Overview

overview

3

Static

static

1

千僖网�...d/1.js

windows7-x64

3

千僖网�...d/1.js

windows10-2004-x64

3

千僖网�...60.htm

windows7-x64

1

千僖网�...60.htm

windows10-2004-x64

1

千僖网�...ow.htm

windows7-x64

1

千僖网�...ow.htm

windows10-2004-x64

1

千僖网�..._2.htm

windows7-x64

1

千僖网�..._2.htm

windows10-2004-x64

1

千僖网�..._3.htm

windows7-x64

1

千僖网�..._3.htm

windows10-2004-x64

1

千僖网�..._4.htm

windows7-x64

1

千僖网�..._4.htm

windows10-2004-x64

1

千僖网�..._1.asp

windows7-x64

3

千僖网�..._1.asp

windows10-2004-x64

3

千僖网�..._1.htm

windows7-x64

1

千僖网�..._1.htm

windows10-2004-x64

1

千僖网�..._2.asp

windows7-x64

3

千僖网�..._2.asp

windows10-2004-x64

3

千僖网�..._2.htm

windows7-x64

1

千僖网�..._2.htm

windows10-2004-x64

1

千僖网�..._3.htm

windows7-x64

1

千僖网�..._3.htm

windows10-2004-x64

1

千僖网�...ad.asp

windows7-x64

3

千僖网�...ad.asp

windows10-2004-x64

3

千僖网�...ge.htm

windows7-x64

1

千僖网�...ge.htm

windows10-2004-x64

1

千僖网�...ms.htm

windows7-x64

1

千僖网�...ms.htm

windows10-2004-x64

1

千僖网�...ow.htm

windows7-x64

1

千僖网�...ow.htm

windows10-2004-x64

1

千僖网�...ms.htm

windows7-x64

1

千僖网�...ms.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    19-07-2024 21:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    千僖网络音乐程序 v4.0/Ad/复件 mms.htm

  • Size

    197B

  • MD5

    8ae63a8079df5e6aa9614b3c238f4b67

  • SHA1

    1f1ebbeba3be0f0a7908f7a4eb3fe218c6bb25bc

  • SHA256

    187c31b5ba54eeab0e3ae2dc8cc3a1b24d5d80056c3f6274fd0df0017ea606e4

  • SHA512

    90d708cd902dd6cd2fb0e5435644cfc09781b3f9086f515a67337be8e73a91b97cc7eb6a89f1523b37a88abb074ade1de5cc58d141c4d06a7f9adb4877d5fa56

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\千僖网络音乐程序 v4.0\Ad\复件 mms.htm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2728
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2728 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2712

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86fc149142f8731f36c911d0f7776e8e

    SHA1

    2d6f80e211c0ea90e6cb89afd4966a8db14ca451

    SHA256

    d12a2f2377b6055a3e8ab406c17fea253a1bb75a4a24b8e950859ff997370701

    SHA512

    80aa42bd54912f584eee1b6ca9040e8d17db26605cd07bfe679f8cf8e5b12748c48b93eb0d517b477211b89e67b6c594b54f534f2d7b62889e1454b491bc9be0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce9e9f3f0ca846ec7dbac30d5a807847

    SHA1

    d2f97ca0ab4af5a3cadb5cfff970ed2241bc976c

    SHA256

    1e911d401ccfb04c8ccf7cb00690d8af0c347df763bdbaf67066d8e1445ed191

    SHA512

    137552aa4eb45fa50f936211932a92d51254c667ce86352773f07b110a79af6a1ca55bc00cd661d0fff6dd4e304e3db3e8862d6ee316ffbbe1374a565723c54c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38cc7f06851dfc51f5db97162630c623

    SHA1

    f29161794b05641f4969a6e6a54c5976c8728fb0

    SHA256

    7b5e67659c8d367f887dd7fc25b4a400be8e4fbe78e573336dbcea603127d782

    SHA512

    a1a7a01ecaaadfe3f4f10de3cb58f6f0c3801ccc0e53757fb01c5e7aa320698570f406adb47ff7d9060afcc956e3f2869976e100123934d575fbc133ac1ea0e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12fc8deff03185a817411179fa54675f

    SHA1

    65a1be16aa2848f14c1707cad033dc7876b32005

    SHA256

    6d208443983e3018eb45e9559b95913e8c6dd5052c7801a83c43c0906d2d3bc1

    SHA512

    402c81b3a7b9337b22f790b7d4ff809a1e60a7820502b41d0f7cf8d9cdcde6751d71f2be949f182fb829c5a8506f97b61dcc7402a58510f818b127e2b969ee01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9054dfff5b0b33ba5da6e2ecc4174e85

    SHA1

    d0f99802adc6debc4e1e388b89afcc527812835b

    SHA256

    f57e64665304519323409a1456a624cb6a3291d28eddf4b534015de3d7e6d994

    SHA512

    8eb9311a115c100c9a0053069d56e8ce01da78f2562cd84ad8de200ddf0578ecac5fc154921b2054c21dc28f6315528bf6b84cb49f6171ca0128d59a9ecf738d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8006cd3b3d929f2344f24988c8ab5425

    SHA1

    60e91976e3be996ec133ac92fb9d6bb14228694a

    SHA256

    682f4b35e204a82a3f5978ce90422f63bcb12f8bc56efe94a6c9ac6c012fe235

    SHA512

    86cf015f7b90383265aab476c08bc6e2e9dd249a8e7c050cef871748ffb56aeddefbcef8bb0a293d0897e5dfcf6320e7a0cba67a4f6eb911f33b526799a001bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0a4921274af7e9723ed0733fc7eb05a

    SHA1

    9ce5c9581c6e6ba8bf4e54a09a1c415937baf837

    SHA256

    d1105f0984c3c5d5cff5f7723cdce1f73e463d5307320fcc3235c0007b15a099

    SHA512

    d211e0fe5d7f3c0125c3cf90e9702e79b7f08fd45dab09d914c339ca956302a8c5d50c9a54a135688a9a713d7fa9fe298326efc47bdcb3832219308da8e834ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    18eed9b6f36601209d6a42cac98a7e4b

    SHA1

    f4537a0919fc3defba5b5dd62bbc59f378c17799

    SHA256

    40f506b03f2713eed389a5c1e90c5ebea50c6c8cf33c16e5b3fac5cab01e9e74

    SHA512

    3ae974a6a3f0643168c61d897c008ed4ebc9c46420d2cf6598dd1a09b3776c4d3beb627be93ceb6ac746c1a15ac023a18d2202c6832e127f96a63d9976e963f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6712cde45b0950b8b95451d3b7e4d67a

    SHA1

    f49c3c19bafd8fd785901b7a744ed85b7a4232cf

    SHA256

    3565db286f8010032206ea2c65030542b780f2b18aea80cd49505f3f64cffec9

    SHA512

    4c8afecbf739582fe4a436d2e5620aba2d7f6a52b5376b30b39c4d1c9113c8d8bf09a5c8664897ad3b4a4721e4c5dcd693b0ec7a94dcdc08d5c8154b09c696b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8eccb9a5d3d8a4998889a3503004e09

    SHA1

    62c14eadd4d9e34f685f915744a62aafbf3f5a7b

    SHA256

    896329b01705c63324199b2940c7025994f2976f91243136410d5bba6eb3fc26

    SHA512

    822c99c7adb27251749936f88ba7c9c44e64337ac70637b4f81a3462054525656e59c56b43f13bc2c4c84e0c262fc898b60c1e50381859c36bd9177438cff0a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b0c9c5d7980ad2e892304618c65ed99

    SHA1

    7c9f20d73492579db9abbcf724a5fdfe31e5bf6a

    SHA256

    2bb5f51739a8b66716450ccc74ad8b231222a5c5927abdd278a67b5ac9af0509

    SHA512

    3fa6d2591e41800968d248ac79a2a6f66608603886628e4067147066815704f8c0e14bd43baf8588f30f7667a2abd534f39eaa436ef275d94a85ed36925c0877

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d3f848362afebf7779bd00da4bb8ce9b

    SHA1

    04d8d4d7b5f0ce33d31102b1e336037b1dad1c5a

    SHA256

    54b406250abb25df6b5af83f5a0edd58e9512c268c0553c08b7c7e1aeae28515

    SHA512

    94e0467606a552d681bb683daa6e669cdbb83a343834e8e6635f6cb4d7b52ce999cad666e70faa86e0dba935bcab7d66f079cc4e42b377a00a5b47f0dc27fb5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17b8c6c481920790f8ea2480a747bff0

    SHA1

    50227dec56b7d139a20d2cbc13b9055ba3ce091a

    SHA256

    75083a17f6396ae1325bf87ff44feaa67d57e3f5305e6f696ff14a6c7ef378d6

    SHA512

    ccdba9fe68981222d49962ef7d6b7647d68fe5157ecc40ed7cc7ffcf227a60edf8592b64d0c819c7312f68bb801227507c6999da9bbe0564f55929d30964895a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90ea79874ddf29a3d268e6b726f66c57

    SHA1

    387308307fa714b7451c4b2b49cf0439aca39506

    SHA256

    9b48a0130c833a146f8c80fb8a459bb5bd6069bf269f3181289d4e849f8d1744

    SHA512

    b1b16a90109fb33e317bf4f9f39bd171a7ebc79aa6f053cd5ee5d9aeecde7d8db7307f6e6a56d6db98271ac611210b3302ce308488c349fe6517025c4cd21dde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec1f966c16e7795eaba5b50604b8de2f

    SHA1

    1d9c28f99f3b4386e979a4673e769ca1576d46e7

    SHA256

    a88daacadb6318944a8e77d284a8309c3a0c22d589ee81ae1afb21b6b58b713d

    SHA512

    8189d694b42ed3c9b21840f6bde5bf854953fe89e9d0c37c0996e241d71cbd279ccaa5fcb53e897d31e62de4549c5d09f1f38a0d591a6e8e74c962832c62a0aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c752b3a9d4509a7903d0559491999a4

    SHA1

    53dcf1c3a9b4664297f21a62cc84ecc3d34fff29

    SHA256

    1b0261d1db7a3107596f6e72367cd5c1905df347d7dc590322b279b771700681

    SHA512

    bb4784157832404b37a63112c21328a6c1d96bfa1f0f4ec417ce761b6018cdff882c1b7969ee659d8c83acb5e7a74fb80afcf6d10eb8ae064da0e6c717abc1e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc7737bc2017d6aee648ddd1c35a130b

    SHA1

    4451ba38e6f455cee5f257da60e741e426bac469

    SHA256

    d6b6bf4780d525c34b1f8f7d6ce469384f254f1c8c65f88f91c2191c54ab4e39

    SHA512

    0b744c7409a5f578a6658b257b778af6c19c7e7b7be70cd4de347d6876814b358a1aad6fe39b3032c16927b8c0a0179c23c4d33dc6b063d7da14a4bb62c6fb14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df6f70b1f9bb8199a130d9d5ae1b67c8

    SHA1

    e49b4e3635e760b93382700de679324db5ee39e4

    SHA256

    3b15aa4897c77bfa54ca9a20e192a5d108cb87341bc41ddce2abbd7a2ac7c6f6

    SHA512

    31f165928bab3eda3aa61cce8acaf5ec3b7ab39a320e1bf4e57e4781b5b43a98302193b795b8864f720f440d1df725bbd43c7509ca12a1db16164ec765b76abe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37e739248156ced267529f6b5cfc70d1

    SHA1

    0aa475e860d9607de512db3bb586188eabe8b380

    SHA256

    bfd4cb1e07391378d4d21040dc45860789681e53dc8c8add08af49e819b89330

    SHA512

    db28084053d614f804a21c062d2dd06861138edb7b67cdc3a10921217a5a63f4da9433058906dbcb8110d5fd909c0415a37f648f3f370d31afb633c1041c54ec

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7CA1.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7D53.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit