Overview

overview

3

Static

static

3

cvery.comv...ou.url

windows7-x64

1

cvery.comv...ou.url

windows10-2004-x64

1

cvery.comv...lk.exe

windows7-x64

3

cvery.comv...lk.exe

windows10-2004-x64

3

cvery.comv...ht.htm

windows7-x64

3

cvery.comv...ht.htm

windows10-2004-x64

3

cvery.comv...er.htm

windows7-x64

3

cvery.comv...er.htm

windows10-2004-x64

3

cvery.comv...aq.htm

windows7-x64

3

cvery.comv...aq.htm

windows10-2004-x64

3

cvery.comv...lp.htm

windows7-x64

3

cvery.comv...lp.htm

windows10-2004-x64

3

cvery.comv...ft.htm

windows7-x64

3

cvery.comv...ft.htm

windows10-2004-x64

3

cvery.comv...un.htm

windows7-x64

3

cvery.comv...un.htm

windows10-2004-x64

3

cvery.comv...ep.htm

windows7-x64

3

cvery.comv...ep.htm

windows10-2004-x64

3

cvery.comv...op.htm

windows7-x64

3

cvery.comv...op.htm

windows10-2004-x64

3

cvery.comv...ie.htm

windows7-x64

3

cvery.comv...ie.htm

windows10-2004-x64

3

cvery.comv...se.htm

windows7-x64

3

cvery.comv...se.htm

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    26-07-2024 19:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cvery.comvc102543525255525/exe/help/help.htm

  • Size

    693B

  • MD5

    a692170f58969ce9ddfe5ce8623990ad

  • SHA1

    685003aa92466c015c842ccb517cde4658653e20

  • SHA256

    f969bb70d18e9c4bfd48cfd6b95a8cc35cb809404037957e1cba26a4ab9d6ca7

  • SHA512

    b14298d9f2ccc4d086dea0d31818366d049e58e96120d5a973caaff7506cb69436d26215f375f94ed1d3336fe40d4af5bddf3dfc2e8a9236485fe5daa70799cd

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cvery.comvc102543525255525\exe\help\help.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2584
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2584 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2124

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    645ac4bebaba0c32135fbfaa47cce4bd

    SHA1

    5fb0b567e3cf0263c1c2415f2e2e450f45c0fb55

    SHA256

    d91bfbda2a0a3eca0b2883d876776238aed2cb1242d573116b2a05e686c1e67f

    SHA512

    36aecd7da62b40fc09ef0e42eb082141fe71b5866d932108b8f5fdf0f2969e9fb44e32b23dafc291d6c3d59a97a7d92ad6874cb7091b6fa00066c140ea12068c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf20fedc1d57b363bf302650322c959d

    SHA1

    432e65ad796e212058f280bbe6797cf3c1ecc7e4

    SHA256

    9993cb1844bd3d514452c68f9cb58af63d3a71552951a58ade4e37e2b290bca4

    SHA512

    766dcb282ca66fae194ab4c3131ab0110b75a8915650f28b27a58d952ab4fdb5b01819f488274dd73cf0c12db8d16be3b977a25d34b0bd6c47bae97856ac20f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e46b3262e87d64052d3630407e1ecd45

    SHA1

    c4f7dffdf8c3870cb02990c9a5e59e21312bb34c

    SHA256

    4a16335e39d89dbee478a444998a521cd49a50a482d2a1abf2cb473407082976

    SHA512

    8930294abdd462edc7ebef4edbf66c56c5d4243e1d904b1a2e1b6809a2e8a27f9f42b28e1b94aac2348124f0e7d9cb6ca926f627742ffd26535027dca10a8495

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd2ed472788dd7744fee48fe3c7645ef

    SHA1

    91a3997b3ecc96bd5eb32cc98c330c3e3d7246be

    SHA256

    9980b5eee364fce9a83c1989daaa038df7ccaa99cb4d7727efd41d2e807cc6c3

    SHA512

    bf24f1d9f7d624d3b7073c5cc189b2b8544c862dc8b64ae44731d78bf44f848c42d58bdb5e7f5f75e23f3f2b3a1fa2781dc0ca806026d3581b7cab008faf997a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3263519db3a238a8326364b6056645eb

    SHA1

    2d9b9e5cd92c9009f9da1f27f854b102ca5d0603

    SHA256

    6551886efa264622d269646d4898a32d1654cf2242c68454b31aec548a06442b

    SHA512

    5f5d66fb1217e774cf1ae7f2391d8629aeb3d2ed6c720bbf003452bcbeaf109928c38d7d3ab61fe6cd22b9eec6cc2055a764ff8b95975c0594b7edf4674b69a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf388f82c61080a20a489a6fee137964

    SHA1

    d6f83e28e0026f0fa1ab4c07a4ad6f80c2debac4

    SHA256

    fc198aaa9c235d662d39705d1a9a87a256e548c726416e9d9b70e5410495b309

    SHA512

    f236838dae0e6cd50b8164b1918a44ef48609bc1018ad645ea9aed32351be02cf666929b745083ce8d1aa28f937d88a3bc717f91d3890679169b118efae21d89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a018416e6d7d2c8f8da51e731e6349b

    SHA1

    72f493ac6de92b1ed05a77741ea1808c2f3ac700

    SHA256

    03ac4fa1ecd96d2f85f8ddbb297b9e9a3eb4aac22c16598a73fd1134c6a760a3

    SHA512

    431d92d11ffd831d893e823546f89ea8993b0354876d4e9deca1988e7c7c99d48ebe871dd453aa60271ba139a7e2f70af6b9eeddabd9544b6842961ab558f223

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81b96ebd53da6789db6b74054dfb4b55

    SHA1

    8a5ef62c2dfd98f2b0d7b9c4b0c63954f941c3da

    SHA256

    444889caa2c9a379d84f110263f14e8540d188778417c9b0920c0b4628ac3a96

    SHA512

    f6408eb60e514bdc4169095c68b2a959433e149217bf0e98f02d382ec728aeb51e9c2e52034928c9bf13948826bbe1a57b0accb302dc17cf9d40482d7ef9a086

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f479df135ecd01caab974f80e9560e7

    SHA1

    f185271240afdcfc191b37ea9d276bc44de40472

    SHA256

    f40ad699eb8913ec56badf695806ecf4357b5828791052b5061b227804dce858

    SHA512

    07ab9ffd5dabd4e6fa0addc54fe440d2ef9064d8b7a84dd84feadba31800555798f528047a4ee883ae27503f9461a82a5081e74269c1728d68b892d32ca9b559

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47aea6ef3716bd301b0561833f87dbbc

    SHA1

    847d071d2e0a0cee18905b73b414463738015ea9

    SHA256

    7465c4be8651800ee5a8dcaed5aa265af1a5520f830474a25f3e323d1d8770bc

    SHA512

    debf14db6055c2598f897c6f56b5117bcd67865fb7798d0938c60fc2b333891e7e5f9b925e93b52dfa2e6592c622e46a9eb78d4a0ee98494922a8a4643c544f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3fad0ec59df503af6365c904c990050

    SHA1

    385596385931ed6408197a54d1e02dce3c338c2b

    SHA256

    c9d87cee2db8b3059952757a4f50e4ebfb13fe78e8e7b8ccfdd1768f0452301f

    SHA512

    e128295e290d37facf4d66fe3ffb157bef72d3a208d75243a0db8b5540c0ce42032c26b8154e5b80d647953ae95d9a4ca28b4c231e07700f38018f95658b61f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    75deec40c2712fadaa8afc10809c7f1b

    SHA1

    ad04d7e1bf6b4193a37ad1e46d6bc6f3dd517a30

    SHA256

    6882c4ead5c86e7f7ee7e926f107b4052b239503d02bb154ee641e4efcacecee

    SHA512

    aba1dcbfb04ee2c9d44a67d256bbd6be24c71d3e1be932000ac2ebaa17f01fc01c72415bee6800b6fddb2b20512d4fa47831a5d4a5f5a9efcb1ba4bbade8ea85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1962c54ac3db61a7e538d50cfd025f12

    SHA1

    0dc1115eec0bd14c1e6cc29464776079b871dd13

    SHA256

    c6fb2f8d47a1a751092e31dcb6e4a65bdd2eea5a70ec1938346d273e433811ff

    SHA512

    bc59b3578343d27bbf331633c1f61daf8596463976cd57a738a313ecfcecb74447366c6bdb9fdf34e9b8c3e7637c2da213f760db87d00953d7ff3303f4beba9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f5e766757e1f8baef500a1ec03f3a76

    SHA1

    d75becfbcef81d586e9880195a8ab9c1c47d1744

    SHA256

    5e03bdacaf348fdc3d3ab0da2bfdb224150be89cff0399191779b981ee00bc40

    SHA512

    646d6e4b5229c175ce19c05dc9876a4829c6da18ed724a6e0e945931e35b075661965064f158c13a8ef003d65e6a9b3ac641011a4626faaa9acdac0d83ff5a22

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    118aeb4268fed27e7e533697ac9bf595

    SHA1

    326cd85b6cda2fcd1410e07321920822ebea605c

    SHA256

    84d4bb548ce87b1871184b5c4cdfcabbf6e28c6d02b41d652472ac711e4b84c9

    SHA512

    04e96f0bd640a4882d2a73a02a3cf98a640aca0c2b53137c8195e73150fdaa53625eafe7b2c12b1cc5e71f3123458f739b700fbc3b7dce1b6855728f4889e667

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    567036d83b8e2955cb5489d5624589a3

    SHA1

    3e332551e98e7448a41a8a7033aeebdef5a055c8

    SHA256

    df854405157f9a8823da984bccf9fc45bac33f37300fa344d67cddb1accf8fe1

    SHA512

    e588c9aebae339afad99bd1f96472e63c8407c4226827684fcfe35296874e628c5f74eaea1ae3d3c1de927b5b31c02e474e742ca6f4a368cb490ceaf7cd0c5df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e8dbd63749a2f17487b8f71c9025023

    SHA1

    3fcf1e98d9e5d21f8657d4d6d4a1302c766e632c

    SHA256

    aeac4091d0c38628a8cb97332a0826387cc0096124b85fee959ec13396a7296e

    SHA512

    e248a18b332f75e93f3c597dff275ad4621238532d2a0b957d0cf8669bde27e9e220c2c0324bcf30be442e88495102bab318fccc6a9744f5fe33b0a75e9d76d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5e9a764b7e7ac3499695e4c52715a69e

    SHA1

    d29485141078934411bcb52c694aa8764c51b2d6

    SHA256

    e7b273e69e901aaa002aa5450f897abb122f21853a09dbd6c6abba42a400d8c2

    SHA512

    1852258e1a5ca75bae09cd59c65997c9bd89341570f6458ae7942a306f31144a411ff2033c67fed9a8169bdb52be393a969362064b35af50a3b9a61b7504e1a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a24ec319ae901160e51bdd55dc48480e

    SHA1

    70756d628f4d9dd64b0e020856a46772deee031f

    SHA256

    5f4e91942d7ff7c633a7d60dd9633f0c9fc7c3ed1162418ee628a9656ad7a174

    SHA512

    4e6dffcae7507b12936e02a016d5a39f3f3c9271906026f68308d04c2e6eee3d47ef4b5e54c6d078bfb698a906f25f1c035a3b796e5736e73eabfd8d64177ead

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAF94.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB004.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit