Overview

overview

3

Static

static

1

base/class...el.ps1

windows7-x64

3

base/class...el.ps1

windows10-2004-x64

3

base/class...ry.ps1

windows7-x64

3

base/class...ry.ps1

windows10-2004-x64

3

base/新云软件.url

windows7-x64

1

base/新云软件.url

windows10-2004-x64

1

clantiger/filter.html

windows7-x64

1

clantiger/filter.html

windows10-2004-x64

1

clantiger/...ay.ps1

windows7-x64

3

clantiger/...ay.ps1

windows10-2004-x64

3

clantiger/...er.ps1

windows7-x64

3

clantiger/...er.ps1

windows10-2004-x64

3

clantiger/index.js

windows7-x64

3

clantiger/index.js

windows10-2004-x64

3

clantiger/...ls.ps1

windows7-x64

3

clantiger/...ls.ps1

windows10-2004-x64

3

clantiger/...gs.ps1

windows7-x64

3

clantiger/...gs.ps1

windows10-2004-x64

3

clantiger/...es.ps1

windows7-x64

3

clantiger/...es.ps1

windows10-2004-x64

3

clantiger/...rd.ps1

windows7-x64

3

clantiger/...rd.ps1

windows10-2004-x64

3

clantiger/...um.ps1

windows7-x64

3

clantiger/...um.ps1

windows10-2004-x64

3

clantiger/...x.html

windows7-x64

1

clantiger/...x.html

windows10-2004-x64

1

clantiger/...es.ps1

windows7-x64

3

clantiger/...es.ps1

windows10-2004-x64

3

clantiger/...es.ps1

windows7-x64

3

clantiger/...es.ps1

windows10-2004-x64

3

clantiger/...ws.ps1

windows7-x64

3

clantiger/...ws.ps1

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    03/07/2024, 03:55

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    clantiger/modules/index.html

  • Size

    159B

  • MD5

    c7b33b3af2ca40a48c6285506c10119f

  • SHA1

    5809ceb93cf3d1c47b800b6c56999e3445df3de3

  • SHA256

    afeef16450a49d5dd05d3429c75b808db4cbd677d76b30abad8e1a0ddfd1cf4b

  • SHA512

    9e6e86cfa8de45383e7370e68ddede26c2f41c68e2d657b79a70e1f74fc57f3dff0a5f0d55addcdfd8d8eef504fbe80583fe9977ebc8aae307429fe7695ff97e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\clantiger\modules\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2976 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe710ba5d9c47a7ec48e3403c1bbc320

    SHA1

    728509fa59b8c9fe327c2a34b85c735c9b075c9d

    SHA256

    2bc295e4e0c83d7d7005a5ba9c616874c585fa0fa5573f07d4cafbfb6f88da3d

    SHA512

    1954ce594bc6547db2216379a404788fb41dad2e89ae67f87d919a1f2ef84b30a7b852a306b8757b1cbf4fe2be52d47f2057497dea6e38f5fb54f9e13f2d515a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec961344f16fba4b9d1657c78b38e598

    SHA1

    1ef2c6a5419e38b53c978603947b828938329887

    SHA256

    1edabf07def16b76349556f8012c1d0894857c80479cb5f7f872810e15802b15

    SHA512

    07af249cd2c96878993de545a721e3b0c868ca9b39485af3fbc7373754a24ce9d86c08de18799d7998cf7e92ebd86dc8fdea5bf2336215ea86778a7bf93da2ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2d925b4e350737f02c940cbcddb6cb8

    SHA1

    cf55ebae479b5b509463e04fdf89338a18b54dc7

    SHA256

    81900f7fc466ec79e16b0f874b1dc782aba3f9819872f9b52926208e4db8bafe

    SHA512

    9df0db06825a58ff6bb75180afa2cdb6631e72c6499d502c0fce55684ab5c7c8d94d52b68e0dea9931a314b13802d50203f77cc41af1720dfb0563285e0b7811

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d8ed04d594bff4f2662776a298fdeb6

    SHA1

    8430cd420b322a6cfcc90a5442480265f787ce10

    SHA256

    9287750a710ba869e12095e6f31c93e82feecb96adcad72a032e8914f1ab2c20

    SHA512

    a99382a5ea9d9b28e1f30cb29b257e5831d60c7e0a6cde65431239e909814aaa9b86417c1b32473828c2dbb2c64432f182efbfc5bf2c358b5dea797ec952ac9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    141697cd0be0d4bd2456845c59390ec7

    SHA1

    ad5d393a59e7c4a4da784fb7dca8bb23932c0448

    SHA256

    304d6133311a16911f22224863a98e6bb520a521decb141bfb21f1f008766dc3

    SHA512

    d6374cde3a900b4ace01339e96e189611f50eb9e754fc6d15896a71f139582c69872a9cebcfc15e7f515ca4689c2c8c04c4d805b0d4750f6244a9d538ab9ee53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aea6b6a961aca43a2749d688b81945a6

    SHA1

    cfafe4c3836533fe4a620ac4b44629f6ea36419b

    SHA256

    e53367cd9f3d69a45af44bf24c3668cbaae64253d45c7491a7c892b069e92a08

    SHA512

    e38f8bfa5f5bac8393e168f93d70aa7263ad1c8a8a44e9cf4793e6cbc8e1426b3903da63e3589fc787a1a1ae15a4740ba33b825f7bfe39a8cb78ab56f64a6dc1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27ffccab080e5e504f6ddd8ce4e4bdc2

    SHA1

    830da66b85655f058ae890cfa07e3a8ff62dbfd7

    SHA256

    9119a214903b0634d918cb84a2c9ff19f6ce699a3c672f72d94030dac87762e4

    SHA512

    405c3fe4f36f7ea8c606b65df01b73336f5104ef9dab65eb49a255ff051a58bce493b7919d9cb79536e17a89590cc0d39df4f1c30106b0d9314d73b273b3b52d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    779b6a9bd759fc6abd4b2ef415d45154

    SHA1

    65d8ebe59219cd929a9051dc9bccfc91163f8681

    SHA256

    4e9d57afee3f84ccaf6ad794d8470bd2bd26aed69ccdf386c017f1c964562394

    SHA512

    303115b821f5e42f2ccca347d08e14f66d7b695a5ad7204b96f0d5cb6d74c09671f89605e21541cfe0824cbcb2d311fe2e1aacf10032e764e11a1124c1aa7c04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38f0112a782d8aa9066f88248e269c4f

    SHA1

    cb20084ae151124d4cae383168f4382255d0a989

    SHA256

    58e23046af9f110f45e3d2e4cfcd51404091cdcaed21f8a097d06277f9c52fb6

    SHA512

    95d942a7f2c2b031fefb5fe48e87e128edc85522cd1f01dc47ad433b91bd1e7ac85e8472e70146092e3f51c5142ad9fdccf3790081a0cd9a39af53f235549450

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7cf4e201df4df8ded4a90d61a12af535

    SHA1

    bf6214572da3cc6461f551acf2b94ef9164d6eae

    SHA256

    4e216b4ef6d4c6921338ab5a8cc9799229aa9ed087248380f60405292808e931

    SHA512

    53935f06475591503b9c7f4a6e486602ca61f9ca0a91c70b6c8f7473e09597670f2744a9dbc20ef3eb0f1691bc52e08f514449dbcdd180370cbad2aacc89ce89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50fbe1589e36e79063b62d21addb9a1d

    SHA1

    9ed5f9d52c6fa22127fe64f177cc0ebae3d25f33

    SHA256

    fbdbe80f39cc968b1b677ff9366da8ccb3df62278d3bf0848a139f3b2426c40b

    SHA512

    331a2603cce096b0cf88e4be1a3e23e9dc84e8f04765762fbd40e323bd9aa6c4cd4c4d6bc4d7f97f19ca9f179676cedc0082cd8f94023b6e9d1df20f5f1db3cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8c34c7fd57115968a838367d48a0a17

    SHA1

    1351f2c9700dee3fefdd360de95f57b176d3e27e

    SHA256

    84b58ebf2ca464dfcd38363b5a3bd363fe7d2831cf37f17d414ac96b52f1f0b2

    SHA512

    8e5f1d3267d0eaadf93464e467aaaaf6a538f368e5c33b5eb4d56aef126e524c9324de3ee8471087ddaca3297985719af90ef17d8d4719999a045cf363ebac97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f5818a0217eb025d49722ee8182e1cd

    SHA1

    1129ddd0749d9568a3076299c2936f9dcf0de375

    SHA256

    23bf847ab1a40d1cf813406faf282ab0f3e206982dae26102bf9b04a3eaa1cd9

    SHA512

    78c33fe0dd97976305450ef6f181c2ffaebeef0604c272d2965ac60f7495d6088bb9dde88bc6c9aa98e0a381300180535fc5ecddeefadf1c686072289a8f5cc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9c6db72dd7518f4c1df4c1cb69a75a7

    SHA1

    26f12916027a373e89a1e613911737a22d1f103e

    SHA256

    e20b78673a86aa40d7194632bc593ae4433e884c1b70dfba3a7672fe3c1382e5

    SHA512

    3826bdb96adc71be949eb7044470913ba786140f334a223d121321fcbe87aa32fa307d2f7dae3aa01afa00cb81ec592512dc0b2804b951bc1ea2678333d256d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f959b962b7d7a924e9d434b577ccc371

    SHA1

    05c03882465cf01603b2bd3266bcf752da93994b

    SHA256

    6da432033e4e1d3ab8220219889327575314eb9bdbb0001f1561185045bfaa34

    SHA512

    d0932ef9855decf2b891cf879bb4982030def3f193e82aba90aad78042aebb22d7434e16f83e2cbff8cde46011456defa19344241e69ae74a31e5d1e8e16f767

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2da6acb312b79514f8f2607fd183ebd7

    SHA1

    f281271545b18b8a3b9e3f552da7dfaa8a7c5317

    SHA256

    a4080d33781fbd762fc789787a5b001f118062d0b7e40eed50841d86c0a4d7bd

    SHA512

    9db59dc37e02d1bc1248fc2c9d6b450869913fb9a6d4a4e7bd8d9ba42c2aed4032e1f793a8c8a119fb79de380476f247f94cf1631a23ecec9e8ec2bd4082e3fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9bf92b45b13aa08a7843e30419d22e64

    SHA1

    d9cfa7d04bc1d60be33f2f38a0ba3c47caa447a2

    SHA256

    9af31520f3b94f01ca5d6bf1af30625ba29b51530f16db88fc59e0014bbdc279

    SHA512

    eb55dd4eea2506ac63344538ff07ce482e70c02735ff84e253a7863ecf9b425fc277651bb3171de3c9c107e7f7bc6dc4791d7bc50e23348aa70fc7bd21afad27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    580882c642e92fde1a4428190c4c9cd9

    SHA1

    9d34a8476f2fc99a503da95e6894cce6cd61bf85

    SHA256

    9feca18d587b4c767c607cf402c89ed4213717246d235b0ccf9687528dff6b06

    SHA512

    ff5c045c698294b9a718e159212deaadc344614cba5da36b796cb6bf128dad72bdfd7873bddfb971c8b043c637f4095f6663c0beb025f2efd9636a52f2197bf3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3D7E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3E1F.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit