Overview

overview

3

Static

static

3

渣渣网�...x.html

windows7-x64

1

渣渣网�...x.html

windows10-2004-x64

1

渣渣网�...ex.htm

windows7-x64

1

渣渣网�...ex.htm

windows10-2004-x64

1

渣渣网�...enu.js

windows7-x64

3

渣渣网�...enu.js

windows10-2004-x64

3

渣渣网�...dar.js

windows7-x64

3

渣渣网�...dar.js

windows10-2004-x64

3

渣渣网�...x.html

windows7-x64

1

渣渣网�...x.html

windows10-2004-x64

1

渣渣网�...-br.js

windows7-x64

3

渣渣网�...-br.js

windows10-2004-x64

3

渣渣网�...-ca.js

windows7-x64

3

渣渣网�...-ca.js

windows10-2004-x64

3

渣渣网�...win.js

windows7-x64

3

渣渣网�...win.js

windows10-2004-x64

3

渣渣网�...-da.js

windows7-x64

3

渣渣网�...-da.js

windows10-2004-x64

3

渣渣网�...-du.js

windows7-x64

3

渣渣网�...-du.js

windows10-2004-x64

3

渣渣网�...-el.js

windows7-x64

3

渣渣网�...-el.js

windows10-2004-x64

3

渣渣网�...-en.js

windows7-x64

3

渣渣网�...-en.js

windows10-2004-x64

3

渣渣网�...-es.js

windows7-x64

3

渣渣网�...-es.js

windows10-2004-x64

3

渣渣网�...-fr.js

windows7-x64

3

渣渣网�...-fr.js

windows10-2004-x64

3

渣渣网�...-it.js

windows7-x64

3

渣渣网�...-it.js

windows10-2004-x64

3

渣渣网�...-nl.js

windows7-x64

3

渣渣网�...-nl.js

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    06/07/2024, 22:50

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    渣渣网络商店系统(ZZShop) v1.0/admins/index.htm

  • Size

    633B

  • MD5

    0c8dbff983964420b17e075fbde1ecfb

  • SHA1

    8d4cda1672c763e8f2f2e1fed655802e73e4fa78

  • SHA256

    93326e502585b7af430e4edb3f590347194c50579c440529ef609de0a55b8c4a

  • SHA512

    3ccea6adc5107662b2c26e3e3b6a923ebeae18bae194f781b713aa52e05df0516b0f61b2f4b89a3e503a8af586abad3df090f958f90dd64907af028f1f000bce

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\渣渣网络商店系统(ZZShop) v1.0\admins\index.htm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1664
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1664 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2076

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d304e249da7a89c4c65b66bb7ea4f3db

          SHA1

          90f609e155283d27a5c801e372b4c8847991d384

          SHA256

          360f91cf184b0557596b847c1976e6c9bc5bcdaf5fc792ae31724b7703ba2ebd

          SHA512

          b009b80416fea0751b313fbc8b32da6ae0767c4691cc2ded9b5205e6bb064cd2f9e47d98e4a8030e1fb3b60a25d825707cfd53c03709b1e69db580f02c1e716e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3dae74302be893686131a9b2d437c0a8

          SHA1

          9f47198c4a63fba7a1e2bcf92498741482d2fab0

          SHA256

          e04007fe7ed46d34b7f5ce75e949478c4721cba2b7f2853db989800c40413536

          SHA512

          4f7237ce3dbf3d9521401570ad1a0e0d6bc74597c324bf185fb0bb5079ad764db6bfd2b612ec23e9b8d8b8b1032d086cc646cfaf61845ff52a267d1a0a330e05

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0ed9ca45ea814a23f2e559a7b92939af

          SHA1

          22baec4b5a17de1958bfcc8f5be33faf52e521d9

          SHA256

          5813ceb7df08f9e39879e985047ccbbd33932bbaadd885bf135ff3b5c998496e

          SHA512

          3c33f7a63ce1c19b1548f1b01146043748186590ea7066cf4fe420ddbf088c94ac3cc9e929dd73f46d51d222e401acd1b6455ff79a9f7b5143ba87774eddefd1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7101e3dbba8be689f2b0321f6aaa8d10

          SHA1

          d6d0cbaafb9cdad9a2070b4a22297dbe33c62f96

          SHA256

          6a0a4927dc798cdf03e0285cbe24e6fba121cdb566abb0c9ef2a503f504ce092

          SHA512

          d89391a78a4183a4cb07be91eff2d556b6058964470154beaed9c0afdebf8e04492b47e138f7b94913903d49ca400378a471b9d72b7bc3f01305d46e74ad955c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          725c6f8cfcd088ec38fb3e6948bd6638

          SHA1

          a831e9c061c8d5fba7466cbf79456084fa45bfcc

          SHA256

          72e07477b2cd2f0b847bb99e58b887c1ef6dee054a733970dfebc67819e8755c

          SHA512

          7a76fb220529cb2f45235ac094f6230d22e24030c2d924a19c73afa8ba90111c8b5402972f898619df9efb7af5e84d1b0f641c8325a9d95f7a605dfc2ffe7ce1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2cb18fb2c101ec3609db0297cf7ec941

          SHA1

          1f95ca643c5770ed7e1577873d4d67c1c252eb99

          SHA256

          c6c3a81df41a51d0779aa8ee5597d70cddfa08e31c03aff52d239be9bb7d1003

          SHA512

          6d11ef773fa2ed2a453532ab5ad80cc281cc664f12e0166421f298dea4de8d4df5772d33c904995a0b7b4c4df4729717e17d0168407833daf1f852e7bb9cc935

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          20d89e291aec8d6e7593d93177b56ee5

          SHA1

          96301eb52b059a888445acd931b25fdefe418158

          SHA256

          efd2816874f2aae7f72531abd74323af1e2c3299176008a82e10bd21c4115391

          SHA512

          1ddb58c89d02356685cb1cae0eccc7de321d0b3ced397b1efb383e4ca7cc542253cb98be33d68d04f3882940b02921fed2bbc5351ec40ac9e0aba634e1686209

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e62be342d687e1cd57abd64b5649c48e

          SHA1

          05d47f307ed192edb6f249258c363a2d6bcfb51f

          SHA256

          05a9c84b62b25b3681a6a95868a07a200e1997cd564ed40b8703e1c6b9dedc36

          SHA512

          1103c60afef9fbaef5efa0b11f4794c2f23fe3a281d6ea8cdaa155d838a94d20644568e6e26e06c9a1ce9d37b360c51410cd405a42bf5aa9624d278bf3d83f6d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9fdd8e6409cf95a88df333aac7584125

          SHA1

          292762356da4c78925d1df8e60895f6353c5bc84

          SHA256

          333d5d48001fb2806941ebb7a4a64e93d08ab1bbecddedc1e7ed5c597ffbdb39

          SHA512

          3ad8a1cd26712a150ba07afeb87dcd74671db56c55b6eb999b21aecbaaa3167c3bc36f87b4e16f0c1a514ebb0d537d5cf2dda7af25db9233657dd269b2bf9041

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0dd7db9b08cedea155fbb5a0d91edcb1

          SHA1

          c4bb72ddde6576c3046f07c7dc81100456483ab9

          SHA256

          67ada341986d19b32133ebefb38cc19ae5ec877759db5ba4ee53d3f8400dd406

          SHA512

          f581531a39e676d4cac88617956b2534b238e0176d5d405437fddc4ddc507d69cdc7245f794bc02d2a33757c77250204682615c7313973b6207ca708b187624f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7a733d6942681c4850ab5e444577bf56

          SHA1

          3a85b820d8752279cd7fa9ea717fa90b68d20b81

          SHA256

          bb02f31a76f97a80a4580863df231c44ef8dc1d498efed411886a874954e0edb

          SHA512

          db6f62c9df17014d5d0369c41b260a80e540fbd240fdf0d4e689e9728c142108c126ed4eebae5d8ff93e52c8dcbfc2c29bbcc64d041381eacf1833182241d76a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8daf21dfa77c9d0a1e8a4bab6fbc5e25

          SHA1

          ef56dae23501b9c7c6fdbf052531f3cc2df267e1

          SHA256

          bd7c43c50562400cc4fb944bd442f7962f85ac5b78ebead74961599beca884fc

          SHA512

          64c370ee722eb8a5afda520fe3ded379ac4bbb32ba097ceb28f5734b65e1ee7051ab22f2f4a8633e24013c081693d8fdf9f55f10a3ee73bc00128996a6488f89

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          06f9440d041a549eda822104134ece29

          SHA1

          f4fe116e8de3d277634670cea8a34065a6e82565

          SHA256

          3368a78971c757e6f622229a95f819d35db5af60fbde08b3f98db8206dc4a34d

          SHA512

          92ec545d4cedd37d688931c17871ec1b656a8034b8dee5f9d0cf794f27d4457320b102133b08590f3c5a9f80be43f8677d774806a9c619e2ba9f9e098aa6b9be

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e6a0bb34bc0718198bd197b03eb93950

          SHA1

          9e0c1af63d66d7e72ee0bfa5c5ede4b0698b2b67

          SHA256

          01b13a055aabcf2ad53048ccd1548a198f1f2eebc74c2f77439b6a9505a642bd

          SHA512

          08c81e63f9d6c5059214b9bdf2f3ef41641eee9c09278447d8727c2faac260108a98544e2ec1ba35cae091becebc430a1166c99e68e11d58f376627c3fc6b59d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e8ddbe41c463745f5c44060b08afed06

          SHA1

          c9254208c958321d5cfb1e1b17154a66c7649c1b

          SHA256

          02472230e8db5eab5570718e49e5080ee19850395d2c08230a823e062923ede5

          SHA512

          8a14dbd5aad4632b92508c1e3864c84f33f05142802b5e853f8109d2371ae45b3ebafdaaf22994058ce363378f15c6fa30032eea34f90ae37fccce920ed47151

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b5b1c0f99f7e5ad1608a5773a441d426

          SHA1

          95987c34bf1e4550d5f7f3259f092ac380f4a71d

          SHA256

          8c268f53292d13dbe3538258d6a6eadbfeab0a694b0d254022323b1cb1afd0a2

          SHA512

          0d2fcf70dbd9eb983ac3ea9e91685c86e9e742abf58d1616367db000dd6a1470b465aac5135d2ae1df7414abe20f3ce476e626cde6db8ce1a3ebcd8149127526

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          309b5d4e82a77abd1063be69a7367d6c

          SHA1

          11231e88830183fa08d12584808b50f36a05fb0e

          SHA256

          ca6a83afaa37b4f01db7a14e105b6f061b7b1e9a1e4db3616e6d88df7e708cb1

          SHA512

          53f137362bb1c4c22ad50da03680a242c935b5fea696099aab68e179f72d757a6a80e1e578d05f9d8e88d66c9f69a85d204e1434645f76119d9978d0a356d045

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4d812adfe996b515d37b00af8701e50b

          SHA1

          285cec7bb7c32015cc8af5c422ef3b3c6a81469e

          SHA256

          1666e3e3f317624d955d39a9904adfc54f73211a23c3cc386c242e5ad6891669

          SHA512

          e448c3ead930791161a306ac20463872c922ec57a8adf67fc96b411a5b02b33a80dbc67f643eb0baa02c56c4235718a9c0c0726a444cf3efda92235fe9c8fce4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c6fe5abec0ea858260a5d6a48b7d3ce6

          SHA1

          a795b477017f7be0e2d6f516d3d2017e9e2fc6ab

          SHA256

          15ba52ee55dfc086018de3a27613ec44d086dceaaea40e93f0df472aa72a269d

          SHA512

          5f87e8bf169e7fe88cc9cd93158b81c46f015279c2ea47eb16e2aac0f9dfbbde48572aa8df07a1f146f7a4e8b4cfdc8e8508755fb3139a0140318d2b098f2d2a

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab30A5.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3181.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3186.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit