Overview

overview

7

Static

static

3

155绿色�...��.url

windows7-x64

1

155绿色�...��.url

windows10-2004-x64

1

seemao_set...0C.exe

windows7-x64

7

seemao_set...0C.exe

windows10-2004-x64

7

$APPDATA/s...on.dll

windows7-x64

1

$APPDATA/s...on.dll

windows10-2004-x64

3

$APPDATA/s...k.html

windows7-x64

1

$APPDATA/s...k.html

windows10-2004-x64

1

$APPDATA/s...k.html

windows7-x64

1

$APPDATA/s...k.html

windows10-2004-x64

1

$APPDATA/s...x.html

windows7-x64

1

$APPDATA/s...x.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10-07-2024 13:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $APPDATA/seemao/config/map/www.3dbuy.com.cn.html

  • Size

    1B

  • MD5

    c9f0f895fb98ab9159f51fd0297e236d

  • SHA1

    fe5dbbcea5ce7e2988b8c69bcfdfde8904aabc1f

  • SHA256

    2c624232cdd221771294dfbb310aca000a0df6ac8b66b696d90ef06fdefb64a3

  • SHA512

    bc23b8b01772d2dd67efb8fe1a5e6bd0f44b97c36101be6cc09f253b53e68d67a22e4643068dfd1341980134ea57570acf65e306e4d96cef4d560384894c88a4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$APPDATA\seemao\config\map\www.3dbuy.com.cn.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:480
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:480 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2596

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2811223cd30ab4339f2c449639e8df36

    SHA1

    346866addccf1e0c4096dad802494b32c1c6f917

    SHA256

    198cbe3b9e43cbe786e1da3136e740dd26c9dbda2acbecbbe07611838ff1647f

    SHA512

    8684c3c9f8f30502a08b5ec383b8ba61913b2d8b363b289e07d047ef18a884825be92a7d34fdd3e3d38c73c8b358767e6fdd61ee3f9e521437637c0e64fe4854

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba4106f9ac82dc48c54a3b867aedea0f

    SHA1

    f5ec562a50d62275083d077cc0e20c80672513e5

    SHA256

    43b4ff7bdedb874fc80ff988eb2bef50cb58923fa4f4fd24ea60aadbd4b606a3

    SHA512

    382a02cd42a3a72f6b8888997fe894039fe051896eed5357525e3773a8759fcb2aaf27d301d6e70f5a29ae0d90b3b3616d1bb1e5dac7f6bf2b95bf8ed9dd6170

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d3036e956718489f555001dae002baa

    SHA1

    f90612ec3c86694dc97e03d06c224700d26f5d79

    SHA256

    caa220d5e36b4acb05bfb93c63a0046f6e0ed79fb167159856a7c48e9c5c3a0e

    SHA512

    b0135c5b046491d71955759abc92ed8488be88d9512913791465531ef6ae7ea449b67c0b6944d0050c22a2825a0c0bd93cef9d5976c09c95cbab25f2f5b2ac1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44d99b477812da57c6392e92a7679e31

    SHA1

    6ba69fffd2b68954773a768b1d161286fad25beb

    SHA256

    42b3f004be0c5cdb41554a58f46c5b6f53946fad876c541f50397153a02b2e35

    SHA512

    7891520f7876fd58fa5cb17091afdb37c45a48443f9da5171334e7a7319bd202bc70b83a59d487566a73fe576a1573e494e1d8a1f20ddf896ce349af163091ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    001dc5c4052dafb063b2d1776f4d2b43

    SHA1

    cf2755641382c8e15435ea3730f7f7a1a9ed1e43

    SHA256

    1f2db67c008a1a179dfe875870d2d87d4b8cd1c1905abf1f9c0332f0018bca15

    SHA512

    972b0d2acb549be42af251d090192d4eeec716c15766e3cfb2a47bc1175cb1499357001586a95e5bad8e0c91c452b29443f79b39b6ea117d2fc81dd80f74b449

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ad7aaaa85f687a86e5859f17d0dfab2

    SHA1

    e8dc5b1ce12c7f2c9c3693630fd0b1fa73103c7a

    SHA256

    be0dfc4ad47b77428761ebfdfe1a1d51e8789717832ca056e46698151a098b0d

    SHA512

    fa2f1f30356b4ab164dafa550d51edf99e9b0653bbf5d5998a2cafa47a87c6c42e526cdaee9039f23e88cfa8855efa10e8013febb6d59e30b0847a048a547b55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc30d68267f505b5965300197e2a242e

    SHA1

    287a4ff52cc3e06f745a5a183eab3d26c8f6a40d

    SHA256

    ffa4a92b0412dbeac72af37e13709b868f4d6eae8de12fffa295a52198394ed8

    SHA512

    d11ee3cc708ceb59451931985da1c4431b53d48487a702b310605c96b68941a5d40091c70ff2a02f8ad64af70da7f84e7fe199bf3bb8e7a5a14611675a6e8934

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59a362daffb6b2cab2ef2e4a4735082b

    SHA1

    470bc3a03b2bc99e7e37b7b0a90205d8ac1c43aa

    SHA256

    2b7eb658b28c7cb4de8c410aa856274eb8833d1689440c9b1ac302cd3911f1fb

    SHA512

    efaa42e32ee7adf122b07dea77d292f38b6ba97741643128b5bb6079808d0f674cfc0ec31e8f2aad1bbfd776fa25a73ae65e9256e9a3cbc825e52d33acfde98a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca9032dd76494d602d8194f1156739bf

    SHA1

    bf4a122fd529abf63256cc906de2af3b91fbd17c

    SHA256

    1e0e65595832a1b1ab27afa721729a78a13ecaf08b2b30ebab4c4c3a6f5381f4

    SHA512

    d507c66da5295a9338bf4caf7fb8b676dc2857120e2f60a96686601bc28df23880898152497e25fe482bf51664a75db43fc0ec52d8db48d585e79a06277581e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f36a4a69589bc45a58a992e107787906

    SHA1

    62833d31dc32e77d4a36b46267d4e61d7a1fc962

    SHA256

    d0f6d768eef0621b35098d26bafa55f64b9bc6860e2b2e2f3bd254515696d326

    SHA512

    b3bc134357cdfb35f53f39cd54f93088310771afe26f51e113d0da291be3c8b3bbaf84011f5dbeba3324970480615a266c500d88886fc440d6f7a61ea7290d09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad4d4df4f7c09039417cb7bc478f09ee

    SHA1

    af9abf8434280dc249300b2a68b57e023b9d1bc4

    SHA256

    2362e4584a4c1f743ace6949e622214277339400fef710d9647f96fbb9373365

    SHA512

    a0232b2b02bcb0a334eea806037e737e3abb0b5a001f8359fb727adbe8782294dd24027e1fe22168fbcedd35e4f65a6b89fe5edf82b28a05d77ef84205ea49f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    575b56998d463c135df30bfad35c1bdc

    SHA1

    ef8788bfb181ad303c80f9b49d3610bfd9f7fdbb

    SHA256

    045a5fa525a093599f4124d3bfd1fbf719d626d6744e62217cc68f0c8c0b2e47

    SHA512

    e8e1a7bd33a86a931fedf52fa52647da93abe8c29a1966b5571156ea8101a21a44b009421e65f01a83be6babc7de1567e6c513318941772d6dcf1bfe853b6747

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36663007c91318683a85cef9dcd01731

    SHA1

    b94622a8f7f9e4665689908282e7f841e96721b0

    SHA256

    b5f1f0c2f1736ab1504f344859898731510879870dfae3948f157d31680e20ba

    SHA512

    356d15a22a4fe333552a93adbd518594986ed9b5b81e8aaf81b960560ee8b1e8cc21bb5b1440c82e515125b9b65f25d6346122aaacdc5f4916cf1c54984f803f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13c5083c9d410789360f966bb3efa223

    SHA1

    16b442f87eab17e8d027b459f5efe5b2f9a64870

    SHA256

    cc4958fb69013449333e260c9dfec78ff6c82b760900e132234035a3c498bb64

    SHA512

    cee2597d583fd29faedb88ac1fd73cf931b0df5a4b46d011da27e81b29639b08281dcc64c8e5b6454de0fc1655b31fd84592b039bc5ac4184840070759f1f2ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53fb03f73ad36affc08cfcb31d2d202f

    SHA1

    07f7cf49d48308a6def64140e4fdcfce74d63224

    SHA256

    e3d58e9c9fdc9af2b2c7473b6e7aa3222442080fc9fee383630acc0cd6313fa6

    SHA512

    50efada2f1b20c8873065bdde3bd5e2109252fe763025ddfae6c02ce927edfdc0fc4175a2219a4fa720f65d601ba68d27044e206fe0fae4c2a21d71d965c26c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2fbe9f2b9084124f591b6778f905315d

    SHA1

    f1937593874274b4fb5bf5dc29d9c1a22fddf220

    SHA256

    ed4be7f779d33a5ec633598ddf3b22bd5465d94e453a00e58fe19349608d3cbf

    SHA512

    c4b89b5f2c429d8aff0fc3527cc8dd79703a16995c022dd437698523b24c3d32e4f0c150214b7330458e59457d5205c4b6e91738e2a99d452bc13792cbc24878

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa43c3be3c687ef464f31af86d1fd52d

    SHA1

    02a67196abb3637fed401cc20c5e1eccd03a308c

    SHA256

    e6c761ebbe188c566c146e0abca9f792a0f038de61628e08e2652994a1f81d34

    SHA512

    b98bc4b0b355f7f6c72b27e63c8ebec18210f5c6cd53108c13ae0e841352df6b3b5da44e04cd1e15e8dec396dcdfc67760608619043f971d82d5cd85c5f55eb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    000d81f190c0c56cd6bf6e22a828458c

    SHA1

    833c1270d9db49aff5a665d6109a7a229d64295f

    SHA256

    fdce72e96b0a8abfcea6315ba3ce60f55b11bf3445ae81cb00388089d1a5c492

    SHA512

    7021ba0387512296124160b572d8c62f10a6f8a2e89be5542d79b5fcfeb5bbbd164f5e37e361b853e535b2d0890f34602f5075b5bae173a063a73cb2bea43ff4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8773c2470324b33ae929ad345fc7355

    SHA1

    fc9e0f03bac0f6d8eafab0f1359e388f1a3c676f

    SHA256

    569a47f35a2b440c168f105636306c5b627750081f1ff825d0e580564abfd2a3

    SHA512

    5da180425e04df71427a7d7b41277e1f2d64d3d22ae236baf5bc209fd0eab3eae8fdc568355d5dc9d709a8b2f602ab28f2b6332365ca44472c33dc7ce343343a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE918.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE99A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit