Overview

overview

3

Static

static

1

sitepub_be...ass.js

windows7-x64

3

sitepub_be...ass.js

windows10-2004-x64

3

sitepub_be...ss.ps1

windows7-x64

3

sitepub_be...ss.ps1

windows10-2004-x64

3

sitepub_be...rts.js

windows7-x64

3

sitepub_be...rts.js

windows10-2004-x64

3

sitepub_be...ion.js

windows7-x64

3

sitepub_be...ion.js

windows10-2004-x64

3

sitepub_be...min.js

windows7-x64

3

sitepub_be...min.js

windows10-2004-x64

3

sitepub_be...ery.js

windows7-x64

3

sitepub_be...ery.js

windows10-2004-x64

3

sitepub_be...tip.js

windows7-x64

3

sitepub_be...tip.js

windows10-2004-x64

3

sitepub_be...box.js

windows7-x64

3

sitepub_be...box.js

windows10-2004-x64

3

sitepub_be...F-8.js

windows7-x64

3

sitepub_be...F-8.js

windows10-2004-x64

3

sitepub_be...r.html

windows7-x64

1

sitepub_be...r.html

windows10-2004-x64

1

sitepub_be...e.html

windows7-x64

1

sitepub_be...e.html

windows10-2004-x64

1

sitepub_be...t.html

windows7-x64

1

sitepub_be...t.html

windows10-2004-x64

1

sitepub_be...e.html

windows7-x64

1

sitepub_be...e.html

windows10-2004-x64

1

sitepub_be...x.html

windows7-x64

1

sitepub_be...x.html

windows10-2004-x64

1

sitepub_be...x.html

windows7-x64

1

sitepub_be...x.html

windows10-2004-x64

1

sitepub_be...m.html

windows7-x64

1

sitepub_be...m.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20/06/2024, 03:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sitepub_beta_1.0/admin/tpl_zh_cn_UTF-8/article.addarticle.html

  • Size

    8KB

  • MD5

    fecba96b1fdece18018515a93e060722

  • SHA1

    682a5c25cbe6a8bcea9c91c6d83dbb2e6e124a58

  • SHA256

    6f494af845f3d68d500cefc2b0e038ed4af40afa0ae81adb1d6ebf52484ca379

  • SHA512

    ce6a6e3ceafa850871ad41be7de81294175279cec27501056e9996c2aa36512aba87a8b54a5f7a7c5acbcefe523693e5398f0655c532ac3a56331a0ef64644f1

  • SSDEEP

    192:LF1opIvzvTeIvr5XvYWEYZmnpo10QI10/+YG1b3gD:LF1t7zFbEYZPpv83S

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sitepub_beta_1.0\admin\tpl_zh_cn_UTF-8\article.addarticle.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2360
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2360 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2092

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    020572466c98b2101ec5c837ff045152

    SHA1

    ba3dd115b1bf6c36ecec52f4450bf5feac051edf

    SHA256

    3e2f02411cab3b92a4922b6050d88491b5802d294cd58e28b1f1fa8208578d84

    SHA512

    76cc57b2ae5fff43aa96b519000e6cc983ecc8bff31ee27c4bf351df7e8a9fc782936d611b6a0709413f2114b1c72754108b3c7fd13ab961fd32fd5adb67af79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    801619e2244aff1ad05c91491a8c67f2

    SHA1

    14aee4632a5945cca64e19031610603a7597f39d

    SHA256

    cfd112c7737248b3cef630c3c0eb0a2dce8bbf716fce36e70a2d10833220a4a3

    SHA512

    94d49441b30a3cbfa6f3635060ac758792cc036f56d989b4f81b7dfcd534cabec84445644af5a6cdaa26f4f402d6f7b76433734e8f94441c2423e984b5b2551f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f62fdd78cb784422ea897d08d853f6e1

    SHA1

    63b5dc8c65655be84e27e5cbd563320aeda3392b

    SHA256

    fe6a7e7f60459a7d4e0c890da6af15ef80bcdbf1b9b31868bf1cf6ca126b618e

    SHA512

    c25207f85f5780bdb8a71aa2418b60fcf5fda59cec4a4b799e3bc22add10cde4d4cd6e3095b1ce476f12350348ec7386d9b3240cbecd0a2fb06065c58700670a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05af29f6ad09f5c7f02060cdf3fb9639

    SHA1

    a94803c2e320008b7b3d0949479747d2d9bc4292

    SHA256

    6f1a6492d9e79ae63eca53aa13e9e5ecdd2026d517169fd01bcda9eb3e3abc85

    SHA512

    20d50f4676cb2cc5005ca151b7b424637d7cf33e70a177a64a5164f6b5ab9efeee4abb08459a499c0a44e2dca15d5336ac856b88be75012e91ee355cc60b34b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4fa964c7c2c6eed4f9c940d984ade8b

    SHA1

    ff914942025f6ba1d7fbc3051b2b82c8920cc7f3

    SHA256

    f9fac137f0bfc840837f79b98a338d8f8c46f1d60a00136dc9850db21b37d241

    SHA512

    19e83acbfc5d4380ffd39d449773c6994bf640460c89d98e506607874e78488eac7a07ef5da88f83b0f98a595fc96f252e9a557eee72cb616937e90f6bcb1ac5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    606c2f58e5859fd0bd5e1b53195714a3

    SHA1

    8c5b330acf0b1d0540cd38319fdab38feccd0c46

    SHA256

    dd0c933083147bbc4455a9f7de0dac10332fe4f3a741ca2fe94c6914bb4ee45c

    SHA512

    70ba45f51e9d9b029f6db36259109de34882702dd7533efdfff275b2a8a78f5b9ad23d8ec0d34c8c2735092991870310ade0dc6739aa59931dbc7ace8f3c9b79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a96b3329309c6dbf62df2732bee0b517

    SHA1

    87df0ce81e7903f089bf8234a4180a3959a0d8d4

    SHA256

    1c91bdd95ad46f045ccfc1ae7f9ed7578c484721e869fa41b29ab1fe341e7441

    SHA512

    53fa439759500c35d305b00726dc1d78d6e5aa36ca416391007b0555079e59ba892d33b192c80368ed1c69ccd3c26cf9bda4af0ec40190711620b64a36caa53b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be8f3bd63668171844ee973be6c37082

    SHA1

    eb00957c913deb6a0e4af3f3eb697420bd4d3e39

    SHA256

    e4e50ec5ac6de791fe6f8c06f8866a3bbb8fa95e790c6a359c09e9b32c9ff592

    SHA512

    361ed2dfbcb734a81ae0f37cdf7d234c098698c24f7f26fbe55b171af386327e976bba5876411d117229559ee9d97c163038ba8384cb4352fac406323a1da1d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84e5282d1076a142665ca72e10023663

    SHA1

    adf0f5a55e82a9442aacbc85495dbebf50c9b75c

    SHA256

    71b75c9d9284834670dd971d0e6dec8c5730ff08c30150aeda322141f539b205

    SHA512

    31bcbea6f9b8ec7ee8895935bddee7b62bc8298f309bd5d3c82b0453b74cd27b21b9cf6199b462c6ebc8343dc8f21ebe83066d95af9e26912f0717746845ec38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5acdc40a84cf5a93d7d97be0fdc2ce05

    SHA1

    be2d6f344d68cf632a37003cd6eca2d2d543bd3c

    SHA256

    b33bf296fb859a4b444bd634df739b18160af1c68f02a78090c8407454746d72

    SHA512

    0a534f2ee1968143aa04bc952bd01fc8952457fc1180c2f7023b5a0a6d730cc2f31ad57907261db648b01111da877af04ab4d0910fc32e22c3f5fd642a79ecc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e9050e57aa4ea9f27a3eacca48e3f2d

    SHA1

    1b1d2504fc91eefbcb86b3de9c75b8bbd9159010

    SHA256

    82df1b3b319ed26d329c670c7c373a9387200b65c9547ac9a1323862b9890e43

    SHA512

    4e7e504b688e0a28066087cc1e2c601916158a63039a55af37525376bc9099443e50b4fc87130421fd130ae5a41d3efe7df84c2e8ebc8435cb238e3622f569fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ae4f463d02f2ce60c69284aa690b143

    SHA1

    4d087079c1254c4ff3540ef72b1a1444460429bb

    SHA256

    9d9958f7813e8a56c9e1271ec0e6e6319350b9c57ecb6ba39cfbef686ecba010

    SHA512

    2b28de22d199b9308c2684390307acff23838044d5e73c4fcb960f1f4ece4af29599d7e82bbfcceff820582dafa5f07f9ec6b516374be1c151ea0b29b66bb12d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71603e328d5159522fd52299bb10491d

    SHA1

    10e5974077e6768d922f73aa59bdbfce6ee39f32

    SHA256

    fadda129ff9f0d397fed494b620ad9aee1786f5ac884e3268f8985a5ae3983b0

    SHA512

    3713cc8fc65d732c3d5255586786316ccc611b24d8e27b7fbefc19dba5eb369772ccd9ebda71218d85e834928360e191c7a53b3358425ce9466855b58ae11f04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a15a46e0fe98ea09ff9aeb21063eca55

    SHA1

    2e611a93da62a337ade61cfc5460c50075bd042f

    SHA256

    d30187c5ac3233e2d2cec9d55a71595aec7fdc55b5d6f1fd9069876997fb37ba

    SHA512

    3b97b50e4337e0cea01855b6bd066233ac2b48290d974f966bbd8d7926676db54e34921eb023310b5f8d798b458bf140c6d347c36ef9a4e95ea2e430c6192fcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c6c39853ebab9ea04c72ecba1048d27

    SHA1

    7aa9cbdbf4993b08cfbf698423620c47eaabdf9d

    SHA256

    455d68bc1b588158662fc371643a531920173f580dae0ac3d4b5fe5998c8224e

    SHA512

    c9733a82b5fb49491914721e785eb58f8c9f4d4710e0b73eeda0f8d4064d0163c4043a80c2946b18dc5b80eeff9085bb93ecf4a56d4a64ff5795664dfd664c6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8212b25403f4da1540c46fe4c7983d5b

    SHA1

    5f15a8f60cb3508696ec2504cd5135a9430af634

    SHA256

    f37f24946abc12cbee7886d471c4bc9a6324d49ccec448645f71c8d03f8f7ac6

    SHA512

    72ff29bb83d31adf25d4e006fe8da4c121c017dc430c7b3446833e2cb83acfbee9e6acdff874b9db55fb49fb671f9e5a3da273a42d051c101db9474de0bc6c7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e203315c7bf1e1a28a07aa3b35df6502

    SHA1

    1b055121d47e9a643c39f83b150adef7d5c6f369

    SHA256

    60cf81b9591ab8dd4190e40febf56be7c942fff89a04532c488ac8230bf339d0

    SHA512

    26deef548a95ba64b48a3e69955bc4ecafd9a19d161855bd4364e03fe0ff8857fef7f423c826d4402b1c79beeb84bc7570dcab3c9edd05244fcf1443f5a1d1dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3174006aca55ad694920e4f19874a9bc

    SHA1

    3b99839d2c64b720cc8b1cb033956d99d4ae498d

    SHA256

    7bfa808df1e57609008710fc0f1a09268e38e74de09b4d3bbcd8f811b9e6ec7d

    SHA512

    77f97e84dbb539bf789cae524919034e58b8371a60abc491005777c7bd8a1070eccd608b2930378965afa8dd4c7b1439ada110d6c3acf7157b284e719095c069

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c94d2d011315b204efcbbab4c753749f

    SHA1

    a12ade1bbbb37f2d126d510b680052df75e1926d

    SHA256

    dd649f40d909eee2a4a94c5616845166256805463ad789c00a3b6c493d1f94f9

    SHA512

    0d81b625032a22670f2daef325353951232770b268dfcfe061354dda47f5538b7d647ed50695d8400a0cfff6b17c05559965ad0301e45f1d770242b5a09fa754

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e8ac98ae23c5befb5db2779c82f26eb

    SHA1

    643cb4788ea51e463ac69986c08b553eed3f18bc

    SHA256

    d5ce70ebc47ea49053678b55cec6cb3afd8505628778f2919bbe5b332bfe0e4b

    SHA512

    de83fb418ab0ae4e1c46b7d9fa1b7584c7565ba2f545faccbee27896654a3577e24579196b0c422e1395859a7fde03bf9c59f3901f159feb2e82659999eceb68

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3A26.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3B08.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit