Overview

overview

7

Static

static

3

155绿色�...��.url

windows7-x64

1

155绿色�...��.url

windows10-2004-x64

1

seemao_set...0C.exe

windows7-x64

7

seemao_set...0C.exe

windows10-2004-x64

7

$APPDATA/s...on.dll

windows7-x64

1

$APPDATA/s...on.dll

windows10-2004-x64

3

$APPDATA/s...k.html

windows7-x64

1

$APPDATA/s...k.html

windows10-2004-x64

1

$APPDATA/s...k.html

windows7-x64

1

$APPDATA/s...k.html

windows10-2004-x64

1

$APPDATA/s...x.html

windows7-x64

1

$APPDATA/s...x.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...m.html

windows7-x64

1

$APPDATA/s...m.html

windows10-2004-x64

1

$APPDATA/s...n.html

windows7-x64

1

$APPDATA/s...n.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10-07-2024 13:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $APPDATA/seemao/config/map/www.amazon.cn.html

  • Size

    3B

  • MD5

    9e73f8411a70e1bceefc15ac312a362b

  • SHA1

    21c4340e3a66a7bc00e5805bc1ebe30d3f2e218e

  • SHA256

    c69684c471706da34b39b2994be39294926dc543e51aea5f4ce0f06091a00ebd

  • SHA512

    59bb8b649fad3c2c990881eeb177ca0a751eb64b57b111da5300e5025753c9f642297d8c71b0b9ac0712f33af31a853d6174c1648f56ccadc66cf23e4130f538

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$APPDATA\seemao\config\map\www.amazon.cn.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2864
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2864 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2588

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    43944f7472fe63a3d48cff7e47893ce5

    SHA1

    7ad9f42920cf0133df92e8b9c3b8532c2eb027bd

    SHA256

    292d00d6f3e75b24658c4e991c7a1938989586b60b80bf49d9f2b96dc0a3ed43

    SHA512

    4097d4a64c244fa4705865dadd4e76541ea019edf962e6d1a3b86b8411e985d7aee2a01828657d33b935a45e44564b3fbb3272ce28de2ab69f41a7ecbded0bb7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bb7ba02af35f5d916fe6c73232ac236b

    SHA1

    e4712c8ce72aeb148d940c3082ee7ed369357c44

    SHA256

    6fe28f47854c3d1b68cd1ff02157fb9c7d2c45f6260fe1c1902234cc9637581d

    SHA512

    41a1b8ab51560432ab71c580105a65c9f7ce12078848b67f634ef19edc84ed272498667cbae4b9ea5362fd7e66665a053af75a2ada0181a325ae0b3b5916ec48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c4cf20d0cafb942535681eeeca6ef4a8

    SHA1

    1ed191c7ab13117d0b2e4eeea9573a4b1df4eb3e

    SHA256

    fd1a3f50b5ccef2f5b507e315b6355c18e47d4e50a6055240f82d90b12352aa7

    SHA512

    856630489409347dede1fd6815b8afb87a13ffc88dc8b219218b19986cd622d0d422e276042425e84243e969ebfb76c0b642cb1e87e097e4a638a897d0e70717

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bf59da859382a3c1faffc869b93ef700

    SHA1

    ebd59832ac469ed25272a568d2030e15fbe0792e

    SHA256

    cab41da7d15cf4789b611df7d4512c82526e4f7ec9ec6aae686eccb5b8b850e2

    SHA512

    0c08a6a3c9e6399e7247c0aa54a114d84af555601f33276b3e86f6fb993caf18f4cc3d3ad7d57256858d00a11440a9a775843e27a6552243118f106ff69323cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ca14bb805fac91102e3807c5e714059b

    SHA1

    a88526f670ca61b8d7fa36acffc0e1eb664fdcff

    SHA256

    ad4e6623da949b08bdb635b61dbb9f5fc721b6b6e990ff338ae0bbe69571bcf8

    SHA512

    80bbaf9a3291b9e89d38dc105f25a1ca29d3fe0a4833dc00ac58d353051ed23690c6ecbdcdbba2bca34dc10c69be49a05b90b295a4a91b440459ab10970a9493

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    82ae66392d9f8895b3efd230210734f8

    SHA1

    dc77564220d01998457a41556fac9921b5a39abd

    SHA256

    36c5ba4bcddaa32ba5cf7bd28e5435d202b710cef152e54683fa8d95dca4063c

    SHA512

    f3d85ef60990d292dfb38e56efaa05bbca8c0e88819b8c8488e3fd41b1062a8ebaae5a0ed40f2c3a08e22fa37256ed3499abb0b6fea20369cf73004a1b5e32d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a302c02f814f110d7b081565a67aaada

    SHA1

    39f32db430c3f08bde17491192ff1e714ad78251

    SHA256

    3f9fe204736ec567c16e8942f938b54b5d49b3ad6f633dee2485f5e0fc117131

    SHA512

    8dd47aee9f9d04aa328184758b3cf63f5abbc68cab2b2545c02a3c8a738e0007f23de43a15bccd1d59445159b5bf596773e1b24ed0fb0af43d107a553b94042c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b6a2c66f86119da8279ec674f621bc33

    SHA1

    0c004fbedd128600edaf36ab7334680cdcf95496

    SHA256

    f938083c10c1de68e65ea9a3816eb7f26efdb2488aa47c77cf7b7d1522306180

    SHA512

    e21636e8fa3ef6c916b8de252a91da252e894c19805c687b9c914dfb59e5a4e49f21f34064f00afd3f87257996759d4d33cc3be02a45a02e0d453fe489eaa093

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    05acd312b3c0123e1e7cc2d3bcdf2372

    SHA1

    7e53c93f8225cec336c6e52e66912c8d80508860

    SHA256

    e22ebe9484785038de278b96fffb3ac0cd55194537cc97c34bfa6d25820c0869

    SHA512

    7f6e3cd57f491b13611b5684fb40a5c678c325aa59978c530184445671f33a9c2d7615d7db9dce8d86c001ce7631534ac58d4ca30652dd9ee615c50e3f0905ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    e2ae084b3901d29f82b5a27ff347937c

    SHA1

    361f2f4074a05f3563a44ce5e47ae42811dd0600

    SHA256

    2a4929d750f5563857d4b7dcd8126b8c1f7360e41a350db9ebf8ae4cb46cae29

    SHA512

    ec230bf86d09af78283926b46ca08b36dbbfafec61c1e0def7f90ebc1b40ad148a0f57bbe607c0837f6660c63597fff6a564d67028daeb0dd111ea0e79051767

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c9ee762d65d4c4aff8911485ca970030

    SHA1

    fcde2f7a759767484de9bbc715d27f24af22d3b5

    SHA256

    ba4c2ae22ab9003ed55193b742fed5c60098464b25ca90bdbce4115baa6a9761

    SHA512

    14c3606e35e63224fb35988a7ffb9b36e1eab914a8899be886698dfadbcff07e2674f50595fbf880a41db3df8834a0e2e78d0b7c1c6da37afc656042dea1dadc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    fa54540f579daec03757098fc0db36ed

    SHA1

    98c608de7b1103d634b5eb3e0fc1981156c5d750

    SHA256

    a94cb863968d3760224cfba02c12b05c9fc9436c09b510d93ea736622521dfe4

    SHA512

    369977a466c1cb3084dabbe18e5cabe5b88e9b0cb1baab9c609ebd17cfc8db308fb605a7cce9e5edcad46cf38eae4faef2dfa384c9f0fab6cd64b4268608992a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    cce8d781fad5534b29edcf2623d4fd1d

    SHA1

    601abdbfe1d55d2b67e5b2ddd21d52358736a00c

    SHA256

    b094d30efbeac062b20b112b41108de3e69ce907c29c103d58b71113a0616737

    SHA512

    da3bbdbbb35c6efa73bf6f796d0ab4caf5ebd197112bf5e1b0863e0ed0cabb66124d217ce2866830e6c1dd91be406f8769512560a831e02d3d4922b68fdc4ebc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    e4fd1de96037e5d3c9001315eefedf58

    SHA1

    88e459ee70ba8815fcd59c41af63ab03aaae2179

    SHA256

    cd1117230283eecc390ca7c8fbd678e6396508b85f8518999d63d74d54292880

    SHA512

    da74945c6bf80c0830851ef90d2e27cb64a8d2c2917f65cb142d93173cfab9f56446c8310e1df8f52dd73d90f03c08ed5a1c5add7403dc41ef081147b507f9f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    53fe44b19bd982a0351a3d2fa5a9c55a

    SHA1

    2cbc6d9e642f6dae82856957ce9d00684a423af8

    SHA256

    2e4ed819e2ac51987876ac3ad5e77d419191ad4bc3e1eb2a3f823a9f9101c2fe

    SHA512

    b06befa56094e7445bdade397da28ed11f053bdc00e3cfaf388e804c3f6281df4b470ba1007a20a578f25462142398d53f3ce07936194f685d859a5db59d7945

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    0f68f505890ab4b7f09fa54590ef43f2

    SHA1

    717b3f8cb98967ee00a4553d7c87fea29792a42e

    SHA256

    9e31f7d16d591ece425b6b75a130f930f1a61d724eae6d52c233984643428143

    SHA512

    8d18b21984bdfd7803668296703837a077e1dc1f9134e5fdfdb31088ffb48f98d408c9a3e6661543adb8824e33d857dd30cba07c0b9c747a82c018066d9a7397

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b28575c56ea7e3c4da1f20415700e725

    SHA1

    f74d54acafae3641ec972a6d973737ce10c5cb92

    SHA256

    171f47cee5a5053b848a5add01d6cc50bcc9c2a8ea3eb66a01d15d8472eadcb4

    SHA512

    02dee6e84142cbb445721235fb388438e92ed60264609f61df8c81828e3a38a47d74d0747ea4fc68297f96e88817089a57dbdcd13b775d133d2d9df8e952d8cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    81221e7e64f2967b1b3f5a84429c2ea9

    SHA1

    04b30fc0cfcad737b549b9d3383d8a47f41d6f5f

    SHA256

    b462ab6673e7e9291be5d4a38c495be73a0c4386665016e0cd39a73382d06f84

    SHA512

    02cc94b2da5b6ee10153fb656e1c41979ad43682ca365a0d88c41392a1cc55e301279446885643bf6ee4ac3fcf18fa06a8d810ce8176d8e9364974c457e7240a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    40bc4475ad9b6111f71332ad9fa14f92

    SHA1

    2b3b780b90fda65ee8a14475465fd95216dd334f

    SHA256

    f19cc14b1a109f06829e3cd5aa5989a7ea72d7c9e002ca2e6161d40504385791

    SHA512

    7d8c116af4a7d70006ae9a819f871aa61912ec45f998eef2a94bf62d05d29f9f89625268c52e7222505f3609fb4901c943ecfa20116c3400ec1f1f21f1d319b0

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7C35.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7CE3.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit