Overview

overview

3

Static

static

3

add_data/�...��.url

windows7-x64

1

add_data/�...��.url

windows10-2004-x64

1

admin/admi...xt.htm

windows7-x64

1

admin/admi...xt.htm

windows10-2004-x64

1

admin/eWe/...ate.js

windows7-x64

3

admin/eWe/...ate.js

windows10-2004-x64

3

admin/eWe/...log.js

windows7-x64

3

admin/eWe/...log.js

windows10-2004-x64

3

eWebEditorClient.dll

windows7-x64

1

eWebEditorClient.dll

windows10-2004-x64

1

admin/eWe/...or.htm

windows7-x64

1

admin/eWe/...or.htm

windows10-2004-x64

1

admin/eWe/...tor.js

windows7-x64

3

admin/eWe/...tor.js

windows10-2004-x64

3

admin/eWe/js/lang.js

windows7-x64

3

admin/eWe/js/lang.js

windows10-2004-x64

3

admin/eWe/js/main.js

windows7-x64

3

admin/eWe/js/main.js

windows10-2004-x64

3

admin/eWe/js/menu.js

windows7-x64

3

admin/eWe/js/menu.js

windows10-2004-x64

3

admin/eWe/js/show.js

windows7-x64

3

admin/eWe/js/show.js

windows10-2004-x64

3

admin/eWe/js/table.js

windows7-x64

3

admin/eWe/js/table.js

windows10-2004-x64

3

admin/eWe/.../en.js

windows7-x64

3

admin/eWe/.../en.js

windows10-2004-x64

3

admin/eWe/...-cn.js

windows7-x64

3

admin/eWe/...-cn.js

windows10-2004-x64

3

admin/eWe/...-tw.js

windows7-x64

3

admin/eWe/...-tw.js

windows10-2004-x64

3

admin/eWe/popup.htm

windows7-x64

1

admin/eWe/popup.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10/07/2024, 17:39 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    admin/eWe/popup.htm

  • Size

    1KB

  • MD5

    cee7f2d412f68f02b43fdc60894e1800

  • SHA1

    e85b6f74d65763374d4ffc70ca0de14252720ccf

  • SHA256

    659f6a3808ef0a3eef46c6a7456693ab430675f900e49766e7d6bf02fbaa3cc8

  • SHA512

    237d8cd86fcad873836248a3ffe5ea3f8bca2378ca7bc70e8294d65cfd1ad6743398fba975c88c7cd0be8fe1101addcc03114b43bd7e9dcc2f7479ffc2c65b2f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\admin\eWe\popup.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2152
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2152 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2268

Network

    No results found
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    799 B
     7.8kB
     10
    13
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    747 B
     7.7kB
     9
    12
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    779 B
     7.7kB
     9
    12
No results found

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0390850047d900a6cb701705cc4472a5

    SHA1

    fcb9d305651579bfd1208f200a2edd701c99c98e

    SHA256

    7fa65a6f6b4ec2590f50742b2134d69c56ea70ec2940c7ee160b519701f468a5

    SHA512

    a6f4395e02763d9c9624c9199f047c1ac6f929620a5c69a5c29a4171b809e016e46c6db0213a1881265971f426a65a51ef7209d048bbb7a95cd4b9651de32a5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f84de0cd7cb5d31930a6ef8d4f59a348

    SHA1

    73218d5fc5a5cdeb7a9674fbe3af09e9b4c7540e

    SHA256

    81e21bd40689968cf52a796fd8dbfc93b87606c80813e002e92649c2b5715b46

    SHA512

    b1cbe4ea940f726bd2b80a93e7c5d0d63d9357874afb075ac7992faedb24643ffdd7ea8872da21ac4d3d967bfa30c6ea6364859fbeb4b36284c7f76fb58af5ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22c4e4e0055b6253d63066eefb10245a

    SHA1

    7ab063a355c9fd7a94298646e8c9fbd44367b38e

    SHA256

    a04e474f3a99352202e6af2b235f614351e0279f10c752ead385a7c5667d3ce3

    SHA512

    44acddb7004b93397fe3ff5dfb7a26857b3ee7ea2886a79471fa5f3a3b6b7c99131d845713ab95392141058b76099e259115379a2857ac5b1dd0a7dfe1c0a71b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ec75c8a06e0e32861234b9735bdefa7

    SHA1

    431e712b8ea7ba00b55c3d6f8a2828c898f6f210

    SHA256

    33adebfc853b6a1304a2739ae30e34d6eaea18a548dfe57846dc0cb804d88ecf

    SHA512

    8a5b58e3026540443632c3d046c86704bece6578f95d34961074694dde87e6643b74f0582188afc5564a5850e92203e23292727565f073f0ade2f32a979b6d1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de85e823a7832f38ff035f91c36317b7

    SHA1

    8aec7e4c2985216ada55d5b148991e9f017d579f

    SHA256

    93b14231be5ede27464c47d62ddd90f9badccf34c57360c90ef31443edfb81d4

    SHA512

    9219424ad7410d45d77e1412621763eede7e05d809baa7370e35da5f4bc3c5d9cb1b0d9c8d8319af4ddc8c2cd4a53115018d8b7595ff9fc08d8faccb78203e11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d675409d262b9c5a62f46d27ea5b10ba

    SHA1

    2ce684d408b0528b28fcea36927d068425912370

    SHA256

    6dd66f5bdb1c9526270d8ad39641d0a92946e157e85cec347f00d5da8813d76c

    SHA512

    fcf7f61c3721e3dc64e0d5e6a97cc4ccd522a8cf39feca65f3e0abd4fa75fefea0557c7b64e180f502b5472334c899be3b9ed19c9e8e67f1cfe4cf85604cd955

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4a5f3ed41f975cec61d0ab952b5f8aba

    SHA1

    07e771b5cdcaa9e072f537d922785ee42535d58e

    SHA256

    7194e02c1788ae2311c33df019dcf21860d616ca4fde967db2ef8aa842e77c90

    SHA512

    9b9959b798d3a599a4668fb715fd96f7b8b22ff7ac593f05b9f68a69585fd6c0e406ec8d528709ba04fb57071f9272ae4b010ea82465c6d8e1002811523c3d69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0af4390065cc39fe6b6344762950d11

    SHA1

    49d97da0ce2020e1394f96f7fed3076562dc7cc3

    SHA256

    4de5b273281112a3f7e807248bd642807af9676398867f5304146be911c0bbf6

    SHA512

    5a43c804abc515103c6bd95a985212577e1dece123deaaa9f33c83be6df940f30ba9e83718c332da677adb0f3683c69ee2198deb9d4b8b2762732634416cacfc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc0af46110327830fe716e43ee802666

    SHA1

    e15aa220de55eba56510c78a04738292da4fe8d6

    SHA256

    ccc071488b4bcdbd8d12f7f69ed884108c72aa412fc1b5eff13dce9cb42329ba

    SHA512

    6a287caced23d18d186f50384f1b67470321b81a8e37d736ef083f43f8ec7cb739a67bea197cc31872514eaa79cef0be54ec2d6011717cbdd50ea2dfae0c4b51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0fc4ae2bf15fac028cc9bfa4e2f8de93

    SHA1

    f6b38e1448d8ab1e76219ee2b079b3d4dcf0abcc

    SHA256

    b5db10dcc3a13ffb119098d03c994595e309aec713b481d6f5ae7f332272052a

    SHA512

    69d372df30265c0731afab6cc6aa980449c52b0e472aad3d142d39b201d76e7c4f3e5c80e53d2f72e5f632772ee0f6823e75e3ee1e9b76d82d4cf51a2f1c6f25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    487fc924c8ec2a7c87a3e497f3ac0130

    SHA1

    a817e93cfe055b3b5238c81e68e5d1d1e4faea37

    SHA256

    807e1a1652e414f9681e3b85f81bca5bed7e3b9d38d37fd3adb6ffca366ba566

    SHA512

    1d53904d2b1dc8e18c96c7f9130f2eeeefd084d09c59d3ea9619dee760b33aeb8e24236f4470f3908d98265650ff9a4e2cdb68855693379254a18fd9d970df0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f9aa6af05e93f4afd12d878abe2d766

    SHA1

    432decf07295c205e0981f9920f95354652f5ceb

    SHA256

    ca545b44a59e0cf25fde670bf52daea9140cdeec87c03fdd5604225d29ab19e8

    SHA512

    6ae9b57e1c9c713d3df7c9f6aab9054c9c00cefa9d9e4579190bd26c932e03c9d5ecd66eb342cc2de4cbaf574743dcc45445ad9e583821c46a6c35c801511573

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e4be7cf944f3c5c9202483130b5ac45

    SHA1

    1655cd2399b05248d1a4a8e0e3d9fb8b2e7f6a09

    SHA256

    2650f4342694d95c8d4d8b93894d594bd7212fad902e32650969eb659e1f9aa0

    SHA512

    5afab96e154933ec5ca4c3c5b7f039c1fb16a47ad01f1945ffc9142cfd9c84de1e9a5399dccfede714d5cf8f749ecce128e5d1dd13b512ec1bd6f05cb4b31030

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f900d167837f87887a3c709b40bf74e

    SHA1

    fa4b37a61b16c7e2f860c0328d251d6840463d75

    SHA256

    5446799335b9044f5e5614cb9dd75dd076f62a63251021d07bee8a6edd8ebb99

    SHA512

    5a7c64b630835603138363c5a4a10cd8b8785c4615e541c843cdf78db8c33dbf87ec11628a9a40a16bc671c3ef60a7c619130b1aa768e26afaa1a1c38cb0d118

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d5a653f06616162df74a9b3b3a6cd71

    SHA1

    eda511562d9a46c7545342d9c948bc25dec5d89b

    SHA256

    97a39c26b7426e022541c3c027e7029e823353e0f6996349a3a51b751c738ae0

    SHA512

    5aecdc9386f4f1a8a125a92a458d7d65492f960a5d4da6a5118bf6cb8a88e572da945550ab07545b21934b15123690b9af7d4c4bc645f712c9b66b8269020931

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94ac851aaedbfd9810fda78f256a3de2

    SHA1

    d88ba031c816360f2902d6a1343566b86583950d

    SHA256

    38455dd1ef4c120e0709f058957117f59f084c6b5a39dcc1f9f413c4e61c6ae3

    SHA512

    3b964d866d19525014b33e4da421cd2250eb818455aafd4b3fd0d75c1b3a15e2165c7f7a0a3db0a76898017f75156b62596f3d6ec1cf75c49b46b3f7c1ac8fa7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4624d65d607f5ab2e4932a935acdfb3

    SHA1

    2afc7f286178c49c2bc6c16555941ecaedfdac56

    SHA256

    e58b7c77c3ee76df4d06c598a3cb4f36912d5c7879a62bb9863c18df36485314

    SHA512

    d5d7bbf51af8bf880d5f4b72ed58d1d2b454b84ea054a738594fe8b5e635cf09e1a704af29529b45b6380918b00b63f4273340ff90e4e58c1e08fc9c6b5f2fdf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76ad4e8ca5b7b7ee610f470a671db590

    SHA1

    15dcdffddf98849aaa5ece26248ccfaa69de62a2

    SHA256

    f049c0ef90cc3302b1532fd5cbbbd6fd34eec8f0b0c4ba60696f2c2aa08c6f19

    SHA512

    bc29b31bd51227379f0ab0b05703d90494cc43b4b8d90cf7dde4974f426f5485314dc7ddac50c6a71054c31cdb64fe2ab1ea44944e8c44bf9d55b29401309098

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ea338a6a303739e82c34ebb43da286b

    SHA1

    fd264fd6956803355b9f05cdc6c7ed3807db67f8

    SHA256

    0ad094010eeff7c42ec74bb3a74f923198c1f92a838e8012eada472018c3c538

    SHA512

    72b740e9df64fcfe04569c0566280232e025ab79329caa193d0f96b9361a4ceddeb0f67288695c25c8b2e9a241f28ae8c717ec13efeda95d1c183215d386eb7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e8b50662e39c3dd9c05cb2cb3814348

    SHA1

    583f5de1a28f01916d42e61b5b882c7695210e41

    SHA256

    2d9774eaadf6d8a8b17851e8f721f0ff84fba4f3c6d7bc03b78695f884a509ba

    SHA512

    8226092f5d3648ce2d9f8f25782fb9fb4fe68d6fa90dfa02913798279f2e9746969e0f89fdbfa72c8a1ea5bf37eff243e41e01b01fd213c5757ada09c163faf2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4481.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4531.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.