Overview

overview

3

Static

static

1

api.js

windows7-x64

3

api.js

windows10-2004-x64

3

api/uc.js

windows7-x64

3

api/uc.js

windows10-2004-x64

3

api/uc_api_db.js

windows7-x64

3

api/uc_api_db.js

windows10-2004-x64

3

api/新云软件.url

windows7-x64

1

api/新云软件.url

windows10-2004-x64

1

images/sec...ex.htm

windows7-x64

1

images/sec...ex.htm

windows10-2004-x64

1

images/sec...ex.htm

windows7-x64

1

images/sec...ex.htm

windows10-2004-x64

1

images/sec...ex.htm

windows7-x64

1

images/sec...ex.htm

windows10-2004-x64

1

images/sec...ex.htm

windows7-x64

1

images/sec...ex.htm

windows10-2004-x64

1

images/sec...ex.htm

windows7-x64

1

images/sec...ex.htm

windows10-2004-x64

1

images/sec...ex.htm

windows7-x64

1

images/sec...ex.htm

windows10-2004-x64

1

images/sec...ex.htm

windows7-x64

1

images/sec...ex.htm

windows10-2004-x64

1

images/upl...min.js

windows7-x64

3

images/upl...min.js

windows10-2004-x64

3

imjiqiren.js

windows7-x64

3

imjiqiren.js

windows10-2004-x64

3

include/db....db.js

windows7-x64

3

include/db....db.js

windows10-2004-x64

3

include/db....db.js

windows7-x64

3

include/db....db.js

windows10-2004-x64

3

include/en...ass.js

windows7-x64

3

include/en...ass.js

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    20-07-2024 05:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    images/seccode/index.htm

  • Size

    1B

  • MD5

    7215ee9c7d9dc229d2921a40e899ec5f

  • SHA1

    b858cb282617fb0956d960215c8e84d1ccf909c6

  • SHA256

    36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

  • SHA512

    f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\images\seccode\index.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2244 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1492

Network

MITRE ATT&CK Matrix ATT&CK v13

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d8989e27a80245f9b72d35ca8e20a5a

    SHA1

    fa4fcb08fe469ffc9c240e4a146d5104a3350052

    SHA256

    072f2d04fb5a2e7fa560cb11377304cd003695f1b2ac462b1ec02ea382635172

    SHA512

    51f2ef4037afd0fd57b0fe9a496dc38dd26fc460bab3ed63c59fecf097445a7a08f6738cee8d371e7e99b8fc2326e6ddf598d90c1cb52ffa671fb508df6ca210

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ed19b9379abdcc2e26d9955c128f5dd

    SHA1

    383a31711779108d015dc27950b027588a083888

    SHA256

    1bb5941d9fb86f641a2966b2cbec3e5ad5a15d7a7fb07446057fb51b29e6c0bf

    SHA512

    20b98d8130b74ede43cb7b56cda8407d2ba00a27d5da8c25fbd0ef00ae20436d8767ba762be562711517bbccac545b115a9a97e88d88a6d1412c0e5b1bf930fd

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    354118b95574aee4446bee2df48ad6bc

    SHA1

    15f85f4faa6c73d328d5085498e2208bdbf52205

    SHA256

    5c9173ca89ae47ef3c70d629370e5c4c9ae3a24ad7f36758fac3c6e561ec7af7

    SHA512

    ebf1748be4f00f15bb3b7c6a69ac8e403081b252cb04543f90cd196a34478a3550f38cf9a8c2bc0c7919f2a3d284640f4517392ff8b04a5b03223b62f62a85c4

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a413bca612c3046e46c9709e64e0d886

    SHA1

    a795afe6845daf30ac2c0022bb8aab98a0676943

    SHA256

    7d863a6e75706d2176ba924e281622be8931de1b2d37c9ff5b4ac2c527096b2a

    SHA512

    176428a8323c9dec357874e35c146a28f388cc10fc35647324c5150e4b04b837fcd9ec4d7a15b9fabad2cc783480426b173dc7548b92a7d47ea0f749e7ef54a7

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85ef7d2301f24188220d6a86a7688637

    SHA1

    581ab237b9cbbafae56cde8b4484ef3a745d2a99

    SHA256

    cc3cc6390fd5d31f75a79bf26bac58babd669a6573b551553d6378f6d0a5004e

    SHA512

    4178082ac5e72256b8cb38df6f676bc81449b1f3715d891f966eeb8810087f13efb20e095d126da92e2f472477f9fe6e7b1306b9427d889f1ef0d29b773eea72

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d89d5a31db07debc30d9a91b8b8106d

    SHA1

    7597cc40663f6fde7f98735db12441ccb247cbf2

    SHA256

    239c45f77ab6860c33f51f5a5a38a275fbe19db88276a362f5839a9ced982495

    SHA512

    1c85c9f0fc234791be2a1af92c7f2d1f76c6e09210d5272753073caceddd6159e730fdeb31548f796ac57c6b167fd6996f37b5372207ed65e0bda39dd6f86fa4

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a031a762212596fb4e667e67d52297a7

    SHA1

    5cfd40f67a55a7cde6f84436bec59c37425f28ee

    SHA256

    c88e62868b54330013c08c548ae0397413bc54f2c2d5b0d231a3d0d503fec4c8

    SHA512

    b140598626ba649a9cd23e8c1a7d270ec8945030aa5dcd4f847fa80c0c2cba89df5e8d292f244bcb80231b7e204b29c73feaf03ee5bc5e117ed18573f2ca9ec5

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    582ab46da1da15f831ecb43d0109bafa

    SHA1

    c4d809fd2eda2ab2bc77ff5803d8bca9e00f91a4

    SHA256

    2b2e001aa9bacd6651ceeda0714dc42ef7d0b59619881002e7b014788f668c21

    SHA512

    b119c0aca643331bb5dd8400e80f10e64f934bd981ffb5c0131238566568887af0b8955d11af85af6303e0ffbec44dcfde1336473e5ec50ef2f5d3fbcf782936

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0513a1469daa0371cd4f230160596987

    SHA1

    194089948137b779fc073f9718f76995aacfe703

    SHA256

    d97993643e291027f7b4e844ac382aedcda6a1bcc8655dd2ac173cc81d330894

    SHA512

    8b25e405bbcb60e870461abd6c9ca1cbe623f5e6fdb9a638d368a055ea9be3deb5cc6e7e341253a2acbdff3b54232029157b8bb72bf3b3dae1de859dc445b20a

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c1d8e3b7f9e209d371167b5b7eb1870

    SHA1

    211dcc40f5de602da40d43de8448a3567badb2a2

    SHA256

    f7f500d326b4e3164b7aa16b429b2a8f5b02ae17c7de56f3033034ca5add1acf

    SHA512

    20c4c721e748ac4efcfa7eab984f0c4596a82cfa7d474a138c02a9f5ac4eb72f5f060f20877d4fed7a6af4b8d494fb0d1e0fe10c5971f49e2b3b7d7a13551d1a

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b4d5ba87acf9e99f8b88b4beac4d5f8

    SHA1

    dcd3af82958e0688296aef8219a80dfccfc2990d

    SHA256

    c13d54464ff02209e9daeaf0ce347acd29ffe1e096e20223df1edc6d02979918

    SHA512

    dc0419da110b5d8158bd436bd0da4c134dbdd4af5481b10497d1b49d7b0aa5bae31bfcf97cdc2c210a7f7b2fc8e3c342ac72fe64d35cceafe65429c7daf60389

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15f3aa661cfc0705efa4786fafb35fdc

    SHA1

    b417af1f1b542353a2dd08353fff4c5c1b647e82

    SHA256

    dd3bb4b1fc8f18e5b244dfd645eee37e544f58033b4e8ce38cf168ca534d573e

    SHA512

    df153b2756b72984019dbb4194343bedfda30a2ef0ae6006cfe79f04f6f0016dd30f2a560fbe502cba41cf2181ace04326eface03c3851ee6f05d8abf1a47c35

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce57ed720b2cf407402dfb9d9007d23b

    SHA1

    65f2d4d382fa1a09b28d7aa4e5d04cb95514bd14

    SHA256

    320acb50fc29ebeb7ddd68f62c1dc08f44c0d1b0e85563ef11e99e5c44e20f59

    SHA512

    1075f64e3a1ff7317bbd7730810e9539b93a85551251845b4010e36fc61091a0315491bbf375ac622b50ab19413eb5d26760391b00108a90142a0c71a7a2b7a7

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2654849f5bd28955628d50fb29f2451

    SHA1

    2288b063ed78d95c12a83ca6deb921af9ad2e551

    SHA256

    adf1342f2bad20dd6df2b4ad2e5b00521d513e13c86f5faa10ad7f10bbd34402

    SHA512

    c1d67bc35573b6e94048a0847be63731c8025ca395a8230dbc7364fe262ca4cb9c821d8602b437f42f784c2ed99bd0fd377299c744536a45985b51dc64eb1e13

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f864ace398ed8f76672ad49d328f2fef

    SHA1

    28b34dec2a163053d4da96f48601c421f561335f

    SHA256

    22e3f005cda6c3d26f0961f65920c6c75cefcc03efef25c2309ee8c94c1bada3

    SHA512

    534edc074df59c191b27ab4b8191bbc5c3253da96b50645f3bde0ac6e24435c09b41cd65b657f2a8b5f5898b8ebd46d610b3b958318e083ba25a60988ae2a5eb

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5920c4d94ae169d94fda82b871c88b7

    SHA1

    3e8c5f5a2ad824e717418d2885bd0f647f4fe826

    SHA256

    3783f13bfc3924e3265a3fc1ae02c964d45a77a15b66e528a8faabed841ca2eb

    SHA512

    54e444305334b612c87824091aa31b6120d619431594a4f55a8d116e3b37393fab6a92c51dd99688d0726ee50f20027795118d8e1bdfbe3fc7611cb867d9b257

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df2e9ffe62418a985b1bf7aebfac630f

    SHA1

    1adde8e3a9186c06f8b49e14b74319ab0d38278b

    SHA256

    6717adc2c7a4a4806318b1656de3709cf29e4ee24635b1d96ab21528f55aae04

    SHA512

    48557f3318222313d047f12b68d5cd47f3ae02954fe77e10be0f0bcb264119084f62bb295dab04fd16a36c4ca9d181cd50fc76a967be52464f1601539db2db59

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    acc6c2f526726da4dcc22799ba3cab0f

    SHA1

    62d8c8e235ae4b25632959def6a28358949bf757

    SHA256

    ceefc2e679cc68fc879964e633bd8f28c04ca637fdad8f8d918000a3919c72a4

    SHA512

    409cbfd111151e229287f969c65d72ec934ee99a05506351700b6ed6d4602c4a4865cc9113e6ad51b14d262378f1bc4839fd13bb8a5be0b05e357cbe32bcc04f

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\CabD913.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\TarD9B2.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit