Overview

overview

3

Static

static

3

01-环境�...��.url

windows7-x64

1

01-环境�...��.url

windows10-2004-x64

1

02-详细�...��.url

windows7-x64

1

02-详细�...��.url

windows10-2004-x64

1

03-安装�...��.url

windows7-x64

1

03-安装�...��.url

windows10-2004-x64

1

04-用户�...��.url

windows7-x64

1

04-用户�...��.url

windows10-2004-x64

1

05-视频�...��.url

windows7-x64

1

05-视频�...��.url

windows10-2004-x64

1

WebSite/AP...ge.htm

windows7-x64

1

WebSite/AP...ge.htm

windows10-2004-x64

1

WebSite/AP...op.htm

windows7-x64

1

WebSite/AP...op.htm

windows10-2004-x64

1

WebSite/AP...ig.htm

windows7-x64

1

WebSite/AP...ig.htm

windows10-2004-x64

1

WebSite/AP...te.htm

windows7-x64

1

WebSite/AP...te.htm

windows10-2004-x64

1

WebSite/AP...te.htm

windows7-x64

1

WebSite/AP...te.htm

windows10-2004-x64

1

WebSite/AP...te.htm

windows7-x64

1

WebSite/AP...te.htm

windows10-2004-x64

1

WebSite/AP...te.htm

windows7-x64

1

WebSite/AP...te.htm

windows10-2004-x64

1

WebSite/Ad...ide.js

windows7-x64

3

WebSite/Ad...ide.js

windows10-2004-x64

3

WebSite/Ad...one.js

windows7-x64

3

WebSite/Ad...one.js

windows10-2004-x64

3

WebSite/Ad...ide.js

windows7-x64

3

WebSite/Ad...ide.js

windows10-2004-x64

3

WebSite/Ad...ent.js

windows7-x64

3

WebSite/Ad...ent.js

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    12/07/2024, 13:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WebSite/API/DW/Dwplugin/SystemLabel/PE.Loop.htm

  • Size

    6KB

  • MD5

    5c8fbe46a410edeb9393d4cfa87f2907

  • SHA1

    6ea82d0d0f2f3c98b60337ac8021c87b2163216f

  • SHA256

    a1427bda41a8f998c45bc5015bc914f9b9447043e32a92a84fc81e14b6afa9f7

  • SHA512

    2da1506a5be2ced5ac4349c7fa46f78fe14b0393c55ba26323dddbf8da08a9bafd780815163abb02b75a7f775af9e324284967e32e1e1d86965809975d846a5c

  • SSDEEP

    96:hVKcUqYBZJE0FtRmZosiA15NFlT1PX+vN4FBCI7VsMBvijRGMrBKVMM:X+JEkRYoczFldu84KVpMrc

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\WebSite\API\DW\Dwplugin\SystemLabel\PE.Loop.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2824
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2824 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2672

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8d89e05437c03c717704a491b50ae21

    SHA1

    abd674cf7ea6d50bc69d582f0795c66af1ebd96e

    SHA256

    821868e3f7c9de444d0d9eae5beea07ec6d00fa47fa039532eabe49a8d206fad

    SHA512

    33330add388c6e46a0cb89ddff85778540c8a1288e964db2ac278a7ba6a15fcca1986dee87490730f4ca307bc6709def56d2e6c5eff34059a27dc44aeba3fdab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fea0cfa5f559e46c6701c5efc2bc451

    SHA1

    27668c0ad5c07006b09bfbfcaa60c2a31792e6be

    SHA256

    cd2aa349e79dd63568c6c193b78d72ef4be62f724684b25612428bea63413159

    SHA512

    85ab377d7816e3c40bf8075e41f2fa1cae1fc84916e33c26c5376ed71804350908f23278e4e4593dd9fce33a4220ed377d4a6f7a0fd6b46730962aac03b2780d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f27aab2c9001cde49cf31a023876dbd0

    SHA1

    c2d7d5ebec1afbbb92af13d34537e4b163c0c20e

    SHA256

    86a0c0b8a4268c5dd6030783978a396acc6f5029c2d32a2fd79d502dab829497

    SHA512

    7896ed6644da0ebba7aea8aa2b85777e41c55b930aa766fc86252f31d3bb25f97ff4ca9085a6e517b015db430266e49d9efb1511028459d8eb3a83600b82de0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c746358b61b3b2c0ac4e13f46b68d43

    SHA1

    f92e45cda6f1740020dc6fb4f1fb769f8f1bb00d

    SHA256

    195978075d5dc80e4bfc7d4c91731bf88f6e800536db705673a5d92fb7f0ccbb

    SHA512

    ccf5a3db3aefd36bb720dd581d4d0639d64faf97c1dc067bede4bde65416efd8e2360602c05c2cef69006efaf6f96a1e22f9f981122df265e12dd256df8fa8c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0695037ea9b855d22f8343832cd17bf8

    SHA1

    ef727ff1ec5be495d603ac5c9825dceb2289e324

    SHA256

    f5d6fe9aa207f42dd6ba4f95d480ca256d086aaebc028021ca87605d8062f361

    SHA512

    8f87ded7712aa82e6b6bcc4283811663eca5ed0b3b464cb2166a0dcfafadeb56694d80e652c7f9a106f605e46e3c6925685b4fd6e46c5856fe811a0b01cefb23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c457d423a9c072f82565a70e8ebe3a7

    SHA1

    45ff960a978169ef6bc711a207b724a352d199dd

    SHA256

    364facac0a71560283481071dae4918f70528fe579a0049731af59d9b4b16a65

    SHA512

    74d69198e843839ad5f47caabd10c3deb492b2a6d3f67c9245558394de99dcc57bbb7532b72e9bfae776c68c00f740c9cb9a9ff55c0a730a627e79b992acacef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9bb66c46980134dbc507ce51cede272c

    SHA1

    05f28c0e7b08f6d1d64ea2b5db8a6d98f6c176c0

    SHA256

    5b954a0d24fa1a89790a7c43c5532cb5380687a477b0f3c7a5bb49f3ef726d7c

    SHA512

    2c7ff0beb9200e8e3f972f67aa3b033e7f1c4df0a3b3212e2dc04f0e83dd45d2e0f3a6345cef34fff89ab9e4d89780c91fc98eee962a13c4aba4f813a36da97c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e409137fae9bab456c12df6f3e38c86

    SHA1

    1e993a877ce86fae80b8693854e5c7e0bca11afd

    SHA256

    3e32356b233927012df91c43874160c31fb958cd336a4657e63abe15755037d5

    SHA512

    f7012901e583e75a9202c6e4661e69d0fdfddc5b798de313b593e7c8d852e6ba0e33d9905113debc4b6cadcb797aab608f27ca5998edc13c0a832c8178b415ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c239486e764aa5ee571dea37acdab5fe

    SHA1

    ce867fe7358616067243cd67a36ee15206fc7593

    SHA256

    ce5e333f866971dfde895bd4d3e34e4dba50974bfa8ccd089b4aa0b1faf2fa7e

    SHA512

    a6323d6f38d0449463b35b7ade1835d01cddbdbf285427d1f1f8ed2fee7ebcdf8de4e0614e2e980547db14af2fc50b830ebf0924281586d3ecd838c3a93932ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    019b8e9fd6f02b43d531d584b54723a9

    SHA1

    c20a8f824cc49c580260a7e61e6a59a6f6f12166

    SHA256

    8a0c4c8fadad24898fcb140d6c0952a48c14ca8d1b88be056a73e6feaebfb14e

    SHA512

    ca7205e3f617338d3ea8967cdd1b4b4f17dfd8b0edff39cee37449060441975045f36d78d23aff4e7cbe469b30e4fb403518c1123f6f58be47656e575e7d9d48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    758977facc736598ffbf9510ead18757

    SHA1

    be462d579462738ea835261ce01b3e7dbbc9433d

    SHA256

    75d01cd4f61cd71ffda353d47ad5c4047452b7c6d62b16d3f799ea34910ca0cd

    SHA512

    c5aeb21888df74b72ef04c00a3501489194049ce98aed9e1885097a51b60804457708b04752d370cbcbbd9cefa8672e9b0798972dab7828f597ee6a2eba897db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cee7ba722d5eb5725235ab8827fdaf20

    SHA1

    270cd08daf6eb9c7c9033ca9ffbaadecca1cc37f

    SHA256

    b3b17b51f834911b9b6a3387234de54f0583fd1949fcc7f6e8219b8802dbae13

    SHA512

    0d9bcf3503e92b08e6f3a2460ba4965d402a4d707d576e307065492ce7a13ce5753186a8bcc6e1ce5cca3cd13213c3247be40aeec7931edbb85e1698d3702ec3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19da1d73a50621ca80f52866c177ee29

    SHA1

    c186c836fe8df359ce58214473d386fba7f89f8b

    SHA256

    76c60ab9b3998115f8cf6ac427668e2a8d25f278df1c834da39c68b444a5d76a

    SHA512

    03efac5fa9f11208fcd66bb098fae7347a5651abbab7494818d866e434d71fb69f36b0f6b38d11168611be9dadb5c7cd1e3ee83ef2988be880b35d50ca0990c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f40d22b6a83de9cd372abb90e75e7847

    SHA1

    e4235747b8fcb31a66cd219e81bc35d7123f7001

    SHA256

    35a40fa3a2ba31ba5c7d47e223054b295eb40cf142696b18e52d405d31eb1643

    SHA512

    52f9cf741b35b33f5ad5e330bb49665fc8934df0f54543366bfc74fe7b4376e2bca8298efda99cee83f85337a14eb7754be96eb9dffb8b0d59a04d4c1e37a9ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f3ee6e026015a7847e0103e4a000e24

    SHA1

    55224f9477dd6dc489539d58537fddf2a2e6e14b

    SHA256

    d93a62afae5b110d044408503d092ba240a1a76a6d3ce0d7f1e72376ea012e73

    SHA512

    644c7e30d10e57edc6d56575366bffa1af4ae7db8ba090ff8a0e4c190d0e6e053fa2ab0d898c41bb95592fcbe98ef7e01e63087db5032cd63033b14467dfd059

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    99ab5ecd108d426330cb75403d7021ab

    SHA1

    f3ab1fc862f6ebcf440fb65939f225cb27713ae7

    SHA256

    79787ba2e726b7d55c2b5101ba4089e929b1eb165e050ec1d71df22305fa7f79

    SHA512

    63265f8c150e3b1810656567af03a6d38337a5e5eb6beca9332d25553ccc38af594c98cc92626ab46028a50fe7b33c938d22c9714892e8efd3e6a0062714a0a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a58fd240d8b6d5036a1fb2084c197ec

    SHA1

    47b512f4966dbf4dcad73f1c96d5e4967198db5b

    SHA256

    e38c7999e658a46581388163a7eb2180158efc1477b95ddacb7a1e340ba76476

    SHA512

    70443f8da1fd3b5657e2e39d00273b49b1b6f2323593661bea7cfb1440ed4ca1e4079c7ac7e488d23b8ce5aa3a5d26f8c7c730c120934aa49e509583e256aa54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28d585acdb84f49d9d8230b4a0f534f1

    SHA1

    7677f395c9fa44ec98d6b23fc43dd51db3d142c8

    SHA256

    fff8c77fbce7e57eb6a443a7b55ffde88159820eb09ec79dd823bedb602c378f

    SHA512

    2850b51875d123a8f1666eae99cd6f6986713019341224adb5add91fbbe817cbb2a7287916e23564da67ad1f509b56ab8d2b7d2629e0d079dafd00d5cc886bab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b2e8506954af651bb99973fae1b667f

    SHA1

    f0eae646e31459d2a3581ef050f5ec7a576030b2

    SHA256

    709839a18b7a7de60403b95a57631fb28c72c5f140a65a94b59c6ad82e46ce19

    SHA512

    1215995a05f67e31661d701e690a7ad9bdaa0c321688759e9b8a4e827a060981f6ec347421e215173d6ce3bcd9ab72113915ca3e1262283eefc522e1c314b759

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5939.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar59AB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit