Overview

overview

7

Static

static

7

keygen.exe

windows7-x64

7

keygen.exe

windows10-2004-x64

7

vnc-E4_2_8...x/Xvnc

ubuntu-24.04-amd64

vnc-E4_2_8...x.html

windows7-x64

1

vnc-E4_2_8...x.html

windows10-2004-x64

1

vnc-E4_2_8...er.jar

windows7-x64

1

vnc-E4_2_8...er.jar

windows10-2004-x64

1

vnc-E4_2_8...vnc.so

ubuntu-22.04-amd64

1

vnc-E4_2_8...config

ubuntu-24.04-amd64

vnc-E4_2_8...nstall

ubuntu-18.04-amd64

7

vnc-E4_2_8...nstall

debian-9-armhf

7

vnc-E4_2_8...nstall

debian-9-mips

7

vnc-E4_2_8...nstall

debian-9-mipsel

7

vnc-E4_2_8...keygen

ubuntu-24.04-amd64

vnc-E4_2_8...icense

ubuntu-24.04-amd64

vnc-E4_2_8...passwd

ubuntu-22.04-amd64

vnc-E4_2_8...server

ubuntu-22.04-amd64

vnc-E4_2_8...viewer

ubuntu-22.04-amd64

vnc-E4_2_8...server

ubuntu-24.04-amd64

安装说明.url

windows7-x64

1

安装说明.url

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    21/07/2024, 20:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    vnc-E4_2_8-x86_linux/java/index.html

  • Size

    226B

  • MD5

    70e5958dfb1f8340a8abc20cffb77201

  • SHA1

    20bb7cf396a18d2acb85189ac90f1328326b9a41

  • SHA256

    d8bb1677b89f117c5cc09513124d1d0d33dcf0c494bdd6f3d0d3ea26508bbf7d

  • SHA512

    e3b787e7f9abe4fd58ce8298db1dd48eb0319f5bd0448764fe613e4e05ae98e7776f4f47e76eccd31837abf205ef64a67688ffe4f63e68902f5ef16a590c4007

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\vnc-E4_2_8-x86_linux\java\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1732
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1732 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3004

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04b805a574e6648a1826cf5831f49809

    SHA1

    b419c464fa71076d28214e8ae3b55c729bf4513f

    SHA256

    23efac3456a871a80ce4bab99fb963f76dde9dd2b11af351409233f88fc61c58

    SHA512

    d706f9dfdbd41226e00f14e8e1b8dbfddae7f363dc26d3b8a6e0f68110c9e3934c743156ac58140466bf7f478349fea378b7016dd37e77321e7757dc3c9246df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    835f445394d3fe0bd3266164d4250885

    SHA1

    6613ea7b54f3985eadcd5cf96dccd6201caa5571

    SHA256

    dc752cb5a6a820af26abe12c82b9e8328cc1a0e340053ff37a9e7c83130b7422

    SHA512

    6c03cbc21bab0f743fcb687b856dd6a0fd8118fe83941bd01e04353dee146ac35f7ae1c584c9f15dce2f941157503e8c0b9c91e0d17e14ac1462f7b922de093d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    feb79af5097a882dbb4e0a6b7a12b701

    SHA1

    90ed3c34cb5de14c182c918a4bf63c1500d4c441

    SHA256

    1333ec3d84a2109e5d2a048f026220b4a960a4358f5dcb584950d9050385fa42

    SHA512

    933844119be4c120fadbdc653d962ee01a8439548aae04eb8be36395b7b83e6db1db6d6e62508066fed950d497bbb2df233abacc0562bb5308306d5cda418ae8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56292bac530042a29a9cc4e1b22e73f9

    SHA1

    d10bb4adbd048fd8a1e9ee5e0e5039a182da2579

    SHA256

    f6d07043c149209d226936b99438cd2f7d3f3d6a957e4c88832da140b71bab2e

    SHA512

    7a8168d87b93bd54529ceb45cc26ab2307d9dc00ee1a28f15652235699bca49a02f45479a7f75c6ebb1727a560fe3f9260aa3e9393facf7bf8f0702a88fcd2d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aea3169d4147bcc40b2e5bc8a4a888d2

    SHA1

    9659660f8002acc495aa5ea18a1d20e758f1a113

    SHA256

    031ed1a2a06f63650dfb7d8d70aefb05c4033db7fb548b49435ae3472e38961c

    SHA512

    df6073098bb3babf1521d7419cb4438cfe0c73ca7078bb72d7d4681feb34bfc161fcdfe03587782517b49783bd1373b49b261407c0a5e8d2cc658012c9108e83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe6a13d208f583e266fb73cde602d1b9

    SHA1

    85c230c9e768c2cd4a2e620e919984c1ceba2b8e

    SHA256

    520edd50dc626a0c0da338131ba407397d7bf1fa7d433752d815fbd2bdb9984c

    SHA512

    24112f8476ad03677972c70505756eef4172e180508d0f46334a77f96b87fca75ac218263e6f2864b2add730afb6e532e02f89b7322e91f12f4857f8723d9c5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db746c4bea9e78b2d178c35e583e2fb0

    SHA1

    c53d6aff58c036d0bccac9f128f80366db10dcee

    SHA256

    477508b987f1d1236e6ee13570a344f619eba71bfcef96b07db5d21a0a109700

    SHA512

    b45b4d66ad5b0a1f0a96135e7f513559f087ca66e4007fd219139e71457d0cb60326eaa7331ea4d86c12b7571074a489867ebb070b2e31f1db183e74c0c2435c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0bd63505fc0d4130926ff639ce697ef1

    SHA1

    bc684d29e7a392440e5d3f9d03477e46ff22b70f

    SHA256

    3f60e0159bbd0f2f31cc3f3a8d486388c1cb87b3f7a0e09eaa04896c06ebfa51

    SHA512

    39523f0d7850a3ec154ce28dd03e0f653950ec9f72c2d1e61965689d2a5fe7ff798acf57096ed6c8eaf536f8bbb620a13bcd885ebfa91c11d2374d6039e00684

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cde0c090ef8bc18ebe2d88b4ebf75bec

    SHA1

    9f7bf75686024a6e2cd8fbf3ad0adc3443ed745a

    SHA256

    9ac1907dab118739cc86b79d6576cd8ac4d7acd9fae6ada4490da3f6b9403bcf

    SHA512

    c7a667c23be1e938f600c4fc7a12f7a6c7639b14dec7c953c2417860607a841f619b9af3b07642b3ae03fbf58af665310113843f46a164b659ee52e50c03e42e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb4bf09a28358e6ecdff16094a13c46d

    SHA1

    4bac0da5ad4998f0db41f08dc9c0e911257d2dc8

    SHA256

    e245d5320270ae7e5a4134b59eccf4fbba02d64a77879723fd1cd999a5f0a77b

    SHA512

    a406fd7b7542a50fac02b4d1aa468dc5fcb4d73c9f8a561995d612744d695689053097fb7e71c229ba79ff9e4d02f60e366bc4650e642feb4812e7fb8c761504

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34ec81a13b82445a985c96718e4077bf

    SHA1

    56b78846402cd9a68986ed5fba4744f8d8b85f16

    SHA256

    e0186c0ed0cdc50ae558cd72190658ac3324f2ec7474f9c97d84e0e894a6a4c9

    SHA512

    02209a4fc0ad72b8d0ce7ab7dbf7ec2eb079d04fbd33c0673058a46dfaff3fcdd4beb56a46622f5dd0027e1cc1a93ade9fbeaeaf971924f400cc8d8b1ae50dd8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a4b2481f915d4a857fa27e0b1066c01

    SHA1

    e869567bd5b43407027f86ab370bc760a1cb3c79

    SHA256

    d1c6cc15940fa12392cbede8589af33d333ae1ad2cf7a5d75b18bc21fe1fbe83

    SHA512

    f066780497db61779b23b4127cc4a67875dcac43f7e334caa68dd35b3d55eb8f02e9ff346c48dcf7ce9042e632f4c71bb8a33b4524962fadc1dabe802ae8a00e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b9c5edee84d1656b9d30daa6a700bc1

    SHA1

    34c022be9ba95630c01e39f786de29990e79449e

    SHA256

    0d86abae61c743c93b38e9566b59cb9a9a0673c239c89d47921c1bca00131672

    SHA512

    a8a0215b7951987681b04197f052ebd74a33f68d082203ddafd0e94309ef2b5e8017f40e496bb714b0a07a40cd18fe937ba250e7e33a4be4a4e0a8c67f7e11ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e6c80dbb2d14ac94b710341c6bafe20

    SHA1

    82c5f267b514f43d4f931435c43bd99311a6ca58

    SHA256

    f96ee1dab49c5f8d10770ee148bb94bae8bb9c4cb4da333fb22202e2daf4cdb2

    SHA512

    6adc3711cfb9a7440d23b4871c55d863bb3a88288da7fccbb53997bf30533e771cff9bfc2d854e414729e920be2c201979ff0b329d728fe763c3970cf99bc6ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a0b4f2624707ef15163c15769f6aef18

    SHA1

    392c13ac4e5666c23d1b3b07c00426218fafc145

    SHA256

    440f97a177f447c7e257e288747722cc775e03450bbd5f988dcb35d24b0dc527

    SHA512

    65078b1b9e5fdb377b70e45effbb3d3fb2f18bc58cc17229a23d5169413cc113739094e0d98893f4010f14ec28935fb042891cad9cfdaabeff5bafa6a6f4b2e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e62ae1aa7b53dc655ff4c3dc18897f59

    SHA1

    51482702833b64614e997a6e6caa68e6f0f7c3bc

    SHA256

    74595c32a1315c5553767b243a6c3e2c3b558f1b76c1a705bbed1ea5772bbc25

    SHA512

    fb0117758a2b90dea83c1e0bdd947abc6cb34213e657b8e51d77bf18ffd61e7f41b10f03193fb09e9be9df64a0a715505992f6810a6c935160e44303798e1d81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46625605ebacebe96cb405d2f73d6b40

    SHA1

    e2d603789b1d07e1f1c10f3b9fdf43a251fd28a3

    SHA256

    45d3d78b17185a673f1adde582aff43302f8c8dc4a8142ca08d70eacbdfa7942

    SHA512

    36f043d7ddd23a223280d72616bbda061c7f5bc5e1229668a659d64e1ffef6dc84b4af74f48b929619d41e642b51ee6e86ff3c305c169d8aeeb197e91daebcc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8aa795ef8978274466f4f86280bbf1a9

    SHA1

    4cb143c29f3a3440ac978665ccb8353b64e3050f

    SHA256

    c9da14a8fe9f8241f50d601345c976682c7a489dec75265035055b4fe3f9e5b7

    SHA512

    a88a174b5618cb18d265951bd044cf14e82e0a88716042f981d9b15a29c6e71a65a596fd2c5895eef4430528c3312a2fa4e4ce32cebf8623b508ab38a54aefd9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9771.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9821.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit