f10b3aad9147355b9fcf33b7fbb5a8f2250133556

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    51b7fc5deaab0e095a77339ff882b944

    SHA1

    89a6b92ad5b2ab0500990c1c000055028541e7ae

    SHA256

    6a3cf0a315f34d80b324a83d49f583e814aa79f987c081672e3f3691c8763f33

    SHA512

    63d9d61dc80b1ec64fcbfb2702a779d69e6e226c8c8e3c0410e4f79d4a894f2b28e18f55ecbf7b72eecc5e16937545cf94ca33a1f8fb4b7f5a89875bf1b6981d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8c69e3dcde5a657bc9f9280f798a9f0

    SHA1

    c81b1aac803d9c093a37f29cc3b9ed63222ab220

    SHA256

    b74e12c7e6e36a1567441e4520c808fbcc5a2547a84fbc56cf8e6611981ed8a9

    SHA512

    9240e82e349a15575ac73f6b9f0cc09875848450c948d57bd7c4880e4c8848a399af331416a6098a564b7d7cd4354ddcfedbd63225e883b0d68a415e323dd35c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7495.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7555.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit