Overview

overview

3

Static

static

3

4c4dbfa3e8...18.exe

windows7-x64

3

4c4dbfa3e8...18.exe

windows10-2004-x64

3

$PLUGINSDI...os.dll

windows7-x64

3

$PLUGINSDI...os.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

GDIPLUS.dll

windows7-x64

3

GDIPLUS.dll

windows10-2004-x64

3

MFC71.dll

windows7-x64

1

MFC71.dll

windows10-2004-x64

1

PGL.dll

windows7-x64

3

PGL.dll

windows10-2004-x64

3

Usermode.exe

windows7-x64

1

Usermode.exe

windows10-2004-x64

1

advapi32.dll

windows7-x64

1

advapi32.dll

windows10-2004-x64

1

dbghelp.dll

windows7-x64

1

dbghelp.dll

windows10-2004-x64

1

doc/ChangeLog.html

windows7-x64

1

doc/ChangeLog.html

windows10-2004-x64

1

doc/Interf...w.html

windows7-x64

1

doc/Interf...w.html

windows10-2004-x64

1

doc/Interf...w.html

windows7-x64

1

doc/Interf...w.html

windows10-2004-x64

1

doc/Interf...w.html

windows7-x64

1

doc/Interf...w.html

windows10-2004-x64

1

doc/Interf...w.html

windows7-x64

1

doc/Interf...w.html

windows10-2004-x64

1

doc/Interf...w.html

windows7-x64

1

doc/Interf...w.html

windows10-2004-x64

1

doc/Interf...w.html

windows7-x64

1

doc/Interf...w.html

windows10-2004-x64

1

Analysis

  • max time kernel
    132s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    16/07/2024, 01:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    doc/InterfaceMainWindow.html

  • Size

    7KB

  • MD5

    cdb8097b34774a3926f4d94063f4733a

  • SHA1

    551c314a5d6af028b9b8e5fc8b119dc5cf590975

  • SHA256

    691124c40f7c3323fc6da212679c463ec7abe971889b9eba8a34e41aa3b421fa

  • SHA512

    82e845a78d4681327956f19f58e9d78183ecb01671570f85d4804b7baec85613cea22ccbf650fd621e45aeeae769551fedd4623ca73d26215623f0ed74701d15

  • SSDEEP

    192:ScQygftoTtJxLFgKqLbJ3k4MIHlOBUbFkRyvtkp+Reaz:SjloTsU1IUBUG4vth

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\doc\InterfaceMainWindow.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2892
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2892 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2384

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    301711321144c15f4a18653ebf3b5eb5

    SHA1

    d178e64b9e644942cc4f2ab80ed53f0650c16ae9

    SHA256

    e0c885ffbaaf32091363acd257413708fe4bf61d456cbec85d4890c569095901

    SHA512

    cf8350f3d1bdf5d42de34b0ec3f5419a496bd1e28a37558429118ad655edcd276eda69e85a045e9eab3370d6af51e6af55b5aea7cd84de43157e8ec43c9ee8d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d031cc6d503c9b9d3da32a67d63bac4

    SHA1

    5bdcd62f1f0cb5f01813cbac616893efe8e0a24a

    SHA256

    cfe97442548c22015d263cc0641172e699ec4f936f44bc4e9dfa8a2e21258d4d

    SHA512

    b46c45ac9529c589301a8412afebabdb0fcf79b08ee2e5b0da7231c291774ec1e28493720d57020b1671f5a54dff125d6952c4008bee787c3f0f8936fdb9c31a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44e96720b47cc803483fd2b671b97f49

    SHA1

    ca25e9396c57173cd12046f4e79b3a82b28c61b1

    SHA256

    4126a2407e948c6880adcf3e7f3c39226748cfceec5566c09d009dea9dacce45

    SHA512

    4633e1356725102aad7b9c7e75327d79546261e1c26726b19fc31bd3526a0648be7b6849d684ff9edd8e0d1508c3df08e8c5b40da48ccb7e6ce0b856121f9020

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7398f01f8ad38a9dd37bcad99b6c9f1f

    SHA1

    9172fc686a5e81c2c2f12d6ecb33d79cea3f4eaf

    SHA256

    e1fd597faaa3e82eff4b325848556ffb3356c2e4842ab87cc4c95b4c9d758e3e

    SHA512

    9b1ed0ab159580b0b81b08e90a1d5b4b0d101d7cee06a81304cb3b42cc0fa0b0089ae702d11c2b57d4ed7619c40332ebf3fc3a42b972f9bab7e9479766f1f936

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2d4f9c66786204dd533295057ab2a37

    SHA1

    87f07f795d4ce95401e0e8486fb6e3841f293043

    SHA256

    85e4643f487ef69ecf13a9600565b7af3e74161dc31ba607330aaa6082e31803

    SHA512

    3207f5b16fcddab6e4473c6c95987755866558a804b1715a7916d57704d3f6cc60b04b8c0b0b2c8ae61c94297bc7c830ae00a49450cf03346df82831b32cea89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6fb87e9c021086590514ac16a7e9263

    SHA1

    03f71d9441dabcc3b756c2becac7e7de9b74ee8a

    SHA256

    3de101b38c38cac9932741988032cd41a92fd95f3f58e8dd901e4793d666aa67

    SHA512

    ce968ae972a7134da18ec85621ab44697eecad818be730ba73ac64adc8977485aaa177fb3b048d307726ac2f92fb64f013a494a9e89081bb95b9ef4773fcdccf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5bfff63a9dfe9c20d542c36d4442844

    SHA1

    3e4d7d1dd528d4da6693be0cdd9a6a16194f0deb

    SHA256

    4fb8098c5b8faaccf74d40dfdccb0ae58e9381785cc802cb972804e5738cdb72

    SHA512

    83ad215a7705dfd112f979495f0a8034df33c6079754f05c2b31b7e1f7f05267de009c0342321868d0838b62761c0a923c3f9822e8800d07b94b2708cc084b40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8788e2bc8c03fdd6f25b0e6cd72f19d8

    SHA1

    0356be2705d4eef29ee0b365af0b88e37745b80a

    SHA256

    10e0418c0bcf1dc04dae21eb938f6efc9fa2e8dee68975b960ca15609cd050c8

    SHA512

    c281066a908d92bc796bd6f3481eed26651fceb3c1128c572377bf348a46b5cc8f442df267cdb2fa43790a905e83f7e6b8788399a5eafcda06d610e5cdc4a3e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ad6b53468fb37048cef3bf461e75145

    SHA1

    09656a37ffd53f11052a6417821368a667cd9ef7

    SHA256

    77f2582139f4835331009d98a1e233a35a6ee23e6265e1afb05ba6b9558dd315

    SHA512

    9cb41c75edfa8d0a784dd0f86a4b852c3cf2ee35e4b17779a8ccb31f271829d215a6b745e6e32af9da953d7e61c6702fbed6ce1f27b993cb83ed3326e0086b4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d35d8e84082eb40515bb9ead3ce6af12

    SHA1

    066541ccc04901e9bedb4ba56c189e6cd63d96d1

    SHA256

    5b48beb65a9d55fbbac473c1ba1840fe1006fa316f43806209744c2e632dc535

    SHA512

    561cd78e694eb9692adcba832fadc9c4b5c458c88bd263a41d50a374ea7bb1e6f7d95a7f31f58053d169c665325c006b6193dacf390ad9f0ad6844f7202d1353

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abfc9cc039af38f9e7bb5e5c8e84da66

    SHA1

    4595e61d70a370284ffd66e76cea16b91cdcafd8

    SHA256

    c36da86e37e96e1986cdf0d801acf9aa848db09debad05540f4684c5cc77be3e

    SHA512

    ff33c4fe2a50db5087e753f5f08d854d1cd983ddfda4d9d04c7506a7982f80ced41d2f07f18e1cbb4929a016bac1a0da5b2dfcace977d1a175e337739d49ef51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a739e55663397f8633b989329a5083c

    SHA1

    c3b7ce7d06d11ccf2f48cdd30f8679d56c6c39ed

    SHA256

    885e778f7564d48168ff09fccd784e450c7b571be904544a7abaa995083db20f

    SHA512

    4a1f07756febe108e45e5502d1e29474ec36051be8b20cd4ed302f350bbfc731a1d1f1fbf2aeedf4bd76713f0a04665d0411a1da3ac1e63e9418f0e5431f6edf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6679122fe6e5cca96ce2957677611cab

    SHA1

    2b63789bc8e68c3138e7d2500fa8dea31d72e561

    SHA256

    ae838d3c48685073ea229232312c5a18011e34e74cf4c07ba717503c195461db

    SHA512

    04b2d8eac8c64030ac0f79d98955f8b2aeaad60e5f781c94ed2f3cd4be5626ad213f0aeba106282a68d543539d1b6f7e28d190f993f38b1773c52620a0f56b4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12c6ac22f5de14a7c63e368780205f26

    SHA1

    cd44e3bb508e2d2484f94f7df7c3051199a2e2b4

    SHA256

    65bbeb846f77bbb1f576137d7d3926a202d8fd8bfaca22f04a713bd9d9551677

    SHA512

    ea64da42b297f7c45bd9f366ffed737d864ad566c05791c996d9a0a5d46dea65ce32d4a8f2dfc8e79e5ecc367f03c2284ad45362838953473bbb0aca4ba9591a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    694d4d5b2db9e499831e10b303d1cea9

    SHA1

    85e11a9d9904f525587757fdc636d76fe5ea842c

    SHA256

    ef314a6697ec914377f15d60ee98ca721411ac43cb435264b2c17bba7a7cfcb7

    SHA512

    9084e07fb61be7a2537e7df77789bffb82b3dfc2790da7ed9b97c4e72f2d3c3317c813f8747c5fe9e9afd2dc0a17c2288c27ceb3ac02747888365f01ba375101

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f55a0d548a4ee5468e1461d761860052

    SHA1

    0f5cee4bd63928a42f8647945a74b68d8104facd

    SHA256

    e42a5d956bda0c99fe3a569c7a95606fd448d1158191046431121e8fed6e380c

    SHA512

    4fd529b9a7d3261537405a0a99e8227209765fb326f15108d0c36bf99a2a8fb3cc44c3da5ea9427761f0f2dd0e27798719d36ba7825ad1a7fd93acc36a84d836

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a1e7ed73e64de5e5a4b83d60562e2ab

    SHA1

    f4eaf18e5554276793dbb7bcf4b684e8716fb1ad

    SHA256

    1e9207f448fdaa808c1f21404382ee75abffae42f994d24111ee6867489c7975

    SHA512

    f67b261ac2e0517dc39f60ea7d5aa80d692f0e10177c902bff83476bed2ba769991d83134dae80c002cde70498a33526025dfb0dd3fb80d804bba413fb6e8e24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac3a310e1fbdccfebc999a7ada404a3d

    SHA1

    95f96f5962e509915c2a7b784029a9de46bd7142

    SHA256

    5bfe94c0aea39f88fd260117b2cf56794d9600dfbdd423bee55f3337d52feda7

    SHA512

    35f2d3a5baecddf6061e3679fe0b6f64d588fa4f1b4a451f403f893b9d35df1be274aae6ef6c80aeb3ec4441cf399037178f732b5a27110b0995974680cda9b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0266f5e0241edd4f48802df4bf00a5a6

    SHA1

    bce60a90f7f36fa2a0347664ea251969b760e4c0

    SHA256

    287b37c60379d18ad9ebbbfda35ac58d6580a3272b2c0fb8bac881c80c8acd6b

    SHA512

    65fd0b772c32c7ab4ccfa9a461876fa1e4d27ddb87bb77be7f825172e698f1ecb7cce811036948d57562c16681e53a386539c322a7a1d0ab317db69a081de2c1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA5D4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA634.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit