Overview

overview

7

Static

static

3

18b2c9f1c8...18.exe

windows7-x64

7

18b2c9f1c8...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

114la.exe

windows7-x64

1

114la.exe

windows10-2004-x64

3

115br.exe

windows7-x64

6

115br.exe

windows10-2004-x64

6

html/404error.html

windows7-x64

1

html/404error.html

windows10-2004-x64

1

html/config.html

windows7-x64

1

html/config.html

windows10-2004-x64

1

html/error.html

windows7-x64

1

html/error.html

windows10-2004-x64

1

html/last.html

windows7-x64

1

html/last.html

windows10-2004-x64

1

html/start.html

windows7-x64

1

html/start.html

windows10-2004-x64

1

html/stati...est.js

windows7-x64

3

html/stati...est.js

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    28-06-2024 03:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    html/last.html

  • Size

    1KB

  • MD5

    818bd5ddb60968a3c2be79a6f50ad313

  • SHA1

    9589bfd443304e4c9bcb93b2ac3c005b98781086

  • SHA256

    05057814feef59bf559be70ec5ac51b6ac75e9423774e47160a99387c877f30e

  • SHA512

    addae497ddd275fcbc318ee55a9768146f23b94f17f58f958aa26c6360ee3064b1701a0abbd9749da8e6e21200ca61198a774fd0f9ace9cef6cc7e7e6840ecd2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\html\last.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1736 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2176

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    6b4a338c4fc7ff4f5fa5f2588adcea35

    SHA1

    50b32c891a2f218e6c60df55dc10f3fc24268e2a

    SHA256

    d83acba6f0d448a4f7a2394a21ab7730d532b6084e3ea6eb22f01143815322ae

    SHA512

    106342c3fcb55feaf2fc8df9240eca86607510b4c0950e2ea7645189b47a72dd8074cf09e4b4da5312d84dac8a01ef09c32fc3708ef626146e382de871058d5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15b9ba66d338cca615e5537fd5f4d57a

    SHA1

    3bb071e69b4bd2066a23a923fe9cb92b61df35ba

    SHA256

    772a5ce64777541878aee1772b8f9a6bb2d23c9fbdd91892df14ef1d10488a6d

    SHA512

    f77b21ebae9a53b2d3a66e73e00dc345a6a72d922039031ee388edf495a27d2e11f5be4ed107a69285aea4b48991f83bcb7714adab9a76e883af5655fd31f7cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77d56c197a241790bfa6c8179aad7760

    SHA1

    74a0249e8bf10116396e9952051e0e848e133d14

    SHA256

    a91cbfe41f1f3fc1cbbfac8b70b3e8a83f95082a4a75bb4913ed74a4cce28033

    SHA512

    dbfe6b220498b33a5bb9b49f7fb019a361cd13d83e7e99c76ceade43f9a85ca85156bda7d3973fdb9feb94c095cc5db39f9fba88ed7ba27bb730bb817301bdb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    754fd581a3b65adb7f316d41a77014c3

    SHA1

    b94847ce65f6b42484e5f8fc4ff35fe6300be905

    SHA256

    d7069f7157b9f0c8ebba7a004ce68a0007ca004a8eb10e488468fc46acd89d77

    SHA512

    c0e598360bb01b77b9e3035a90172ca7ac42c3ae3747b93c5f609923e67ced469c115d0d50d4f0087c24048ef29c55c4a87c72718d966be1dd2371e796c5931a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73cf8ead07e5459ab122dba6a9fa1dfa

    SHA1

    57315bdb06804b4e66e6774543763884652ba475

    SHA256

    c3def6abb2d767c0cdb067592cfe675f7ec625752614d117f827ce4e63fd5ad1

    SHA512

    ca54a3116cd6b402ea7874abd418e7631aad01d7cd3003aeba63f6586e8aa29c2b77b6f347b2e9cf1d0fd34ccf884ee0593f10c5082458f8e0990c0d10ab776c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    029530860a94a2dbe8e421a718c7bdc0

    SHA1

    231b7d1308389dc848e3abdb61061a7783ad0f8d

    SHA256

    5996a4418c693a1faa4716537254e0ab454e8f744aa5c8a78165e807a3636bf4

    SHA512

    42450c5d188717fca2cf033c34c7aacc6f38d628fab33f8b973f315e04e25253ff50c2a8d2cf41860b85149551f962613a89aebacef8672fd893176569d2856c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4d13441b53cac37f515baa0900eda5e

    SHA1

    14e88f219b48e1b410b9e8323643df42c2e17701

    SHA256

    d1e49b0466ed7142f6b35efa16f2662dcbf3cf73d7991530fcc97a697f3c6f86

    SHA512

    0582ef1d2b6f9d1c4641f2e5c8016dc62524a210e4d056068741a2ba846865f62cce04db29f0aad92d65350635faacd5482d446476fdc13b0a16c6c87d0e4e0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0db258214b5c3a58660bf2222b43509c

    SHA1

    b042ad3632fbd86086fdda6999448a049c5f7f9f

    SHA256

    219f2be9857274b80e07f094b5364c3aba615e5c0d7647cf11075465673d75bf

    SHA512

    f2ea212e4e4551561537649cfdd83d0086017c20efb98005d03b14370d90c7182d3ae5475c2c58577c6abab2094367c5ff9e662a73e15d2067e3949ee2efdf32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    62e5082054df016e06c6fb26836acf23

    SHA1

    d33968e32588f00463df71190ab8ded0c4a498de

    SHA256

    cabf01b758c55f05fa8d4bc0d91437fb840163859d7dd26c003e4f0d85f8f20c

    SHA512

    173ff99dd27622572bd47047b9f10a6902df7afb0f5f90afe2036cc57e2c5d940a288bf74e53564f4d8f176748a696b6f92a7d9e2746c847a50be42de0559ed2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d82ae9faca3bca3b78cde8a1fd4f0ddb

    SHA1

    f7e9b298ce3292c30151933e4af9c6ec711727bd

    SHA256

    8fb80255c7a6988ed87b04f13aaf2b7f1c24f5d2080503037e80b0651e46f891

    SHA512

    2033beb6be891909dd65a46298b1d6ae42a25d87c2231d04b6281c86fcf4480be38f951a6282d64abdb040a5ce85989c103bf639f092246fa3c8f3c145b26afb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    721f8a7bbd0503ceab9ac01040876462

    SHA1

    b69079a7ae430dc5d45f0b2460ee1f6d751da76d

    SHA256

    98a003067cbfe0af4fe20a2d39186141f6f84d337987976a3a1fbebbe1df98b2

    SHA512

    ef784e9b774b7d90138a326c9af20725211832bf9036fea925db1ae7bad55ba0f08412fb4020924408f959b749bb117689fdfefb2a97d058fda85ea2a1939c09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87ce79f590607093404cdff5e2907167

    SHA1

    4a1bae8affecfa245b6076a5b5595d50d4fff082

    SHA256

    15e8024697b319ecb2079b4d058ccd6e0c3a813d3cae38aba01daa7529ca0ad7

    SHA512

    d0b1426262c72abd8357ac00a69aa179c0231a23d40c969ba5e87cb387cc08ba7d5cad98922c577eb96f08f2790f9510ffd7df25c0a91efb6b0027821f7641d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea6007edc078a5d6a06906b009131680

    SHA1

    2340adfe9541dcceb7f5d021f9fa233d44898181

    SHA256

    83bcec5d5f5cba1b6a245ba15dea61a7a761b8c63b7503a4be74b2a0262c2b0f

    SHA512

    cf84add3517066090a16b0169f1c031416fa0330497df6d81ead9f0c37bb6604c13d810764ac431a41b97cffd0e855e26007776c6899bc0a59baa7f6a8ccd040

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fa2ce2ab38ceb7d822c96e80a6a9b0f

    SHA1

    c9dbf68b105c1540518bd64d96f7e18e51194c13

    SHA256

    05defb3ac19890a47bc922f8bdbafb7121ac1dd2adb23626b6ec8bf49f5c8594

    SHA512

    6021160653a7d3c006fe998f18632bfdfb0b36c61ab68e28037d86177a5e7653b12bfa6808547f98daf78985e6080fbb0c986cc060c727aa573635a83fa50ea5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fcac909d256ad37eeda845bd7d5cc1a7

    SHA1

    c85a4f49943e8c79b3fce73edd0d33bd84ad9fd5

    SHA256

    ae840d03bb2460fe90587be5af9e7ebe1c5a93a450cb3bf23dd5cd6852516d11

    SHA512

    c01f04577133ce60ff111c6d8b8dd3c7d7053357d01556304d1416d83398ad5bdd2ce00083d025709cea7f2cc2de946b97e63afe88ebd7cc8b2e73a305426dfd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59d04ed8d4aa8d6d567b0d116c0dbb86

    SHA1

    591aa57f464294dd6203aae4ba97b813fc620884

    SHA256

    a97b36600d13fe7b7d53a4511e3a0f17e9fd3cda74b69a4cf35381e8b54502b1

    SHA512

    73baa47b873ff1d0462ea342a9f3a63fec2f3989c664e1a56d8cde61e03eeb8245d5d535223a9235c4ba747d688c273a0f8acef9430369bde9a51a1fd1886f2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb9bce41198597129a4b36f8078fab65

    SHA1

    4fac68ad13fcfbeb3376ef8e0b9dccfbfbfab947

    SHA256

    6dd2d612e2f5f2262265a89ada41e623a2f4e83dc0eb8c5068e4ff995ca90838

    SHA512

    86a3993084629c4fc9150a77800d7727f71272e5fc7fd0b175005543d1f2649fec6aac7ea70738ce7c0aab35f6c1fdbc194b65ef8e7fd4d6f418bebeb1d9a46e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ae7a8aa8fb771882678313da3fe759d

    SHA1

    922972cd82b5b2a9f5f354ab0807aff74169d504

    SHA256

    c24e39fc3ad01526a4b86a0a4c37150de4468874fe6124bb5396770bd3912a2b

    SHA512

    5bb1f9a45e958db192800c790970cf026028126bf97ba14daf4ce9468b1d3ebcd542843879abe2bb48f5d84052ff3a8666a9b8deb11902d5c4796a7d996ac6c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5279d997f3ee38a0c8d3b8d968ff821a

    SHA1

    ef513767e2115bbe567d8bada737012825c7c395

    SHA256

    c2e30a668208631f362783bc0a2a00e415921126c9b744327f7aa4beb3957ab0

    SHA512

    c5ad41654f8d0cba72201253b256ae8b27596b7b35499ec052552b57f07d16f8b138072ceb7afce4ac0aebaf1dbba88678c7002bd22d94de29d5b394928f10bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b7ea9dd572281a75c51d36e9d62d959

    SHA1

    cb09d65b055904991bd77c48551117e1a7af7ab8

    SHA256

    07f765d37bef8ca4d2f144bb86dfcfcd6fe7007eadf272dbfc50ca7e4fa07740

    SHA512

    da0cef4ab83a2fbe7b58560b2fb27a8afea1369859d4211c2a67fc63b71f62818223761bf811210f06df52905690ee4ad8cd88414d2a85e02627648cb2901951

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f19e4d4709614602f479f0e286ec80a

    SHA1

    3e6c67da5285fa2bed01b34e3e05758cf4317be1

    SHA256

    cadeb8fc5169457e665b59c0e06c96838141b0468a4518789881e3e4ae792629

    SHA512

    9a984f10035c135d44c1bce7d5d23189260d550748d1567d1ca7650f39a32ee882fafc2f646dbc72d8c2939dbbb9853da34976f601a2d52a09e44ba2b8cfe7c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    7989ea2aca07217223c4bd54bfb91322

    SHA1

    53cb56d9c5a07919160f0cb3716ad04b34947a16

    SHA256

    aa7cf566411eb352fc8a09eac99fb50adfeba2c3d6b54280d874e8cc7734be69

    SHA512

    b48da2746eba7259e72d15408a189dd51109881c19020d5debee1153aa8f7799d0525199a823e9d6f62a3d728fae468130f78cce5f9c52941be1cfd446592db3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar349E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit