Overview

overview

3

Static

static

1

11/2342523...m.html

windows7-x64

1

11/2342523...m.html

windows10-2004-x64

1

11/BBS/index.html

windows7-x64

1

11/BBS/index.html

windows10-2004-x64

1

11/Email.vbs

windows7-x64

1

11/Email.vbs

windows10-2004-x64

1

11/GetCode.vbs

windows7-x64

1

11/GetCode.vbs

windows10-2004-x64

1

11/NK_SqlIn.vbs

windows7-x64

1

11/NK_SqlIn.vbs

windows10-2004-x64

1

11/TEXTBOX.vbs

windows7-x64

1

11/TEXTBOX.vbs

windows10-2004-x64

1

11/TEXTBOX1.vbs

windows7-x64

1

11/TEXTBOX1.vbs

windows10-2004-x64

1

11/TEXTBOX2.vbs

windows7-x64

1

11/TEXTBOX2.vbs

windows10-2004-x64

1

11/Untitled-1.vbs

windows7-x64

1

11/Untitled-1.vbs

windows10-2004-x64

1

11/Untitled-9.js

windows7-x64

3

11/Untitled-9.js

windows10-2004-x64

3

11/about.vbs

windows7-x64

1

11/about.vbs

windows10-2004-x64

1

11/ad.js

windows7-x64

3

11/ad.js

windows10-2004-x64

3

11/admin/EDIT.js

windows7-x64

3

11/admin/EDIT.js

windows10-2004-x64

3

11/admin/FIELDSET.htm

windows7-x64

1

11/admin/FIELDSET.htm

windows10-2004-x64

1

11/admin/FLASH.html

windows7-x64

1

11/admin/FLASH.html

windows10-2004-x64

1

11/admin/HR.htm

windows7-x64

1

11/admin/HR.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    12-07-2024 21:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    11/admin/HR.htm

  • Size

    1KB

  • MD5

    4ef0a360a64aec29921a661048dd35cd

  • SHA1

    d6c7a4d1b49c4b53bbd569c2a5fe4f9c46aad0c8

  • SHA256

    ac10b4e9075cbac5de3bf32041df9c3922e1dc9682dafb272e80aefc4e66eb5a

  • SHA512

    968bb8c89adce4544274762c0f38a8f36174f53dba44bcfd3915002560b216a692ece2dc39ed79dfad9c18ee76bea1d02fca34f3cf83f6e5400c4fa33609b9dd

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\11\admin\HR.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2420
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2420 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2188

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7dc5dab8917bb898a41560cd62cc465b

    SHA1

    8c66037ad67bf84486399876f4100e4f76f45d69

    SHA256

    6068c7727b4feed657583522d51030d84832ef29d42a62ce5fe0ada01a40b83f

    SHA512

    f2e82168259c37551e1c974049ab0c73e5cf46ab51f6e92db3d4f5a5ca5d7414bf5c76ecc1bd55aa73cd1aff0d4fb94cf0c9a874099d4ea9da9ea37853aa6b76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a05f28052ea23962f295582feeaec1a1

    SHA1

    e37173b30612db349e18640af1e6d21f275e95df

    SHA256

    c724890932400601b292bff779196faa944708ba4a9a9fa34f1b18972958d377

    SHA512

    06e78ffdf5d662d38116556273c823e288ad5bd953f9a73ab2074ef3c9883993979eafb97dfa64a95076d7311340f794fc4c9f494c6e7329336016c690857191

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    078086b654aad6ae519bec50e4ca8af0

    SHA1

    2d6d357e4d1a70ed214817b9ec535e391e036f76

    SHA256

    234f7b25ef408332c50e8a619f8d427d72d73330874ceec1d4d765df0b59894b

    SHA512

    42c32b5f0495e1c78fd6412d59c980d9271efa2b68888c819c272055eeea5333dd02d1b61068268559496f341692c42ac74d12af9125bbcc65e6d2adc42e9d1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66186029cd7aaeb1b7c694c55aa96914

    SHA1

    a4a65fcfc3aad33c06c74fa16d520797841dc9b1

    SHA256

    123258ae0c39b5c46640868e2cfca2a047f0de9e215fe14ddbb145957fd18e8f

    SHA512

    337e11464d2120ba3c421a7375237a2aa18c5c3b057ff67a3da00306f104f9447a7d418a40fa8e5bac02f8ff8a23314ee9fe3ff3fc0a25f835a05a3973d16fb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38ce283a5c7ffae2f472ccc22cf2beb0

    SHA1

    c3d7e06945ed75a5d143b8523c99c1e4d0067643

    SHA256

    540b5ba31371e69eddf2dff0534ad338bab7cba0658c0b6f16bb2780dd120baf

    SHA512

    516212505e6a23ac5e5b6120b9046e6858b897fa12b9e326c5eabe6c5d83b36b3037cf9dc591c394269485f056823668951089504cf4fb34dbafe7f9170bbd58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6240f365f8f2c32e28356518141adbe2

    SHA1

    f9fbb0aade871d813d1561d2c70338c34e7e4739

    SHA256

    8c24f54e36691734225e6d6d23c7ca3397c04d998acff7a070d3c44eeedbf59d

    SHA512

    1292d142b00e90dd43daeae57d531e5e263a49107d0761b65c527345c927bc1fbd38fde953e3be31238f453ae674cd11631b94e3c0002bc0fce2fcffa5a07a8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd1a32dde104c37eac7ba6f6dfcbeaec

    SHA1

    330be405b4acabaccf9f6032b6c9a6f3a4f5ef17

    SHA256

    696d87b7651c389be2dc110c4b71fa5e004f8f49ae06d2add56a331f9625e904

    SHA512

    75b3463de3cfcb4a6e7fbf17bec74ad5882fdaf0ab961806345b36e41b67e4ce8e918517c7f911a9937a8a91d74c2ef73f6c34dd22051f855018d45b789194bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7e969e2343fbbdf0c15e76578e84d79

    SHA1

    fc788e12395ce1775af7d553cd75a205e180d22c

    SHA256

    4d5582eca7a91e7b76ee9dd158f42ff51f7e5c7bfe188121bdcab2b208696290

    SHA512

    f1d3dd59a0177c511008329c8ab4a433ba42c7d652f0f1911152769aaff15b676294986fdf12c02bff9ebb0660c7e8daeebcc5cd11ea10909a66ae9f4b36fb87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d44dfaa9dd9b354a1bfe667b0c087d88

    SHA1

    cd0550a27bdfa436e157ea4e29c1fcb5b81556d9

    SHA256

    d33dfee3bc6aaa627d1e1f4dc052be66c818b2c8e98801cc7e49786f699d12c6

    SHA512

    8625e0bb76ea5faaec5e6cafc6f6282e5666daaab0d1c4a71ba4d4e49fb8498a395e06a20e03b357612f3a27ab6faf938709b2ecd2958631c2a89b72c46bcb51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b70887d5ffa79ed1f874ab21326ca46

    SHA1

    895340e40065480c25bdbcdb815b7145c2fa0b96

    SHA256

    1d3ebd5c894ffbe277120503ee9933454f084a128162e862d718b31b8bbfe46c

    SHA512

    1c3fe4aaf8d6c3c7629bfe42db3226be71f3373d8930fef6bd6e80dd497b2361838cd730d8446de402c2d7e34a51070a29dd5b912ad8529bb2d741fe68ac2438

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b415b952f26254a26faded023cd1001b

    SHA1

    f758e0d729879021828d73a786df8c192c04092e

    SHA256

    d49dfaf0b054a0cfd795825ebfb5516881cac909d2b6cf26c0aec4ca23eab0be

    SHA512

    d22a70f1c85284c4d4e66b0cfb0ce4d8d7c96588a372e1d0f66b5b04966ec009de59fcbeb8a507fa0b09eefcfb49d6988e40bdff1b27ddb5512c7a7f6d2c36a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9425cf0344ca0b4ca14bff2d5f53346d

    SHA1

    df150eda3f94ac2f2aa90b4baa51cff31c783a6e

    SHA256

    6d7d509afa4ec42d2f16c39e6919eec2d91af1b24adb6b01223137e96f17a99f

    SHA512

    0eb80499dd1528c67ce117f1034280376256f14d311f1df41971f5db44a0bb5b38321fb630bd1423ee679cf1bba840172514c06a5b926c7cce89e18c0428229c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1dc64d363c53e3bafc4d2d783d02e75

    SHA1

    465a089f03e65d52ee76089c866e6d10627a7811

    SHA256

    fc0497ebe37c677a963caefbd18f7a5c8b7ee464071fec0247174b77477159a1

    SHA512

    93bb0f000cbdddf8c5048fdabaa2492958ee98224e3c563de0b86727beeb2c0207470aab81d86dda8819b5bb08ba7725b41d6b916a09f588668d7d77815b76fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59161ff5f60a98c55161c399f8783375

    SHA1

    54edcaae9c0e963eec8f1b7c5963632a290e62f8

    SHA256

    0a71fa5634f9acbe053110bf6ac8a2b9425664a197d8d6f36a304bcaad3609f8

    SHA512

    5b498ce4b7e756104ff17361cb4db86f4225f8b22a0286a43080f9450f4aa629d3665a5dcb201f6dd9b3283002be1397229eee089dc54c2feabb054e6b1540d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc512df611c7eda16a581d05864b567e

    SHA1

    9cd0fab56b80d19dadd37cfb9ecb8f8db97a8376

    SHA256

    098dae91b1397fcf96b8d7e12db3257a40c12123e391316a66b567b80002e856

    SHA512

    7d2b7c8ca16ad92daad3d1e523c8953b883bf701146ed6ba1e8409eb7569d8e2aea7cff17186a9b0bc82e0ec822754edda083640e553b281844ee01bcd263f83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f63fea574b707689026d758a7a2b95ed

    SHA1

    66739e7721f0179dfc2e26c73286de6dcbf81451

    SHA256

    21742b7e88d83baf83db71fbc9a9810380a088abf9cff87a9dfc9ddf1197d28d

    SHA512

    37a7ca74259bba413732c8217caf7160479875e4cc1b688c52df18914d4dbd8509779ba69b587357277d96616394cfcfec515eb4e23e30ac2d0d2edcc556d5cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    701e7229c2bad5ea80d85260eb0688ca

    SHA1

    d4ce64707f90e63818ed177633082259113a8a34

    SHA256

    a3ddf6d9800b73dd516cb2facf3008d91955ca31b60991b1cbbbdb4fa38fc780

    SHA512

    779670ddadba774a5ac1331e2fc9a4270b7acc6c41ee3f2cf71b4721d4ec015351846ac0b7c63b0843a91a7b5b16484b9e5027cd19747e20e40a587cf0ee6b49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ded99b4cdf6fa64b0ac4aa1988cdc3b

    SHA1

    871c4f8e0e37a677c1a547e6f9aab8c4164fc6dd

    SHA256

    9a733fcc7f327b7909a2d2984b2ff0cb4fb14fa605100f6d6e87e5b9d85046c4

    SHA512

    e69296caf6da24942b644059240bc7e1aa67817dce1eb8fbdd67f035c6b276bb1e685a0df59b9010b12f774cf522a2bfe69bc93d414f339dbc6cd8a0059b7691

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD04B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD0AD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit