Overview

overview

3

Static

static

1

动力音�...op.htm

windows7-x64

3

动力音�...op.htm

windows10-2004-x64

3

动力音�...on.vbs

windows7-x64

1

动力音�...on.vbs

windows10-2004-x64

1

动力音�...ic.htm

windows7-x64

3

动力音�...ic.htm

windows10-2004-x64

3

动力音�...um.vbs

windows7-x64

1

动力音�...um.vbs

windows10-2004-x64

1

动力音�...um.htm

windows7-x64

3

动力音�...um.htm

windows10-2004-x64

3

动力音�...ic.vbs

windows7-x64

1

动力音�...ic.vbs

windows10-2004-x64

1

动力音�...ic.htm

windows7-x64

3

动力音�...ic.htm

windows10-2004-x64

3

动力音�...st.vbs

windows7-x64

1

动力音�...st.vbs

windows10-2004-x64

1

动力音�...t2.vbs

windows7-x64

1

动力音�...t2.vbs

windows10-2004-x64

1

动力音�...ip.vbs

windows7-x64

1

动力音�...ip.vbs

windows10-2004-x64

1

动力音�...ch.vbs

windows7-x64

1

动力音�...ch.vbs

windows10-2004-x64

1

动力音�...h2.vbs

windows7-x64

1

动力音�...h2.vbs

windows10-2004-x64

1

动力音�...op.htm

windows7-x64

3

动力音�...op.htm

windows10-2004-x64

3

动力音�...op.htm

windows7-x64

3

动力音�...op.htm

windows10-2004-x64

3

动力音�...op.htm

windows7-x64

3

动力音�...op.htm

windows10-2004-x64

3

动力音�...op.htm

windows7-x64

3

动力音�...op.htm

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    25/07/2024, 15:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    动力音乐网/Top/Funmtv_3_Top.htm

  • Size

    188KB

  • MD5

    bd946d3554443a0cf205e413570f3819

  • SHA1

    93b9065e7bd6dbbfe3cbcc87858710cd59654973

  • SHA256

    260bd818836c0d66f5493d068c71e1f46f9d4038c4b732a4bb7ea13ec17c87b9

  • SHA512

    b4993ce5e57ac95b59c18a35b6ff7457b2636ebdf17ea20904975bf414823e40275eee77da16c625ee165c13759da61cfcd814f279e8c05313d8a9d7301483d4

  • SSDEEP

    1536:NRdUtw1O8BoawhPyQgLYA71KH3MAMki3vL2:NRR1OeggYm1KH3TST2

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\动力音乐网\Top\Funmtv_3_Top.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2632
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2632 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2752

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a6922bc39f32de66a5eb66ecf13d8d9

    SHA1

    279e7093545054ae4213a31f4bc4bade0c025597

    SHA256

    f8cb38011942422b3f1400df8a260546593ba447e2e71a8658aff5afbc68c5ba

    SHA512

    17f27d976229d4a4df346b33612c0ac0a033b396832a82db429df23b6beb12692c11b4f8c3d2cbd7fc52883fc5659f74a891cd3f7bec23c84969dfbdee3ae776

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9676b9c198d8518b0616ee4b19646d95

    SHA1

    70c275b5f519f7613f01a4d119d644c654443e8c

    SHA256

    757683ebe57038977820dd281edc8fc953be7687a3540bfd70fd2bb3d6cd3e36

    SHA512

    029600d15503e538d342c3c54c34afb47644a3227f14ac278a63985da6d8d4b3e2cf8a9fdff082e7caece6ba575f6c9621862f9092aed84f5d395fe7e010a906

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47babf8a7c037cfbfccd3cbfe347ae9b

    SHA1

    79584f27cd811a279c629d44516faf1a8adc0c06

    SHA256

    8e3e475403c3402e9cc9bbf47b512cc2df9ae3e065914372395baf273fd39354

    SHA512

    e04f2a56f3dc5811cda9df7639b697e709528e892ae4f94c21830f2f0329469e4aaf7a9a87e28a449dd807e2ef2e9d6f9a7acc748fe1899ef74c6fca19a5f5ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5945ebb01c5aeb8660bc4b2f14b454a

    SHA1

    876a750e3a868362e735cd839ebbe0612fa16a2e

    SHA256

    13e1dd5547846e33057cf5b8b98025fd65dc909c4b48ed8c68e9ad49580d1d68

    SHA512

    e82414b8c27163d9b482bbcb3fe4b74c9e00becd3a69efc4125e65d76d69196fd414984de31174b53fc6c631ae8a51ff7e4b8b34c56860db7bae8a1553537641

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44636e91b999e3c1b426d2fcaccbd876

    SHA1

    c94c19a2fa7908d6fb849a78aaa8720dd62399ee

    SHA256

    f5e922c7fc6cf6c875d5e6ad949377c6ab4bc996da11542a630f3f06b8efbfcc

    SHA512

    479a8fac25aca5183ffd2bcd9b44f747e219ef69baf296b46f8ec12c9bc8eae3946d6ae156bdddb3791de885a7b4cb2627c76062644ae86dbe1a0ddf0e0893a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb874ddfd919db6ba854f4cf92cff52f

    SHA1

    f8a9ac7ca8ba612ecdb83822a17ba39b3fbf764c

    SHA256

    4b0456ae33aa469734398558940927b5504bd6515c17434a160c1da8a47edb95

    SHA512

    e03f3672bafac95e23fdca05821ff1b60ed20b31d3e2ca943f3a38945af4f80fc297d150b3fe9af94c52014e1bc6b2089e59cf1b55e478663f196e37854dadfb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78c0153af3828d4ff8b31f3d93aea2aa

    SHA1

    bf92ecdbb32c23c5f1d54f72bc6935c9c3d60ce2

    SHA256

    927215c1b1fe0ee0b53faef5a5d50cd257d09f771d109a40544f5ee4e06ae873

    SHA512

    af41caec191042b2f0c349bdcbc28e1acba56b6facbda4fa4b3cb83c22141c1577cfe669bd3da2801cfe86e0b8eb8ef24017317ecc614a5bcd30d225a9b11167

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    922dd50f54e44d44a5b2cae00c8d9a6d

    SHA1

    12289f26fe35b334ca1d04afc936aa6a0bc0f303

    SHA256

    25a4849e2d6c744c64b11edf64e3db6c9cc490129c7372dc0aaeee0eefffd951

    SHA512

    8633b079b89a51ca7ec20304fcf0121eace6fc265dc7fb2ceb08df103a85a1f682abcd8df9a2181ef5ff45afc6fb984defc5f9e857700eff63454ae81f8ca941

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e331b042f1cccc1722779ffced7b2d1

    SHA1

    ce044db931ecf04ee3b95b39c55c2a5b20a84002

    SHA256

    3bd25190753d7d5f2e92818f257648f98f72ba9a5ed79b4905c1f0b59ae57419

    SHA512

    0b7331c59ab7960e32ac642ed3c9dd98e2b8aa65303179648d978e21110b5a63cc8d6ec9dc4d5692981d8225a11ed1a13f6540a964de42103737ffbde3433151

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a46cef68aa31c8979bc96eac6af516cf

    SHA1

    9498f9a57c95b979e55cf9a2be03687d4e9f90fd

    SHA256

    fedbc57ed9b4229d1e983e42db8bf641db84edc1b469aa9860c79f02399a62ee

    SHA512

    61ec87c4e91e99d6284729631c9fa3a695639d54263f9f29bab7d02fbe424fb79e383f293a3c5f650f4171c8bbb3b27d035cd55c08707087bb3ef445d26c6adc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5810dcc11d3a771abaaadbd625240256

    SHA1

    fc05e83da043f89a7a759fc814f708f0271450d2

    SHA256

    9ec6c4dab76cefc2ccc4bb119d8b9c662003cf5aca6c8fc864b276e975484ff8

    SHA512

    6635971f5d79fc3d6abbeb7f4b2f053cd576be39c73c3e0bdab36d6864c96866de670b776d89061f4ca189bbfeff7ce2be38b331d7b46e8900a73e8e30d071ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8153c12091f639bd058877cf03c30f5a

    SHA1

    41775e43f4083b0f9e9cf658f1d99c3c31f264f2

    SHA256

    58966448fab2f164aa0f2a8ce242ec8b1512190882aba589779b0edc12ab2b15

    SHA512

    30793bde96cf979bca7f7ced12e930afe0354e7674f8513e0e87903b2a9ed999e52835f0d7d4bd09c362d1996fff673005b405d21df6f4a7c0eb2222c26d278a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2129574dde1a2391e4cfcabcfb32b7fd

    SHA1

    ee94095df96385d75977e04756f599f5f59921e0

    SHA256

    4fd4694154d73a22666fc4a32c01d92b369f8dada9d2fbf034ed15cc82cad027

    SHA512

    88dcffab417e6d5c172b3852a869207d13e02799f17d19164d56ee86fa4f88292e5e1d397de232c4f5cca703fd5d3bd505837966f48212960910460a68b48005

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01065b3291e1f95d40dc600ea82b615b

    SHA1

    a808390752017db30eb1d7e4fc06bfdd152e0ce4

    SHA256

    fb7df18ac373c84bcf38a640801c77063482585874844d2dd884df238add92d5

    SHA512

    2e4ef4e8b3710b28b051bbad4793f7b5d0bdd5c8513aecfd24275660f0648a728b0d7e7df836d3e88dca2771f26d2daaa1d86d20435e717a5a8f4fd3103ea44e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d882661b9d2821a7745c3a87e74caac

    SHA1

    d88bfc308aa01e5dd3d18ad1b4a9939762856447

    SHA256

    ed402ec509a8038726dbe75e4e391a19d072cc9618839ce9434a30fdd52a057c

    SHA512

    a4e02109af89a4789816ecad5fc0fdd1a660c360553185988166db2d3946326da62fa4b5ffbad50d5dad3c7502fbde8a2ec58237dba422cfc1088ce30fdc92c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65d865dc42ab561d5c9c6a4f57eb7252

    SHA1

    77c42bb8ed6fea4fa0bb752a063f89bc332e478a

    SHA256

    845177831ec36821d3dbca344ffdaa22a72c636660cf071b0adad6ccadc89c9b

    SHA512

    df12add5c48145541be1de2878ed81e60b02e9978174f3050d4bba7072b0ca215cb87c79bac8c9051a65b9189b6c73627a87eaf2bf0402c2e547e77a285ce659

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f924b6f08bfa9be9e4d6bb77939bcbf

    SHA1

    f5fbdc399b83c9c555094a220c09df881234a717

    SHA256

    37024f8ab1cad35136202f8580dd4aaf27faf32c8c7b19a4ad28d8924376ba99

    SHA512

    34b517d40a6f90eb088fa126353a710735a32b97853eaa8471f051186d2d5c0c8b3fcdd34e81dc7bbb717667a85e7fd6bb6e250d5ee64d708b95c08e64a955f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af2d97e65622ea31d46022d20e0e5218

    SHA1

    1ad0e3027d766840b0800ef35a358f51d5374c90

    SHA256

    0aa195f999eac10c4856f2c16be17eb0aafeabeeddec35b80720b207fadc759e

    SHA512

    87f5af39aae29c9b1097f7aabd94cb3c51b1e9397f0dd637da93b2c2ba57c719e93337a3a9878fb2599fc02bcc575f7a3613d89d317c4add148804524963d3af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82916de7a6899fe8ec1f67e5abd9ca5b

    SHA1

    8cd5693ae2e7e606f532fcea6a7eec04dd41045b

    SHA256

    eb32fe01a6a9f3e5f08217f05fbfdba8ee53699a254828d879e87f612fad3262

    SHA512

    9ba29dd1b809c9b95bb56e1367b9551e5aa3c4b168c03aec6cdb4683572a4105f55ecccbd076575772055612c3cda90d33d04014ab7be0657edb527cee97b406

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE2C2.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE334.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit