Overview

overview

3

Static

static

3

456c5d280f...18.exe

windows7-x64

3

456c5d280f...18.exe

windows10-2004-x64

3

$PLUGINSDI...UI.dll

windows7-x64

1

$PLUGINSDI...UI.dll

windows10-2004-x64

1

$PLUGINSDI...ib.dll

windows7-x64

3

$PLUGINSDI...ib.dll

windows10-2004-x64

3

$PLUGINSDI...ol.dll

windows7-x64

3

$PLUGINSDI...ol.dll

windows10-2004-x64

3

$PLUGINSDI...on.exe

windows7-x64

1

$PLUGINSDI...on.exe

windows10-2004-x64

1

$PLUGINSDI...cr.dll

windows7-x64

1

$PLUGINSDI...cr.dll

windows10-2004-x64

1

$PLUGINSDI...er.exe

windows7-x64

1

$PLUGINSDI...er.exe

windows10-2004-x64

1

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...ns.dll

windows7-x64

1

$PLUGINSDI...ns.dll

windows10-2004-x64

1

$PLUGINSDI...ce.dll

windows7-x64

1

$PLUGINSDI...ce.dll

windows10-2004-x64

1

$PLUGINSDI...ry.dll

windows7-x64

1

$PLUGINSDI...ry.dll

windows10-2004-x64

1

$PLUGINSDI...te.dll

windows7-x64

1

$PLUGINSDI...te.dll

windows10-2004-x64

1

$PLUGINSDI...ch.dll

windows7-x64

3

$PLUGINSDI...ch.dll

windows10-2004-x64

3

page1.html

windows7-x64

1

page1.html

windows10-2004-x64

1

page2.html

windows7-x64

1

page2.html

windows10-2004-x64

1

page3.html

windows7-x64

1

page3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    14/07/2024, 10:28

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    page2.html

  • Size

    756B

  • MD5

    2296f5881c5cd62004abe5b3a48e6077

  • SHA1

    d3e63807b3f8611d81020e6d6897f22b784f4c32

  • SHA256

    25ea8971db08a3f671c47ec27ca087243ce4ce2380e7948a408e7257f954033b

  • SHA512

    63433e89ae784d16e1bd82cde822fb3c951b4d42ddbdb7b4b0a4fb316b24a0fca8b205f47c2e1600916a915a13fef8cf1a92d6e0b897f42f0b1194315570b9cc

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\page2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1908
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1908 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2688

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9aad071b2f709d5df9945ba9df10a214

          SHA1

          cb4a982af45bfa668c4b5a93345754626e3fc8ba

          SHA256

          c981c76114177f4b21a8427142d5a269d59ab7a7922dcad8bf1c137ad8c9c67a

          SHA512

          24f67b6d5301f663c6fd707c637d709f2f2bdd390b300e9c054b5ce8087980e8f5d522d07e4f064de5f8b1273cdbac51dc332c23c3796b6e6c1cd9972b5c13ed

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7a74bade89000b09eac69cd7ce8da03a

          SHA1

          9bb3d0f07b6a0b76883a9c668d132dd475ae991e

          SHA256

          0a5022918f8e3b3a9727d3965d9e528bec5e6098c2c401c915a076ff379099e2

          SHA512

          190d7c7943d1b5acdac642dcd56991d3f4ef663d9f4d8eb523588ed839675fcad1e4829568293b6b608445d47d5d126740ae4cf0c7666d454c3129795c758d03

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6e26f44f734340b148a095fb44c8bdcf

          SHA1

          178b669ed61ea9b82216a672134f765fec1490c8

          SHA256

          81694e0d42dbed325e4fd46bc8e0bce6825e47cc283328f72028bf8651783ceb

          SHA512

          0957beb7c5e60543f4c4e85553d5443375e9456eabaeede7cf1c72b0cf22e34b26e4f1de2fd6bcdfe765871fcd3441014188f4013b9b64eb5b3473a2930f03f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          02658573e1cb345073f8b9ed2b888fc6

          SHA1

          90dd3070f905158faa67cd76a9b4d4d3f7aa928e

          SHA256

          67b11ab409cdae5d98a2792dda679e1190761595a29caa30d2e3893b42f0e2ee

          SHA512

          c11ba379b89770b48ee3d42d5dadf2344090ee46a79eeabb2e716f853b9d1f74c38932c86efef9eeae4b1b11b5f97da227e40350b7cc133b11b2ef82c5e3d903

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          669ab4a7178faf9faf4b2f44666d476f

          SHA1

          380b689557a80a19e0a5b0ebab65421a492aa008

          SHA256

          547e048d8bdf095dde334cdb191f5696561e4d7c8e9fb6ec00b3e7c6f26b50a2

          SHA512

          f280d1c58402f2759a20e6d09f099b9e77ca3f17c9b2db175aedcf174363f9b666d17a6a7d0c5a947b7005ac0f9ed4f0796744276d6c87e70400c2b1a85165e7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7379e981fa31bf3dcf78b230904bfe23

          SHA1

          90fc8050f175d391f5b4196ce2621869c5525d28

          SHA256

          bb044be6c278e29cc14a7f8d4b99c3a9a2a2e24ddb93cfbef49532b8b4515981

          SHA512

          5bbe81c6569d39db4307efe6820382fb49dd5e495143bff04c284725770f2b563c08ccd26b8d39caa5385fd7196ff4d9b19deceb080a64ca6c749aab4add57ac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          49c5663271582f70feb138b736a19099

          SHA1

          3b2d444cb43c21fbcbd0c5ba60e976f69b56d2b6

          SHA256

          de059bdc174f63754cf6fb929e7f08e12b9648d256cb9200ef7a7bbf01349a49

          SHA512

          87ece3cba7e9f6da03d8c037dd9ce0259d374a1bb15f860fb7df4f45029c03ffacb45a963c85290756e44ab980cc156faa0ab9cb1afc815d08b770170a1b0ad6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6b94a89d88cb33db941f7b2aae8a5405

          SHA1

          c7d8ba67fba013c00f82f2c3000f72a2a252344d

          SHA256

          57537ef447201264c0f254b45f1fd606648e8a417d38ac1f7ae810500513e38f

          SHA512

          b0ae1e6066891ebe0f0ce8753f026540619542f922cfe55c0c7431cc828c7acec4dfa6042e672e52043d64caaa0ace56597df6aafead28696c57ba0d788cd4ed

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          baa0a30e2dd6d951bb70abd618786a08

          SHA1

          a29c431d9352846f88db27158ffed3e81fce0df9

          SHA256

          9fda38429185c5bc6f8a5638a9e9fa97a78616044955b39eadf894c5edb55dc0

          SHA512

          b69d70e5fb14c988b4413e7edfe9ef33d24ed99116880fbd597aaee305e368f44840e9c947ae41277c7fe08177b3de74a6558821f64dc6bd14a143f5ad6a252a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3c1d4f92495d982a73b7c3e3157297c7

          SHA1

          ec000c00d22183acedc3d20e71bf07906d1cfb4a

          SHA256

          5844a0e60de17e2d644049d1b329778b659729334b4f881ff6b6b740038b47ed

          SHA512

          b60acef24838321444d2f2aa7180b192d16c01b9d39e7ca30c06379cb0286ab50d5f0987f010f4137b960fdfed3d17bed099bb8b0508b4952d806604fdedb91c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c2a5a4140b502b1155a9c6f82324747d

          SHA1

          7e07bc354d73d7c68c2fd0285d8ef781f383d10f

          SHA256

          c1e18cc5f00ae6cc836d852117f280255a6cb90e7407e879410da418a438bdb2

          SHA512

          d8000bfa939c1c9195cfd4a4a9e5a458d554afbaba989456d2cff88c0ff582ccfd909923d05f369b0ace6ea146f6b882586c347adbab948f59ab3071227b8faf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          db5f8790cbce85adf77bb216de93c03e

          SHA1

          2c6b69dddc23cd7beed82ac7ca34a38ce13a2a9c

          SHA256

          b9a50f3c8c8f2a4f85a1aa3484ac10dfcbb2c84afbeb88315544beb3ce508e7c

          SHA512

          aa39375c791e5a440329427c474d6f5b713daab3a21c75c722a434e43ac5f20cb6ed94541f3180a4a13e71bbdfb9218b2b02cab3fca96def3c6b5019fabcfd32

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          513a148eaaedacdf399be45645700195

          SHA1

          70b937e4759cfa8621b6d56a92f09b2d88cfa9cc

          SHA256

          7cf5b157a2e46dc8ea23e98ccdce9fe06cad25350f0f697fa0fe87488a8b642b

          SHA512

          e3f7b95bf1d1d3f6e852e660c55fd8ff477d71b508bb4d3f2aa6cba79d6be6dc808ecab01b65093c33531926b202cc2c2aa7397983e1e141efbc6f306da92c2e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          81c2f1d5ad23df745fab5158be76d915

          SHA1

          7b3957f3ecfb17c1c260153787117395a590a4c7

          SHA256

          497e029d7970bdd12afeccf86c024467a5f42eba035857809fd0e1f13ac726fa

          SHA512

          c5645b5b7073b58528b6710272fb0ea6dcc562b3c09646c35f51f605e0bd7aee4d9af54f80dd2efc731993dfbadd4a67c758927da10633271a68750c274b8be9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2f761a56da7c8988a5293b9bf5fe57dd

          SHA1

          0dbe320483e0d2f95f3cd8affbe3b841e53eac63

          SHA256

          536c0a444049a3abc9cb9834ea828e5503cbe4d52799247af66bde85f1cec77a

          SHA512

          9123494262d2aa1ea896eb0d51e47b7ba08b4a47285bf7e5f7991c1a61228c6aea87ca49af11d7e6ecdd1b9265d6b1986baa192dbb76fa32b89e2159de2fa32b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          43a19090364f6fb04c5fd35d339ba7a5

          SHA1

          8c1f4bc1ffd21c5a1053de65e7c8b3494c77afbf

          SHA256

          ef059d47c991bcf9ab9d8a40cfd08c96a9399d5a0d96a479538e8b95cf2f9821

          SHA512

          9f80a7e034c4f8d3970850d4a906b9d159e43652bd55fcdf05611ded22481b34af8bcb69c240c81b9dd1f2ee2bef73d848b3d6c13abbef9210d1c2953451d494

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          698f9fe2a057e873b1415f9fb66fbc7c

          SHA1

          95cce629ebe8db5fcb8ba4e99ff0c34a1f8fcc46

          SHA256

          40c2ccb5f7cd4c39473bb8496cfbe29063a040d0ec290885e9965fe677b69b5d

          SHA512

          5a684c79e0a3da079650e808a09f1c8794dd08339edaccc62d7340a17cc3847a306ed2de8a1f764934ab18eaac246229f7678eb545ce9c6c378f55cd28f8b5d9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          82af53caab79fa2ef9b4738bd1475e3a

          SHA1

          6b0f455dffb4a4e1deadb5d47004c4fb03c25f37

          SHA256

          856c35dc4c37cb58427c51ca14b29ca9b0d683c883c47b16542c3d0cc34e2599

          SHA512

          019f52e6c3b0756fe93857c93a1edb9b81ba647e17dc3c54b3b0d5d19fc35b956816f21127ec5c902a28896ae9917e90840745d4424fabb555f21afc29502ec9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3142d251d9262a11ed63ec97056deb7d

          SHA1

          ecc31a781ceca695c657c5ea0d944a3718b1482e

          SHA256

          7d0a6962471dc44c7e80a21b79ccb19752a94cab284a454ff6bca9df11c8e2db

          SHA512

          54fd0e6580f6690045d39d91b1434873c157da2374ce66a7284f3f964208c5970183dced9b6fca6768dc47ffce87cc7a67f8da2c3146347d6f6fef76b6208d64

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab18A0.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1960.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit