Overview

overview

7

Static

static

3

155绿色�...��.url

windows7-x64

1

155绿色�...��.url

windows10-2004-x64

1

seemao_set...0C.exe

windows7-x64

7

seemao_set...0C.exe

windows10-2004-x64

7

$APPDATA/s...on.dll

windows7-x64

1

$APPDATA/s...on.dll

windows10-2004-x64

3

$APPDATA/s...k.html

windows7-x64

1

$APPDATA/s...k.html

windows10-2004-x64

1

$APPDATA/s...k.html

windows7-x64

1

$APPDATA/s...k.html

windows10-2004-x64

1

$APPDATA/s...x.html

windows7-x64

1

$APPDATA/s...x.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10-07-2024 13:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $APPDATA/seemao/config/map/www.99kaoshi.com.html

  • Size

    1B

  • MD5

    c81e728d9d4c2f636f067f89cc14862c

  • SHA1

    da4b9237bacccdf19c0760cab7aec4a8359010b0

  • SHA256

    d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

  • SHA512

    40b244112641dd78dd4f93b6c9190dd46e0099194d5a44257b7efad6ef9ff4683da1eda0244448cb343aa688f5d3efd7314dafe580ac0bcbf115aeca9e8dc114

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$APPDATA\seemao\config\map\www.99kaoshi.com.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2020
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2020 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2144

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cef6d70fd578d1a2d9999e40e16d2a82

    SHA1

    21961b3f23e4aa6fc32d0b7d3d84f39ece271742

    SHA256

    b378f962636910a9b2553d0caa0924acd184278ab847ebcd40e1646e163b4d6c

    SHA512

    6a4b29e95f89ce0ecbecc1de82bc6fa21a3f6f8ccda111c06a4fd7af138fc48f9cdebf8a4f2113cef63a894661164ee79df87020e2b518ba945c556d1ab99014

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b14b982395b57b5891a378e7d12f3a7

    SHA1

    5d5a0cf7bdad7c60031e9833f3d1f8392cab0433

    SHA256

    2116a374cb0bd8a8f90403d9f0f289eb3caf74b62c240854ab92b25bd130a699

    SHA512

    ad6a27aba0f732f82ff55ae6886a02378d5ac4777fdc141f3b50ee80a819021849977d8c0e8dac9a48fd014d0bc59ddd9aabc96240bc606265d90dc61b1f4cb9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8b03dae5c16b5bbbda9b55a7b2e447c

    SHA1

    9b6e5bb653aeff195f3a79991e86194b8b7edbc6

    SHA256

    21873c93784dfd32398466dbb98d2495ccd9957365542e51a9f15bab94942d05

    SHA512

    5aa67c1189388faad53a91cb3832f664ccdbd7a4593504e71cb9f0952ebbb868bc56e0b49d32cd0f3818e08da4fa493a2e4c39d3000dc8d91234609bd0606d95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b09752b912411bf5bb2b5c9cdb216be7

    SHA1

    7e55b59c64aac6da278d0a803d6d8b71be75af67

    SHA256

    c8894828a7b80327fa977deac5df1c4af60c4080d06c046c097608a30e6a19a6

    SHA512

    756da79bc688194c3acd54e4beadc57185cceb2d772e64fdeebef52fd4865e3fdb96c0d3be7d31f620dbc21b474fa62ab2002b2af4b428983e4edf60bdbf245e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c43aa75c461e156eca11018da2d6cfc

    SHA1

    237e18102171b7ddc31e3d05bd3f508e78e55ec0

    SHA256

    01b3429f2d77c11af0f416f18c059a268c94efaab49680751aba544cb2b36e10

    SHA512

    5981b0952157946ecd53474edcbfceacd1d93026ec8bf17bc83cffb166d9660afed5f794060529d9d6bd4d92d0f2f730461e26a08503a9f8f617a27d45a19dcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a414635c0c407536b049fbd0b3f19d1

    SHA1

    4a65ad0d6d61deea93daf04076fbd1fb6003ee7c

    SHA256

    c5c365f7f79a4a2dae1ea24e3dc05cf6dcac0f734c60e542e2a0c1f2f49da820

    SHA512

    86973919ecb0c0d60d8e90a7e912d535fce91b80fbf3361e2dbfe48c6848f0e96d5989e19d014ea94f47d55989b28d26e6ea8ec84ee8e6d14d072d63f3414ff2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55137bae6519ed4dc5b6381f6ed06460

    SHA1

    f623d7ea2dc63d867f841cc331cb4d3b1336f613

    SHA256

    5996c566568a95cc33c69f4b1eff528a2867210f5ef60f5483647c65f6b8c8f0

    SHA512

    a47ee0da750dc490fe56cf724536f1e8f87b4f25a1a3881a6527e784f437f31b1e7479ffa17c6fb8d2e3d11346d58d678580a1465e0ddc647a3cb5a737d6783d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5e0abdda05053ecbbd2c7347aa8c737

    SHA1

    c8c1312bbc9d2c998f13fd604c174c591fe34476

    SHA256

    ce75cd246f0220e2b7493a8d99d0e3bdb39e1dc75d16067c066ca366e5032361

    SHA512

    2cbb234b2e2284c97a0a470f37dcd84ccd3a0b977336f18c16c51efc638b244c180aa91ce2af5f5b7efeb68a1abf600f507cde4cff1421280bbe2b02bd25f670

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    028cb1c08cfd1d853f0756bafbf763d1

    SHA1

    542b24956d89bc9462e00cb25a12e160217083ee

    SHA256

    b160938e155df0c06f196d25be4503634eb20f0cc8a0399b355ec815c222279f

    SHA512

    acc417fa9268d849f601e6bf860e66bd5802b172362f39eb940f5384b8cd6f6701ed2626a88101387ebfe577ac7c67244812a2991bb241031c24c44979f052ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29cfdc06f0e2d72396bb843b2879299d

    SHA1

    1d0f00583815978ba4866f0c192c69477008cc7d

    SHA256

    0a3885e9bc5ad1d57b87249fca837427488162f61bb255a6e1be6cb01bb406e7

    SHA512

    0b1ebbe459d7e89b3d2a5fb0009fa905ef9567fb4d38972ddd738882a7087a1b6465f2247c15ea86bb865f9a5153c8b938fc946e9a955e368d617f01145dc81f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dfe64d6cf859fe994fb67dc1b1a42f2c

    SHA1

    2610162101dc4ab04fe40f70faa1446c1a43edaa

    SHA256

    4f30c94504c9aa11eb2fb4b1c7bebbbb730ed0d972287027eb30e031e3ba845e

    SHA512

    7da51de4e64860861c024fd3e69e65affa800493af93e8d7523dcfbba34776779ffa7de182262d63d3f817a2a33bf5a15f679e6288e74ab7aee14466ba74ff63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7073d6dea562c20b85579c0cdf9cb302

    SHA1

    e5563070612cd5d0f939889b167c3855e1e5f673

    SHA256

    14a4479f60a6ee36659333354b222f8f951cca5f00366a168984737a7f7d9a00

    SHA512

    f8bbb0bc30d3630f903fe8b24e76a3444357019ce6d5fe1d16f92999f5fa4e3a0cfb3940747b2e7cb86345338b7c8ed10df7d2458e64e5f8890dbfd3ec4537ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f33d7dfee03e00e95b3a23b48e7ff4b6

    SHA1

    047efc6285afbb81620762a48a19b43fadb1f0ac

    SHA256

    ab75b77b16e7ebb42b24d1c03bec19acb9e9a4c2be891d745978af12eaa60f34

    SHA512

    9b28661e3b981908e82764e3dddeadab15f7128fe3043379cba7b39ecbafa49864d912adf4a7a5fab0a937558c47a1ae4e7704f74c7546c7116ad7d2f5677c7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f713868998d3f879851d2654b332b88b

    SHA1

    193b935d301d96dbf935be1a6f41705c6ba00aa7

    SHA256

    3d6784227219c1f6c583f44ba147338eb0b6c2ce0079851216b115fad9909240

    SHA512

    176fe339e2a91c18ab4af6f30f53dfe09a132293c418d7741f9911d9e1d5ecdb61e61450aa9475bb3e3d2c4847d1362ffd45121f44f792535ab99ef53d22bef1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31e1c637ee5753b0d4787b40b756243f

    SHA1

    3bc347a8efebb8d0b456e29f4dfd3545803e52ec

    SHA256

    b3f0cdf12d7ab5e2a8d2ca3d0ffb7d51dd9cbd9a45f055546ad917c95ea56cb4

    SHA512

    69986b89213389681c2e19daa6e4c22d3a7557a5da0207b867b9acf13e32062b9305fdbe25857d3b4d71f61d2189958e8d31bb1c4b4976243d5cebfe76127096

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85906860c8695d5c17b24d931b795395

    SHA1

    a48d9933e9612a83dd350a7b0a71a0c5c0487863

    SHA256

    9474a3aa48bcf28c7f2e8852ea1340149ba33ba267b88e06488461f372c43a8d

    SHA512

    948ddb519fb909c5ceaa435e700ffe705be2877247417a7bda83c79e1bb286be19f0fc8adc04bd6400a7a7fe09d1663a0185c96e5d4116179c56aa8f97f2906a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ad2dfa0e19d21f873038a0732efcb62

    SHA1

    ec000436e6201aa9c5aef02912cb34b215d3259f

    SHA256

    ccba52c9873e879cbbefd1b85be9037dbcf47d3c33f9cedc69cfcf0a15deee1b

    SHA512

    b2b6f11a7728eb94a1021fe8569ebbd7b5250cfdec88cac971ef9e8a1ae8be6123b00e31a4715027e7b208dd6604be6523c99a3a3d375c8e41f5b2d8e8b06c89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a49ccf1bceefda6a752a59e4bd4725e

    SHA1

    4612a6f9485e59c2d9a58aadbf336fcc2c6a6429

    SHA256

    905fde473d2fa64712cc464b2300b9308092a27382db7dd8425fac034b563d38

    SHA512

    ebaabd501b1c4b02f33d85fb428f614ee7a2184e5e5f82f1e36c4f112a66597a39e0c6113acbeaee748d39cdc479c0ce72b30ebf2f2b73b371e8e8bd4de5870f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44c47a5ab77e7235753f29529659f807

    SHA1

    92eebf9c3be8b74d34274bd49192317db3a24d95

    SHA256

    3b03ec2b60e780698a73cebe58db965c3295a7851b04c158dfa65af334ec70a7

    SHA512

    c114ff45d37e09a9d31cd14eeb22ee0f366042c55462cadbda677fec7bf42300f56275636214ed5647ee86abefaa8c47bd9cdb7bea6aa2c8e5d60dd9b6acc5ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cfc08b176770b1ae945579c4e1d64bed

    SHA1

    7a4bd0b897215d6abb625dfeb797a05c17fcbe2c

    SHA256

    c9ea58387c405e2505e198f3a18882bb3fc7e99861a21e7410729d4ca56b2c61

    SHA512

    fa771896f9ceb7ac2cafeb1f7ff51d7797aaad3bc2fb5888469e06d909478d26f4582b322ef907929f7344d2a92739202914f588f0148b0463e8019f0e0af2e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28b558d62b60798eeb6cc0fff5a89971

    SHA1

    de5027aedbbc7e6e425816806484e618cc5c2df1

    SHA256

    16421e2d77a354ea26810fb5cfb90b102b6014b89e33d3eb84aafd5f98a2a454

    SHA512

    544dbcfcdffbcb2e88f34b0d43a70151fe9d71308547c6405087f47939adf55705feb075f888bec740f97082f8502fe8edb7e8fe8d8621b698e8384d2de3eff5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3AEF.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3BAF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit