Overview

overview

3

Static

static

3

AspxOS 建...AD.asp

windows7-x64

3

AspxOS 建...AD.asp

windows10-2004-x64

3

AspxOS 建...in.asp

windows7-x64

3

AspxOS 建...in.asp

windows10-2004-x64

3

AspxOS 建...BS.asp

windows7-x64

3

AspxOS 建...BS.asp

windows10-2004-x64

3

AspxOS 建...TP.asp

windows7-x64

3

AspxOS 建...TP.asp

windows10-2004-x64

3

AspxOS 建...me.asp

windows7-x64

3

AspxOS 建...me.asp

windows10-2004-x64

3

AspxOS 建...ws.asp

windows7-x64

3

AspxOS 建...ws.asp

windows10-2004-x64

3

AspxOS 建...PB.asp

windows7-x64

3

AspxOS 建...PB.asp

windows10-2004-x64

3

AspxOS 建...ad.asp

windows7-x64

3

AspxOS 建...ad.asp

windows10-2004-x64

3

AspxOS 建...er.asp

windows7-x64

3

AspxOS 建...er.asp

windows10-2004-x64

3

AspxOS 建...YH.asp

windows7-x64

3

AspxOS 建...YH.asp

windows10-2004-x64

3

AspxOS 建...al.asp

windows7-x64

3

AspxOS 建...al.asp

windows10-2004-x64

3

AspxOS 建...ex.htm

windows7-x64

1

AspxOS 建...ex.htm

windows10-2004-x64

1

AspxOS 建...ree.js

windows7-x64

3

AspxOS 建...ree.js

windows10-2004-x64

3

AspxOS 建..._wz.js

windows7-x64

3

AspxOS 建..._wz.js

windows10-2004-x64

3

AspxOS 建...ree.js

windows7-x64

3

AspxOS 建...ree.js

windows10-2004-x64

3

AspxOS 建.../dh.js

windows7-x64

3

AspxOS 建.../dh.js

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09/07/2024, 17:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    AspxOS 建站系统/admin/index.htm

  • Size

    64B

  • MD5

    f15fa2364798e3b531870c04e1d0daf6

  • SHA1

    7d57bceb2210590d439bbe1bfeef930d1128522c

  • SHA256

    9def7cf939de2eed41c4acf081ac1fec89f35a1b0cc3d50803747d141bb5d64b

  • SHA512

    b749fb6a9aaf72babf9a33248bd43eecc706d94e78400a1b412ca3ebace26e2f4a0fba94aa44be5cda8d6fdc90383a8e321fd536240278d34b27c37a419af91d

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\AspxOS 建站系统\admin\index.htm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2064
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2064 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2400

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dace0ee4a3474672cad79c9297082d84

    SHA1

    187bc7d35874ad9f3aad87f54fdfbd8dbdf8e1a7

    SHA256

    62da894e70aaa7602f9d3d1fea39b8a98d4f9e697011d70a3ea532d405fa1a0b

    SHA512

    906d8f8073d343ebf73d4e26b449f49780bf15fbfe90582b12815f14e15bf4e8ee763c0ab159f676cdeea5bbb542aca33cdce15ca0259cfa8080bdda0f862cca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59795de231c6b55848fa95b0f2a1d7b4

    SHA1

    4995af0a62d77a8cf9d264f50cbef58b2fe8a86b

    SHA256

    db0cbb2dec11027d2b76e61c18d5b1fbd81b6bf8ae2ab7f1c6e0e630056e5a0e

    SHA512

    9079025ce937f2bba14d8395ca3ff1fe0d15076025e39938e787384fab5ccad6a335cbc45c0c56a00c848d8c1705740c251ac39b77bc6886b4fe1289eb0e6609

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5451164370c8ab407a6ffe0c6e6598ee

    SHA1

    7bbfe2f30bd15a943fe556524e459bfa54b3dc0b

    SHA256

    1ced5ad2a3ac5a6494bfdac05c1645c9c8847a619ff4df3ab6af69ceb9838ea7

    SHA512

    c2f31845dd799050359d88ec2f0c2051d6c10d6483019ab450f2c389d02697af77ca5cd8a3f146958f576fd3034f771a32c68bab562c664a96593d23bc50b003

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2cfe885963a882eb3384c8b794960b5c

    SHA1

    7a40df1549a6291c9c431a4ff9945f5b323da9d3

    SHA256

    a9075ebc7e715b8fe7320225a452eddfa25bfcd68dd11bf9cbc931129ec6a080

    SHA512

    b7a2e578016db3ccd3a423f00d9bf3d143dd4157a01047c7b8a67231aa0e3c048065a0376ca8d117f07ea35f47aa500692b390912660f2fa8a66aac44b6fd909

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2455f5de96427db17c03914dab3706ee

    SHA1

    687319c4350dc1417a902848c5cf0b038e5c628d

    SHA256

    9f446359d3c581c3683d00353b16fa7f69add2d9c5f7a9af6e9e13282f969686

    SHA512

    11913f9d5e25b0adafe62798c25ae98e43a8cb0311e09df688f36ea4f47d14a88fdd8f12b4926cc2853794e16229456e8320ba255789fbc73ed3a14ad00d4bd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1c54a66f63ae7fced554f87c4a1d4d5

    SHA1

    495792ce74659e9080bab260b3d25ef3861f4fe8

    SHA256

    3dfc25c81c9b2769a8e1e32992aebc76a8431cda3cce8bf23e645b6091358f59

    SHA512

    84b34a58f42c1d20878b78cbcc8f63ed749ad22bcfa68ec3eedddb127cfdc3eab0389659da7ec9cd6dfd6063162730c9098dfa2138984cc4e09551f635b88034

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9abbf99108280a7290f530c7bd596941

    SHA1

    80a86cde12b0029c7d470f7d92ab70be151eb923

    SHA256

    5016ec0d37c80e7bc4858f039b85c717377b32e406039e0aad44081f2206e189

    SHA512

    273aaf7282f1c871b48661e00c7df2d06dce337f7c42b0bd8b638458a99421a49c68eb984e94aff5543f6ffbce85bbd3026a76bdbab819bac9ea4f667064813e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46a4963c0b6abbdeaa3cd825108a2ac4

    SHA1

    751d9a8886d6a7b3fe78740924fc5b80fd387759

    SHA256

    d5b2976eece904b0f456f9333fad1625d8dc448cc40005589c7dee88e502f19c

    SHA512

    eaee24812a0edf8d7aa845f89635e13cc043f3771c1aa97a31e70ccd464c2a42b8d08f715a14241d0bd0d9d520a641ced125842655e2ac29b4ef6d7cffa23f18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3cd2b1999720bb08f2f95267b07cbeb8

    SHA1

    c34354ef5c6c7372bd38665a6c25c216c31c6eaa

    SHA256

    7ad124f5bd5426ccf4bad042abb464f3dfb85b69bf450705d85c8c515d093bf0

    SHA512

    4a5a7ba2cb0ebc07968bfd5780d03b1937ad0acaaeb0f4de52fa938b975d45427a02c20f2d33dbe9aaaf50afcc18c2c66c6692682abf51765826d2a87d12938b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d88a231a108974b73e18985258c2c0d8

    SHA1

    91c31830ff8841ef5a12c4c5fa17315ddb6ee6cd

    SHA256

    7d6c461c0e147d2b132a24e7cb0a28737d2caa8f02b84a677e419ea732ccf9be

    SHA512

    917517ec4a2df76979eb5eb3da9f29010007b1ea7246ca2fc90f62ad7459bb3f4fefc1cc478742e42b00690d752a3674543953abfb15a0996d24923321c0b277

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e27599e824916772aa46e584d556ec1b

    SHA1

    2b2a667f1ceeb25a642e4634dafb523027ff424c

    SHA256

    94ca9ce80136e6dd58d612b8e49316e7d6bd55dcc4546f7ab29723bf81c99d4c

    SHA512

    f539627ec9bc2228a85e39e4ae97c135bf0691ef820be14885faa83a152563df83bd84906985ae1c9ba629d35ae3884e8388732975a855aa23343a175ef8bb11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3805d7ff51cef48de44331bd42dfe800

    SHA1

    9c808cb9eebc3b15a2dd5c23c78cc80bb24f4342

    SHA256

    60cc015fc864ff49b2b9461aec977fc8dd17ec6cf259b089bfe5de8a7a990046

    SHA512

    acadeec1a3a9d7b9188a14138f3e596afafda644e11daa6de9fb604869398c267a218c261b2c117b217ad813ed51d31bdc7f367f8668c09e8d43017f0a58ce05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2390d20b52854ddff0785341f3a6bc20

    SHA1

    820193111caba8544fdc431b53f0adfe84a1a765

    SHA256

    445a1a36bfed85f895f67c9af7960a9d40594a5749040a869c59813993d76d3f

    SHA512

    afb87d00658fadee587f8473ba4bbb412b7242fc792ecb81f255c4ee53d0c85a88cf0da8d3d458e809dc0cec0a5cb6ccdd4e82a705b3f807e6d7aba0576eb9c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b636fee6e135d75bd3817c9e0739fd2

    SHA1

    9c69dec964650bd9c87a3f21c49bd0b5c7de923d

    SHA256

    7e972bde01b33d5cc9ac19b0a29fcce1e5fe96d65ef03a936e6c55d46a598dfd

    SHA512

    6d17897a4c5618f06c6864d1150e6b8bdf87d097175b51c00ba8137a5df635f73fdefc43ca7557b48a44acd101e76f971e102876b2734d39286f9a1fa7c47d83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66456ab1c4c2d6584d2ea78720b4d06b

    SHA1

    f3b79e16f52df0e552c89066de816bb96f418644

    SHA256

    c1306f22d5f564606b0afff0e9aa403bafeef26208d63c25998d59525d08ac4b

    SHA512

    a2df921566ca5496829b014fd44818a4056185d24d2a53cb24e06ba5d61458b3ec8817fcd7992e1c0f6d28814f1f78c1c66b0a77875370760b8466d372ef6308

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0eee6e657dc6b00e2350e84ffa08d1e

    SHA1

    268b67e51cf88ca891ae0e0cb61c6286e0e9e5ad

    SHA256

    7b573190ef6000ca1f20b96279591acefa80f015ceb81cf794850b0bf623a424

    SHA512

    937df36f2efa88e3d60b57a8d22da977eeb6b7de330b263f63422999fc4bb6d03125820f18aa76ff348a563fa9164fbe3a025b313f296f9e5e5dae16cea78f66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eadaf6fb922d965938e8274fa5be1fb2

    SHA1

    207772c41ed9d0076d279f8318da7bb111001ffa

    SHA256

    6096e354ba59fdc609610a8a499cc6bd1185f9619eee572834a44a4025ec4e59

    SHA512

    e4b64f2c1d56aa2810feeea88ce0bdb22a3b7d2112d579af869d123cbd0c36c40259f098936b51031012e2f63ddb3497604757121f74d531cc05b9d17d391460

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c14b3e216ae3a3b435220f9620ed3d01

    SHA1

    6cb9440859ad599c294615fc188655f7c02f08c9

    SHA256

    8740858012d0f39752142221e9f0469b5e151b7d13868855c9cecb1e5cda39aa

    SHA512

    0b8501a10e1ad0bbb19922c93bd8286872ebc6fe80cfc21182d02e37dba661dd4960e36e263c95d508117e23ec480aa6b2621d5bc7a4ab35037551e8f106b079

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a04a95575d4f5c0e926d62041906ad0

    SHA1

    ff8f917f496562445de59e618d6ea24477206f21

    SHA256

    a592f4e77acfa33b050b678703da8a9f8ec4c803cf28f3fb984bb81d732020bf

    SHA512

    6aab28125121caef7ccc1f2d8f351389be43c87505058b5fe7626788af9ccba73be4db042b8edbf6f3061a28880c204868f0d5806a78cd3fe6e564d7c202e9d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ad5403c96df2ccb4e02c419db9713eb

    SHA1

    d62468f97ed840223927c7790cb0f28f95eb4eeb

    SHA256

    f3083a76ae2190c1f873c8595338a5e0832e688116010d86ef5971008fe9dcb3

    SHA512

    8f50e21b6841e8f10c430087874155370801e86700c46fceeb997b152c47d86bffaa5ec60a9ba56e27035f986a02afddfaec0a63bc66e172746f25c9f916b09c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d19f772ae59ca3ba722a1af5b38fa8dc

    SHA1

    ed42070e2c63b2b28e396f7d8802a3b17f445641

    SHA256

    9e55e1ec937476fd3b154322473fab8ccc29611523388a4c89fe22ed24c0d324

    SHA512

    b6058ee9f3f086fcb2d1f17bc011b37b7dea35340bc44438a0bc57bb76f374ef484c7f3e797daf73e96c092a80b131ddbe0973c5c50af9e8cd6738f46e0babff

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE966.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEA26.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit