Overview

overview

1

Static

static

1

亿人网�...j.html

windows7-x64

1

亿人网�...j.html

windows10-2004-x64

1

亿人网�...nn.vbs

windows7-x64

1

亿人网�...nn.vbs

windows10-2004-x64

1

亿人网�...wz.vbs

windows7-x64

1

亿人网�...wz.vbs

windows10-2004-x64

1

亿人网�...ex.htm

windows7-x64

1

亿人网�...ex.htm

windows10-2004-x64

1

亿人网�...le.vbs

windows7-x64

1

亿人网�...le.vbs

windows10-2004-x64

1

亿人网�...dy.vbs

windows7-x64

1

亿人网�...dy.vbs

windows10-2004-x64

1

亿人网�...dl.vbs

windows7-x64

1

亿人网�...dl.vbs

windows10-2004-x64

1

亿人网�...gl.vbs

windows7-x64

1

亿人网�...gl.vbs

windows10-2004-x64

1

亿人网�...lb.vbs

windows7-x64

1

亿人网�...lb.vbs

windows10-2004-x64

1

亿人网�...wj.vbs

windows7-x64

1

亿人网�...wj.vbs

windows10-2004-x64

1

亿人网�...jt.vbs

windows7-x64

1

亿人网�...jt.vbs

windows10-2004-x64

1

亿人网�...zc.vbs

windows7-x64

1

亿人网�...zc.vbs

windows10-2004-x64

1

亿人网�...��.url

windows7-x64

1

亿人网�...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    27/06/2024, 18:04

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    亿人网站空间管理 v2.0/index.htm

  • Size

    155B

  • MD5

    a8a4d62ab65066e0b6599fa485107ab0

  • SHA1

    ad8403d62a637a8485a0b1fedf6d8ba313d901e7

  • SHA256

    623c639a4d162e95c92e722bbca9e3a5941936f8050bb091686fc3f86acc764a

  • SHA512

    aa63cafbcb6231896d74b988d60c420f645399a76d251415615fbe957b0da61aa5144ab823e3fa0b1991731e1275703754af60e612179fe88df046db53714012

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\亿人网站空间管理 v2.0\index.htm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1224
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1224 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3bed85f7328407eac7501e14099e8e69

          SHA1

          8189ad21667e8b16311bf428efd94d4359dbf819

          SHA256

          a22bd867b6549496432c0682387c6677faa2b1632200d5b09e1b7e00339f82a8

          SHA512

          c3feafbbdeb00cff8283efa62cdebef3786a28fdafe4d944eb4ea6b9ca2ea063b859ed03abca29b989cf40f43ba38aa4ce67861df5459bbda1746ba1c7b3d652

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d594da68d76480584b6557343b78fdf1

          SHA1

          f0077a1167dca397d54c4a8d0d1985d7dfec699c

          SHA256

          7caed0846b038b8eb4046f98fe12bd9c8832380cad276361575b90d6f1bd11a2

          SHA512

          4abfc07950a3be873c9358945c74fbfb19c453d741c627c6d72525f6e0bf63f7cae4aa6871f328648daa7b4f69e21847bf1b2f63c00f88d434d7e8f3bb2cd10d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          598f9b27fe49ad547f098c6fa7503f3c

          SHA1

          6b3de338fbba1649613ecf6b5fd773037501617f

          SHA256

          3fccd76ac585fe8eb11bae422d00366916ed127f278e63fcaa9fae6178bd9c7a

          SHA512

          94ecc7086df8813775fc1bbd5808e737a24018fdadfb3f1280a2c01fe0dc7d1b2293e40f5652500e5d4d5e2ef9f0c52c6d63481e4951628bb491938caaab0bb1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e3f9d5c84b9d9cf61e5cfb897a3c783d

          SHA1

          db4c8336d1b294fdd789c5e344f89693d567bc16

          SHA256

          7b6ca798690a837afd784f9a2b96deb3ed6767d9c343d629be0f175b04e2ad56

          SHA512

          ed1a1a826c9cf98105ba8e3e16e74f0ed358a11bcbd53094face8134b78e8d7a9d103b5de7626ecfb97393637175ee75fb536bb2ab0ea62da298d27575d6dc48

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2d8a9b8a459e7a189dd56e2fb34fec4b

          SHA1

          78684bbe730f69f5a398ce913e9ec70231372e7b

          SHA256

          60c214d82a96e2cdc9de015890566f8443567ab94992f9e28963cb4f23ee23c5

          SHA512

          c4418dc656b14078b6b7f0211d15dc0c03840e3dd7049b4a27081808f63f6c3f673d84277f4263f182d05b3642c20e691243b218b241bf2274e812c7b8036190

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8a45f2bd035a0180223a40ddab2a2471

          SHA1

          639a7261414ddd089f966313a3e1ade22da2f073

          SHA256

          f3b4ef0cd0973901a40281c1c57ee72be246607c68aab119e1ea3e8784ef6b06

          SHA512

          84c013709c6569a8c347760f5f5c7bb6922ac9a9a6c2a7a825402a8c835b584bcf18ce73c03dcd5616b788f155e111abbad45c87704b95c90ebfe05f74bb95c6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fa65cc6679164b636a8eb30a2e72e545

          SHA1

          2a2f656e04de241dfc93c15d4845692d154ce0ef

          SHA256

          ae5f5ad228a4091f18876b2d3e82e149f112839f68006e75815f72269fcb8c1f

          SHA512

          01af1d47f57fc2bd70989a9784fc14306457412cc2366053ab0932208a09c3caaf6d9ddf8fdbc6dbddc0142010229034a0a775883cff46a503ba935532f9a07f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2759c3ccb18e739cabb83c7e28b03474

          SHA1

          1dd64ca28dab0abc20abf3970f91c6e59cdee6c1

          SHA256

          c58feff305976e6a23a989c5b129ba2bb57f6cff2834fbbce8ba2a9cc46f417a

          SHA512

          316ebd058d2fd4ba465dfe97850eb74eed14f7094c07fdbb07b2be7b4f173fe471490014cfd206f4d141b109f5828819858ccab1d9d3dded02ae3d60fe84e4f0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0e4a01763ec8fe0b28a9c526c2173ecf

          SHA1

          7c78d4bf19b1120a8dc70d1b7b6353a27f95cb1d

          SHA256

          ff13077202a9d32fca5940c8c0fce52f3e6538024bce1a3d93739317af9d3339

          SHA512

          cfd1f52efa3fdfceba3295240e561bf0d6ebd5cabb0404c0be6b56326dbec2f38e2c6a955060ea0bcc7951a26d2858b08ba41cd68f2cfd24c93231e52fa2746a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          07d727b40461a892127e98e9a7637c80

          SHA1

          dfa3ed5725bb3a3da8e6b66ea0e9ca45c69ea320

          SHA256

          b612f4f03360899a7f07a84e29a27f7dfb1cd42a921d2c11c0f93ddc19feb112

          SHA512

          49dafbbdc653234ef522e717c12071f52a357a06b70c95eee2902c76d479b2035d891191b5f61f576f2dd3ac340380d21d96026cf9b55704880a73df3a8055a1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          33fde70d049a4dcf38142d92b75068c1

          SHA1

          9dc6b7946ec17d81d7c51d90569eac9aab2b0c2e

          SHA256

          0a43a827bb7c5047c9fba7942f6041b4f60998ba2e60da9c03d5f0b6957574b8

          SHA512

          043a3f03aa867fc27dc8724236de8599ec9f21c28ee70a6710ed8f375f8f1e4b41d18ce54ed8a1f32ef0926e2e3098ad6a630a91207710448fc01b50011873d9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ac1775cb94e882d9099e70a6f183931d

          SHA1

          652209d3302bf7d075420cf792515ea61106074e

          SHA256

          fb463dbd6dedc3cca68817085286304b992bff162a6443ce270e1d2a8b8a9a62

          SHA512

          b30539b23a52c53384be8798f234aed6cc7d7059fe99cb0c13d00fd90f69c966fe5f90597e497919680bad453304390febeacf0275c66f3ce6e503bcfd422dcd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7cd9cef8cbda732cb89d9dcaed93e253

          SHA1

          266c2317286a42f95dd85ae175948c2625f63261

          SHA256

          302a3b86664a0109bc0b74be017b156b1b5ceb9835751635a886c3f8511d81aa

          SHA512

          e9b4bcf07150270406faaa826bb510d545025055f06360bce20c1935c4afc4bfae52701429afa65e795055c45069f7083e0819022f5149582cd53429fc61688f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          67b1acb62ef8cb479a001b6a8be3a9a9

          SHA1

          6712973b535348d5fc271806a4ec95f558598401

          SHA256

          f94eff9f04b0a8da3a3a046801cef35f1a9644bb67b6ddc5c5e6486451c6b71b

          SHA512

          c6e583f94312f0b756492004d8770af69e495a54b5f746308a099f15a011d55035e518091f617e58e1dc4446ac57e216f4a006516e73f06ddcb4f81740dee452

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8b51499fd35b00cf8ffea79b822cbc0c

          SHA1

          f5ca5b133db784fdbb34c909f00b5305e6301d95

          SHA256

          f2441c5b558583baa14c674670212f779b9ccdaf0b180fabf74804f6f3528a42

          SHA512

          1b93f055481a83b15f5e09819e1ba1e5a554b9076abe5773330144429fd13cf1ab47462056119484802f4ff0aa44a45fbd9d7ab167c403b6acbd0e2ad0afcef2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dac39f0aefd739e3a4cb8b5f061478a5

          SHA1

          5dc49bfc0021a9f34b6fa8a87dae4c5a67263e83

          SHA256

          ce4ff8f77c3c239d4b6ac22049efc4a4bca40206eb180b84c928e7bfc79c5855

          SHA512

          f781bd33af6f63c8e757280ca7e40cd33975cb0db4e847f8479a8f3aef59def4f1fd9954abadb1102fea9dbef29d61361189b7e7c60e13ffa74f7c48563c2720

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8a4aab79fc1d3ea680e956876c1fbb69

          SHA1

          88c833e8672e493d24393bcfaed4d29e3e05238a

          SHA256

          cb5097a962c34b497b248802ab479b856f5d89dcb9547f34a76eb4337118efdc

          SHA512

          b519d2f7d9c38c8d5919ab59bfe48d947807f326beafde9c720b7a62fdb62dad865fefdfa99743fd29ca9e8fe5a47ee6d550fabf702f9c12072b503f7f9dabd1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f31f1055ae79b977c8c1067a6180ee92

          SHA1

          873d9b1f204600e8c90938da4ceea0075d640f19

          SHA256

          f2b734fc3b0bd7a51c7f2675e60f90e91733b8887f57e66dfc0b4da7da62bd9d

          SHA512

          99349fb42debae721c70e56c9a89605353db370f44874684e446a67a8838d7779ab1fd70de675134ffd4df0116e49aa0c438adb6cff09dc92199790d568d2c5c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab4971.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar49F6.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit