Overview

overview

10

Static

static

10

GlobalProt...n.html

windows7-x64

1

GlobalProt...n.html

windows10-2004-x64

1

GlobalProt...n.html

windows7-x64

1

GlobalProt...n.html

windows10-2004-x64

1

GlobalProt...n.html

windows7-x64

1

GlobalProt...n.html

windows10-2004-x64

1

GlobalProt...el.exe

windows7-x64

1

GlobalProt...el.exe

windows10-2004-x64

1

GlobalProt...st.dll

windows7-x64

1

GlobalProt...st.dll

windows10-2004-x64

1

GlobalProt...me.jar

windows7-x64

1

GlobalProt...me.jar

windows10-2004-x64

7

GlobalProt...af.jar

windows7-x64

1

GlobalProt...af.jar

windows10-2004-x64

7

GlobalProt...64.exe

windows7-x64

1

GlobalProt...64.exe

windows10-2004-x64

10

GlobalProt...e.html

windows7-x64

1

GlobalProt...e.html

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

GlobalProt...-0.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    21-06-2024 01:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    GlobalProtect64/.install4j/i4j_extf_6_7caten.html

  • Size

    532B

  • MD5

    461873fe67aca4fd4ab23bf0b38b6473

  • SHA1

    abbd5c231806b0cfc8d1d0c86aa3e8675692a86b

  • SHA256

    d16fec6375adf17ab7ecfc384139dbe676182fdbd53f92d84179a4d41e19affc

  • SHA512

    9d71fe4cdeb4a37754c57ed1ec3f5b2338c187216adf7e7b538573b18c579521df1918716f4fa336a835b06c1e9cb32c913de07a8d991acdbde7112ac9b255ea

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\GlobalProtect64\.install4j\i4j_extf_6_7caten.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2932
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2932 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1316

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f072e13a53f976c70f405786ff5d135d

    SHA1

    306758cea6190295d42823269af3b74f6a2e961e

    SHA256

    003f6b9f339fff6412ad26e94c97b1b775a1159a7a31af29d45527e3ca40ea3a

    SHA512

    1dfbdcc45f3a7a31e5cf74270220e8c9662ef63c1a0c82da7ed45b45a3e8506d320cc25c0b6d4692cb13fd2d0a64e03b762ba8d27f6cc983ded9046791fa8b96

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4678d7a4405f462d5c36c723b1571dd7

    SHA1

    51dcd0bc3e2150e40b1e21068d8e102676d84022

    SHA256

    dc5fe9928b1ebd112333766f343d0cfad2714f5a09c996527f4a1faae953c23e

    SHA512

    46a118ad12160bdcceeb7c6ec87295c9e5fab3d7dabaf11615137f1941c4afa614f82ebf6cefa5639d933d890d4017ca24478a80dbc0b973323c8a1a37485a1d

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7b7ee512b06e7c34a54c09a599c9c0c

    SHA1

    9bfb00d5ea0d068c35c71d7590f3e2517530b61f

    SHA256

    3fd74517dbdcff9d1328d96692871db9db12b8cb1ec7f0661b89db08381cde47

    SHA512

    41dce4c77c9596f44685858c78f9b3008249705db672813f470dbdd950fdd25629e71342ddefe0515fceafe1cba7b63a3867caac416cdad536a5c58587e90c11

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d4a9bd16643ea744ccbc202dd0deeb7

    SHA1

    5653be47151f72efcbffd0ffbf5ad7a69f1c0390

    SHA256

    ce577272155701baddab1e933b9eb839b2fc21d36b4c06b8d5648ad631b31334

    SHA512

    57a2415bf43aff9c1420f4455c045d7abe36225fb60b9bf9f0df3145e82433ebea5ec09f5234735587dcf172d5de3e5dd58c195fd666a681f7dfcf836ca863b3

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ac06187a79e8a64dcc78cce4208e064

    SHA1

    40d017d4af879ed158369eb5487398ffd41f3d0d

    SHA256

    4a819a999f4a833ef2bff1354e875c2f9ae08639033398b097cdb44a8dc1c519

    SHA512

    14ca66a4280f76e037853482fc1b2e456e041ec5ff24d148fadff30357b7888e6307c8e9ad8535da848521a728ce958da6b5324df33fb464dbfcc703f1e66aca

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a11d6e604a133afa622687db7e7ab4f5

    SHA1

    f5a3b3660920e595492c29a66a71c6c6b91f6ecc

    SHA256

    d7cfe14c14b28d4e615f8e8c08ba17d1ff9d757478499c0802e2492d0621ca42

    SHA512

    c7665e96f1b847403d7bb133958493d7df650f380819614ac347f6ae0d49fc00438691139e370085f2d95e6fe3a6b16cb042c097f47a033b71d941a84f57b64f

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc3815ae23c6fc7a2be5bb0930e2c482

    SHA1

    79f435a223d28692ae7f343ff993e908dde8634c

    SHA256

    851dc82c915bd5cc973572c6e1e9f1414fd2c9db340a37be7c543cde0d48ddeb

    SHA512

    5fe1784ff97f58070c4921f41ff59e4aa027216bfe7a6ed0574de5d748cc84f105435e1b659c3b677c7c2ebe46c7eba29eacc94fc61fe6efbda86fe513d729ee

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91d071e2d2df475365df829c1c876f90

    SHA1

    5887012d079644037bce615cfad89a3bf11904f4

    SHA256

    407f45f6692f4c9e809910ab42e0e4e9065bc58d5105cfa637e708736e846628

    SHA512

    f24c09f6efdcfa67c8f1ec12840ecccea87f97c4ce36faeaf7dbda3f2f4e27bb378a13936ecba714591085c8d01411d5277e71fdf152da4ea5ee741e39e5b20c

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4e4d88ef36c697d09a2a464ae11b120

    SHA1

    9702955a4c060fe4411ecf7a1eb786a6dee071a7

    SHA256

    65fca7dd476ad1aa3aab6429fcb23058db35b2d9fc226408f6b5f5c9cf88ab95

    SHA512

    65f91276e11a97966ce3d9ab0dddafe8566d49288426efb1eb59f6efba36740b45aa8c219fd1ecf5a4ce474d9f60d98938b22b29be5005c81f3975a8ad7488d0

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fed2537e0a0b5f7d134253ba6ddabd68

    SHA1

    e9bfb770def072df37c848dc8847fd4c8c29dbb6

    SHA256

    d7791eb42fdb3cf462fd8d88e77ad89604d14b44f3a13358d1f5031aba94d023

    SHA512

    597f0142e041a9edc3ed4b41ac2eb18fb6b5cdab00ad9555a6d1155b041f3e553e89719af7d1b62a33914de9d8111ac72779acea7ed286364cdd71246c2a1d84

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b124cca4b980b6a5d1892e89a60c51be

    SHA1

    4e4a35e939fd7cac4eacc50bdf22091ca6fa549c

    SHA256

    0c688aeb1cec65a7a3e939827bb7f35d24f50f9de376ed96a9d8c9eafbd132b3

    SHA512

    22cc3311c7997c00ba08d33ac10dbf08cee0eff0c7ebb505f02c6b67247b32416643e602cfc1a4bdcacf77ab3dcc6ca525979e71cd5141a572938c9e0c1a1303

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f2b5bf4707a4bd99016dbe1dda415f5

    SHA1

    ba02086bc018481cba32cd350aeda6d3cc9edd38

    SHA256

    fc636cca3af34efc887f8e6a4d0d2fe5ed6cf03a136c6f95bb37423fe24f3116

    SHA512

    278c7472923d0af8b50a29d8e72d3c1f21a082063b55325f8cde10ba6dbfafe70582a6625bee9a479116fa52585307c686b9cef6ad64b831cd9096f3473c0844

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bdc07e3a88d8715c197fc29f276567dc

    SHA1

    13efeedc2ad74c07772bfd75aa128d7da32ab741

    SHA256

    0843553617bf79eb6b6a3ab6986e0616ddd7514f946c4d94978e7e3f52a2832b

    SHA512

    79e3a8860f9a17aa57087e542af0e9ad9813c597841017155573b5095decb0023e261988763d34390d2c6ce28355f76679da4baefde1c0f2f63f88cfcbada249

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f79e9ff1a1a0b4a5e85db0420cf1e79

    SHA1

    0f3b07060b17982e2185ed106ccec1ec30913480

    SHA256

    a2c29270434cefad8d28e61b63a8e46e9a7d9e391e894b4366ff8e6e754fe2f0

    SHA512

    8558508d8c8727c064f5cde27ef2a1e946b92b1cdf617b050cde8a8367a3580bb23adc49775258880cea9679201683da57fc81fa70a3bc8308857be23ffbc4eb

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2868db14280c0ea37d57dc9f2e559a90

    SHA1

    c1d00c38d2620236fdc98e92e0e0ba730356854d

    SHA256

    a21b4074300aee4558da66b16f3977db6f823dca540c7fe914368d2d38b8b15d

    SHA512

    4313828fe57b9ba8adda48ac1f3f144a27a982d1cab71cfad2d8bfbe1605fb4948336049a24022d3330badabbee67c0e8963ffe67279fed75c843002b1b2aadd

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    765eaebe6ea9d1f6327490fd4ddad1fd

    SHA1

    acd3ee7f71b4a9f33665c94b27d07f85a9f2e89c

    SHA256

    7ca898b49556404a6fddb7b8c086466aadccac72e53a6df9e4c006ba6b37fdd6

    SHA512

    b8a7cd112008d261f931711b91a3031ea01dec0ca6cbf311f70d75edfbd13f4c76b2ddd909707840262f5beeb0e9bca5882ee505e8c1f419b893425eddb17a17

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e565d0349ec63dae3e41065a3e6c0d38

    SHA1

    2fcd36727bdfe5b848e2dc28fc99a4269189a9d7

    SHA256

    c9b2a7444efe19a59e06319cf643680fdd66d15621db99afced9d97b0d11ddb9

    SHA512

    3c58a6edab26a075055dbdddca627cd95bbc09130855508532c6f31f4e440205737c3b3651630b2f6ff2e300a3c8c22d077299bf51d3add7fa87f4dbdb5995c6

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b18687408b480e46fa48d30ab3f1e77b

    SHA1

    96a115d9ebce3994eaad1b83bfd13c3d9938a81b

    SHA256

    daeeaa7df69c53ef65757e05c2038014c8dd0fd9a446ac01eb15548e52cf82fa

    SHA512

    298680ec48cc6c306fd566b7fba252bc189ee00a4108a10052ae9f62df124b5c4a246788b9728fd50aeb8b0590205126aa03ec83f036068544dd1d3fdfe47c65

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Cab4C00.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Tar4C85.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit