Overview

overview

7

Static

static

3

3e2e1e6bce...18.exe

windows7-x64

7

3e2e1e6bce...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$R0.exe

windows7-x64

6

$R0.exe

windows10-2004-x64

6

StartPage/$R0.html

windows7-x64

1

StartPage/$R0.html

windows10-2004-x64

1

StartPage/Local/ie.js

windows7-x64

3

StartPage/Local/ie.js

windows10-2004-x64

3

StartPage/...e.html

windows7-x64

1

StartPage/...e.html

windows10-2004-x64

1

StartPage/...k.html

windows7-x64

1

StartPage/...k.html

windows10-2004-x64

1

StartPage/...x.html

windows7-x64

1

StartPage/...x.html

windows10-2004-x64

1

StartPage/Local/wk.js

windows7-x64

3

StartPage/Local/wk.js

windows10-2004-x64

3

StartPage/...x.html

windows7-x64

1

StartPage/...x.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    12/07/2024, 17:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    StartPage/Selector/index.html

  • Size

    15KB

  • MD5

    283a98ba9466718cb6e46a001e5002f2

  • SHA1

    46ac6469d958fcbb5156d98b6468aeff06e9d182

  • SHA256

    01086414fb97f745082c62afe145084555e1b293cab5d768236dcec74a2beae8

  • SHA512

    04e18f9d8ce0ef6b42a501daaf2757f1101cdd9bc99d99179a379adc44cb9f3ebd99ca524da66f4304e333213b981a1d9abfee3179a9e4334c2dd6cbd6102b83

  • SSDEEP

    384:77eO72IDW/jcBq/503ql3UUhuTYtlwrWnmsTdtQr510mAdiTiGZ5ff50+cl2Heie:uX8uq6lE0YaKCmspM2E5ff5Akvb3a

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\StartPage\Selector\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2408

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    099d42da0a706a0779d1d2ba40879380

    SHA1

    108e3ebbe324576f647bc1d066321259d4451cfc

    SHA256

    c6caacf2c5abd2c7c5e505231fac8f2e6159c004385aa1dbe662151a86a5d256

    SHA512

    7a02c6d689637c085cd86163209e7344e5173d87c3c64156fd60c3effb7f760bedaf7c773c928af3936a383d77e9938c16663fe9398bdbc2f16460c76d6c304f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f00325145a7145a87a49fc6bc49cbb9

    SHA1

    c61e63913c369a6be3a0a57a9ddbc0a53f080b6d

    SHA256

    77678b2ef517add9d246c3029a2c488c8cbbe9d7fd17cf7e6bec6cda863a310d

    SHA512

    73f3f68eca8e598b8b300d19f671b60e6e3f18094ead243b04e337d41286759997ec8bfb6a5dd1bee553037826dd0b7a60b0a9dff593f391911d870560818821

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3be5227a115c0ca759e993bd74acc555

    SHA1

    282c74985f26bb411a101ecd565655990d8ded3b

    SHA256

    f8ae4de41de295a2acca3bb217f898fc0aa5fac1d2559399bb218754faa1eb31

    SHA512

    b5acdb361664bee59138b3299bc9b7a87756490aa4e03ae74e583b5c98f2dd6aab0407434e6f1c369cd14824202188e89644b2c93f03c7c6c6fd8d6030d6ea6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    79d929e19f2ca6f662c1319e60abb59b

    SHA1

    8800aa242fc289898f5d2eaed8b42ffe67a75aa6

    SHA256

    135e7d92b0089017f825aedbd565aa0d35f4d9363665dda15e10620a1a7b6b08

    SHA512

    d53dc6e2b5ce0f1252c52e214275b0e2facb015cf255d53880c1edf25618ed4e967c26de0f9094d4dce04ad7e8f5a75a3c37c801f59b15aa7b42015e73c2077f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b859f31d1a3fed1879acd387914bdf0

    SHA1

    6f6287f046414273c0cd31a48ebd7161b676ec1d

    SHA256

    f955d0dedaefb28747beaabd5aba5e4dab5e8aad5e544ac7321bacd138219f6f

    SHA512

    c147f05c0d67e2a228d3d2ff0828698b07f4b22c129619514ca7a72dcc1783137402469953635fc907dc3057ef6a68c9f9cf5bc5ba757ce76948780a001d7e7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8b1f5e7991b5046c57f69bbb9981c6b

    SHA1

    bf07a9b5d0504d79a0c94835e37d50a4c1c12e03

    SHA256

    81dd13cf306dfe2b644bf36d56afb9e51085c6b8eb4d13474417bf730f1f04e9

    SHA512

    b45bf97fec6ed16ef6074aa88f27b80814e67db3fa7bb95ee578a7121c04f184eb155c912617a86fe160f3fe4124f8155f847574c1599eb5d97ca28ce1d9d9ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e4325e47240030dd0bb109580792e6d

    SHA1

    9050c976386472560c6b738e7df9b611dd4ba077

    SHA256

    cfdedf6dab9db360ed2f7e43c678c65cf7105c3dc3b7fb37093d1407b99e6009

    SHA512

    2bd90b774b4dc91a34c1721f32a5b4f362cbd8a68c10de11f484dbf4f1f1c7a289ea769599d4a4dafb709edcf930b384a16c560dce168b02c0d3ccde9e695391

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68d359cd16a077e150def3f37e0cfa2c

    SHA1

    871da6d5306dc39ee1f273e5483766de8df5e1c5

    SHA256

    65807b9a1166bea4db8efba2e52d409d5a43f7fe198d4981b3b61facd020f4ba

    SHA512

    1e167ecb4180226d82c90cdf1d8cd0ad94b3803f75d0513bee65add069dfc623ee3caf1eff63bf11a4466e0edfb6c11791d4fd696bc11ab00698498051e889d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aee116894736d708fc69d17c8e8fa81c

    SHA1

    7279920bdf9ac5b5a5b08865fb70043bdd0077d3

    SHA256

    decb607f2387260fe688d3fecb38db70ff276c729620db64486ab893a866b490

    SHA512

    aec3ab909a0631fa1ffc53f7cbfe8b30f309eefdb388734702dd8d6cdfbbd8980a5597495a5ff9b374e39439adda8ccfa65667a6f04447914c4879a926a25b31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76147f87ef89be9b3dc3216cf8af8d62

    SHA1

    aee2a973d3c8dd3a2b19b16d27e94c986ce746ee

    SHA256

    78eb7a7813fa73de9f77c90be8dcfce23a711de1590497f812033a6b3444d92f

    SHA512

    bc367479a3a81c247eb1c043e132a25441fa3b1e89cedcf15a847dc19a4d4caf0d1527ef014a9eab0a68f594e89307c47cdbfc60811889b7aa33d8be6fca86e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f062fa89260ce412054ff742f2fea3b

    SHA1

    a00a49dac45f8d82f97ef236e4aa9c88f0f96ab4

    SHA256

    881d5f7146f91f88355b7cbb41c250fef0b96241d03a2d8beddaaa79465aec82

    SHA512

    e8a244f932bd649cd0060de39b11c1b10576fa3ab47f667ac95e359f77b8047ed664cd7ae11d40a17bdad142d5afd5cbd4de6e25844dbb70c688bbd11f5713e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f03fcfb156906f376a57a180c444d89

    SHA1

    ee6a65c3db65d83bf75c6d65c940cefcabc90b29

    SHA256

    26c1a72b3e3af0613e32d4b5d301469327ec2a996cbfe67700b58f373d4ce9f9

    SHA512

    9c69ae51201fa097dd24e06bbe367baad1a59009929377869870ce1a7a68d86739fbbf8e5cd5d0e31877cfa48c8308a40de4290760d72d846bc666a4234ba130

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f77a20e747038e248391065cbd937d0

    SHA1

    032b9fc94b17fdf83fd37eee6b0ef4373e45cb8d

    SHA256

    79f9ba2f414e443a30beb7b0cf6a0b3991acc5fc20934d1791b4bc6661325019

    SHA512

    a01c4e9e505ea208e259e55200eca897538ce00ea734e21f713ceab86e44cb7a1b9313db6676f4cfd0de77f6f6a15281ccdb6387797d117d7d3980806ca355fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    08ef7ee1a3e8158753af0ff21c854abd

    SHA1

    7ef204936dcf8da890183789609fb5d12afe9184

    SHA256

    e7d2777c54d35c03e6fb9867b89c9955595f0b4d08b39397f9e65dcc2abc12f7

    SHA512

    cb8e564a9ae2dfad9c7b0d8a4a0b0ce8ec453cc5b10cfc5eaac16182ed10ed966a3c98c6a76eee13ee2b29166c514c7b0bc07399d9677a8535264d4b85508270

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0264368735ed77efc5e14a8d26e9020c

    SHA1

    112f7ca9993b2efdf37422bab8ad130885550e9c

    SHA256

    f895b4e069650c8b428e841ebaac32906d0e21d256ccf0ab43801c32362d6907

    SHA512

    b6d814ddcbca495e20bdea6714b519b82207c0c979572f8c5dc01cd4cf380e84b731fb180e545985ad09865e1aadd4017257da5d193f201bc2e6dccf6c053d8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53abc6e10895f074325783cf839b3c54

    SHA1

    209ab1893fcbe88843c1f5dd5708774d5222c352

    SHA256

    37dd728490315abb62bad4e0ddb45cf51b49c9a51b9b78f49b8771d9689e3566

    SHA512

    d5ea81f32ed1680127c47759259ee9c68b6e3ca6d910982cce216ab692cacd08e45edfb90bbe99a1fb6e355529813ddc7d16a5f88d57dfca7b46aafb096044bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34ef0487939a01b156f07bbd953277ad

    SHA1

    187506811d72b8102fd4f9f9c86152ad7497c500

    SHA256

    6445c2f161a05e6a5222b16b0120f32851ab9c4f1190916979dd8beb7923360c

    SHA512

    bdd6d315556479edeef2d8e009d924aa7c132d36679091ed3c302f9beca4e441342134300bb78ee354a73e07756b1e1d0f40ee20487078d9be106e9154280a8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c80ac604444d5e672c4abc70cb604fc

    SHA1

    38f143e5dc8e15141362067ae37ae2ede8ed9dc2

    SHA256

    f182006db5a607763bb23daebb8757d643150208003487e25b608c7666185f75

    SHA512

    24866be7be3c0e2f051c8801dde7b94af0741d896bb6378d0ad620095320422b2271a0d4e246444484b386aa9978c1bd57ce98939b554aa79d8007f62ee9804e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec4f07bc8585bd6c3d5929435b895759

    SHA1

    77b8b37d5643057e836595070db8e73d8cdda789

    SHA256

    7132276bb2b151cb52c975bf469f23c7f75c6c161438aa07bf2802e2f899d1b7

    SHA512

    5a704b9a8ccd06ede2b716724b800fd5f0a9a119a66b40b2cf16a19a233db1e1c97ddc709bd06eddb15bf35f76c4fd315d1873309f0e8b9ec88fc38bde6fb97a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6bf0733f4d74ed8e5bf867cae22cb121

    SHA1

    2add1a68aa5bc1069b4dc23ff382e7bffa4a47ed

    SHA256

    0ad026078d05841336ff0855740b76256c456ad7b4ad20248e26b5e8632cee1e

    SHA512

    7d60e41b8b5d560880c2d00bd80a512c67808c50172493b1793ffa2364315558264aeafca4a5550721fecab498031ae5f66ad3418d8989a2451d17217ebf2756

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98365af7c395ed2717aa114315c723d6

    SHA1

    d519b5f83872e1d91e999d858c4af0126db6a8f8

    SHA256

    699626012b878884636e13e292af6a36c76dd623cc954029699f9ccb48a16d63

    SHA512

    c647387e24b8fa216bd3b844d030a3487e22c50ab609871db7d194b69eb2ca06685a598b10c601ac863b3e6e438f90bbaf90c8f578bb61c02a9741f7cd93ea53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10f6754b9c941b0e1a632163113ed308

    SHA1

    837dcddb6e9cf1b0899a9355140576ec7d47329c

    SHA256

    9524e9c744f71b59c65f1b570d7c683c8a8db05f8fdb9a19ec4b14f5e95e2762

    SHA512

    a9ef576837c08500f7da42728afd145bb6531b3bc34e7d862256ed48534d2cbd16589fccf151d2d4bf3e679dac1036a5f6b0de86ee4c3361c143458cadb3fb1c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1F7.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar258.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit