Overview

overview

3

Static

static

1

upload/adm...x.html

windows7-x64

1

upload/adm...x.html

windows10-2004-x64

1

upload/ann...x.html

windows7-x64

1

upload/ann...x.html

windows10-2004-x64

1

upload/ann...2.html

windows7-x64

1

upload/ann...2.html

windows10-2004-x64

1

upload/ann...3.html

windows7-x64

1

upload/ann...3.html

windows10-2004-x64

1

upload/api/uc.js

windows7-x64

3

upload/api/uc.js

windows10-2004-x64

3

upload/art...ass.js

windows7-x64

3

upload/art...ass.js

windows10-2004-x64

3

upload/art...x.html

windows7-x64

1

upload/art...x.html

windows10-2004-x64

1

upload/art...ass.js

windows7-x64

3

upload/art...ass.js

windows10-2004-x64

3

upload/data/config.js

windows7-x64

3

upload/data/config.js

windows10-2004-x64

3

upload/dat...x.html

windows7-x64

1

upload/dat...x.html

windows10-2004-x64

1

upload/do.ps1

windows7-x64

3

upload/do.ps1

windows10-2004-x64

3

upload/gue...ass.js

windows7-x64

3

upload/gue...ass.js

windows10-2004-x64

3

upload/ima...x.html

windows7-x64

1

upload/ima...x.html

windows10-2004-x64

1

upload/ima...oad.js

windows7-x64

3

upload/ima...oad.js

windows10-2004-x64

3

upload/ima...ent.js

windows7-x64

3

upload/ima...ent.js

windows10-2004-x64

3

upload/ima...mon.js

windows7-x64

3

upload/ima...mon.js

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-06-2024 11:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    upload/images/index.html

  • Size

    1B

  • MD5

    7215ee9c7d9dc229d2921a40e899ec5f

  • SHA1

    b858cb282617fb0956d960215c8e84d1ccf909c6

  • SHA256

    36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

  • SHA512

    f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\upload\images\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2228
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2228 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2964

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d65c21cce0985d391280d6c68d08ad53

    SHA1

    6a4fe5f0c4c6fdae354794c34ec59d456634c97a

    SHA256

    b0db888688793d33da02287bc1b8d08335dcf6be5cac24dc88ef519c12f14c76

    SHA512

    847525a945f37877ee15a582f4abb2d137c462eac23a815689d2f78918949eb88d859155060b3d61a0e3f3a3325f22d8060c0f7d2eb57ef0752f643a210b3792

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bea611f54f85045b68dca359b02c7142

    SHA1

    41ecec1f94b2e81de79e9c61f6d560997e226e60

    SHA256

    07a4d4f78c06b65294a3093d01627c8e3a32d130e00425084bc2668071a61b88

    SHA512

    f4198d17aeba1f40166d4ed3763d3b3ae2fd06cf06f65ff59e41244a261645e9c56fc60c38ae344ad59ca9d870c69bf573da7a2ed5ba5cae82018284a414893d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f357109ff7ab6d511b7c46fcec51ce4f

    SHA1

    9e8e9da4acb4e39bc727352928f546c3b70a6b06

    SHA256

    846048477cd2f689614db0d863872b80c1c6c2d5c567c23e2c7d9d5b299db2d0

    SHA512

    56ebb7f13042ee0929de277fc4747b18058cf887a09fd37a3fa4e67254066cec93d864db30fe4aba9659af8943bf9a2bb924bc0f736c938817cb057db639f003

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d39d2f3044b60e8272600fe684849b31

    SHA1

    e3cafa871dc75a503f3205c5bd8c35f6e241fdaa

    SHA256

    d9826392edd30909249dde521c514b8bc924f53cb6fcfaf990637714234e48aa

    SHA512

    3b0bca713813574f0b0ae8c85307de1f9bdecba759974074b6b7ae36b6d029461a743a2dc2aaa8d3c30fbe86cde02d05649b06d1b2c60f522ce847ba650a20cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9e31cf3ab0eaa4bc6ce02bac31a8f34

    SHA1

    e8473934418550fd76f3ff05651ce91e3cffb932

    SHA256

    3e3325aa91d6c4375e36c3357b3eb05425d22da2a127d15bf442e4752b87c215

    SHA512

    5186487e80bd83a37c772d13b3ca51ecd27dc65cc990c5f0376e00787aa00c6b9aa08d4d59a2540ac3f50975146f58ddbe558dbd87f127c092d39dadcb15481c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c6b2d23b1a351e0b1a1e06e7feaae91

    SHA1

    43758c635d5ed66ce181b4989cce83961799f79e

    SHA256

    cfc06091aa99e9354ff17c28ad895689b3f4ee9322abfdcc2daaed9d45e080ed

    SHA512

    59d70e2493429407750327f346fb30a9891511e16eb8acf6e0df4ebf86c5a9224f49968930298d4946f29d5244750988ecc81fdcda55d8d3ea10e946337a2074

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ef1c964c5ddfec0acf78e24ec188d7e3

    SHA1

    4bbb0c6f988a9955482ff20b87411cb43d19d9e9

    SHA256

    e0e987f025be85e3308d3744fb797ee10c9ba34198a5bbe9062f012c3956b1fc

    SHA512

    c95d9a89f2f3b1d373690cdb2b609a5145290e0c3a43839bad10cf1883f550e6c94fbadff1637b3b1e9ab5c4dae04ca3c5819d90db0a38dbaaa21e6df0f9b7ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9898ae616ead038d4fb00fdcfa0e28e3

    SHA1

    9ecc6ec893e420ab7820be898ea7757f8c7acd5f

    SHA256

    b9db9631972370c9f6a93991d9c7e18d5ba5a7b818ed6b444237ebaa1b3fcc2d

    SHA512

    453759d899c85bb96f7a3591484f1b016051627281ef6e255e5ecfd3195c48efcabeb203423c8016391f98fedcc9264d38aca1dc9c799753bb8c12336e05d0eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55e65ddbdd2fe595761c453cd1bd48fc

    SHA1

    0c19ce2de66101856c719b27207383e8a34c9479

    SHA256

    efd85cd7d2b0cd7cf838d96cb8302034bbcc6d8c48133bbd9985bc3d77ed486c

    SHA512

    edc4f2620cdb28cb704f70ed12a957880990fe4617eecc366b7b5eaf0a9b9c312c9f9ec17d9676b54b60a8583d336ef08549a3aab03e0b8083577d7dfa417bc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66afd78a8c9987a3359c79698156b0a1

    SHA1

    c6d79958651a785529d6b15cb99e0a34398b9cdf

    SHA256

    e379905ae05e5c2041ecfff6e42f64e2455a2efe173d7a688d584ae681a92185

    SHA512

    823460a77c99c59b9a5cee36b2a6e8e778f6d5fd7939660b17cb40feb858b779186dbcb60460727a799681905b84887261f84db24f138716481d2eed07b277fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23300878ba53f84142a9e77d792211df

    SHA1

    2858291e7214e0322ba0fdab6ccafe715cf7c089

    SHA256

    8aa8105a950a23d8f3f31c5b5de27874082ea70ce787fd32e25ea43b00e8228c

    SHA512

    41b9fe3fa1ba1e9b0fff8175ecf691018dc151923a1f200fc8b43295be54bb53a98c97b3f8bef815c3efe5b90f4bcc5e6de10daf6989f9665a263d131b445d32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50ac6d565498616169a9223fc5f329c9

    SHA1

    b362914e01801f27698a2c269922699a24eeebe2

    SHA256

    6cb5e564830e63afedd964f69ab1d5d516f536b67d79496795f1cfdb2093f0ff

    SHA512

    0b6c2039893e33bbaacb49a04a1b77a8350b71512791d2fecd0d727bcb2a98affffa7f0a51d73beb6b5748162434675dec2331e63c11d57520112c8ca62794c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f49827745a452e18a7208a50068f2e0

    SHA1

    7df59ba2dbc815e64ab4faac73abc064c7e5647a

    SHA256

    7c16d1ad49dedf334a3877461ef02e961ee37ab0be56a90693e092a02647988b

    SHA512

    030e6dcb10733bf29ca94151fd1e3b5c4f00bb11e7eb42f11591b9f21dce135cd3e52676c15aa71db79ff2d7cda661419d0eca7ab4acd3a4e5c2f9a4257d235d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78ce6b84d89993660fa909c2867b4379

    SHA1

    2213ca68ec94fb57622cec3a63981a350142e634

    SHA256

    a43fb14e1c3109d72181d3ea8e8cade3f7350f365ce4cfb2ba006132be33f429

    SHA512

    65cec59217779f17974485491ed1bc6ead582c4ccc31c74893d01129f0131b7df07d9727b942c3f0e056a3d59c9502043cdccc8390a8e8ef5b05c1fae1f0b6b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9111dfb81c53cd9fcdee7aaf08a96b7

    SHA1

    acd87e8a0b38a44bf8ff49706905cef54cb4d83f

    SHA256

    4ca46ecb452e0dbd4e7551918be31c47227c6bfa9427e66158bc0a001836995a

    SHA512

    fd6387d540d2cd89bd1e4d23d10ab7684ed432c526723fa593f87b056cf8516b3ce0983ad48231c0673d4370cbf80cadcc4a8873175f201d3a5ce83680a3cd82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff84ece07b972b2607d3531b70bc3911

    SHA1

    da4e06f0f515864f954ecd149fda81f34514543a

    SHA256

    216b5070932e9169ef17ab0d426a307d6c63356f6af5ed5eb51452979c5d6eba

    SHA512

    d26947a25c6e27021c8aff2aa468cffccf978b62c0ea6022676e41c71215919c094cf3fff5009290b8f7fefbdd29d52a880ac75d309d83b2b61de7e645de67ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d71ee80f74c01d401c3101571548dac

    SHA1

    52cf4b3c855b676343573f91b81420c78776ce5d

    SHA256

    1dd1d033bd20b21869eefd6f1d2e849590585d4ab512b3e60bd7422b2d5a3684

    SHA512

    60982741842cba9f45d334525a209f8615905df9009ae5cfda5035c05efb32f81bf1c4407586af1563d06c0d3e9568c406c3a376bf2c4f99dd3a2997d6beb27e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e27bf46843fb9c67259ad70b7c15b61c

    SHA1

    99318fb52c82032ac21762c86183cabb19816c80

    SHA256

    719a752dd881338e50f7694cc24fdc3d1e1cef38cf3fd52f09dc36654ddeb36d

    SHA512

    3b00037c9eccd736b731bd5adc397e57eb3778804b2540f06572339ddaf2e502e95063826f18c553ba85d20b4adc3e60b2d8bd2571b62721645479eb5dd9e56a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3CE4.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3DD5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit