Overview

overview

3

Static

static

3

cvery.comv...ou.url

windows7-x64

1

cvery.comv...ou.url

windows10-2004-x64

1

cvery.comv...lk.exe

windows7-x64

3

cvery.comv...lk.exe

windows10-2004-x64

3

cvery.comv...ht.htm

windows7-x64

3

cvery.comv...ht.htm

windows10-2004-x64

3

cvery.comv...er.htm

windows7-x64

3

cvery.comv...er.htm

windows10-2004-x64

3

cvery.comv...aq.htm

windows7-x64

3

cvery.comv...aq.htm

windows10-2004-x64

3

cvery.comv...lp.htm

windows7-x64

3

cvery.comv...lp.htm

windows10-2004-x64

3

cvery.comv...ft.htm

windows7-x64

3

cvery.comv...ft.htm

windows10-2004-x64

3

cvery.comv...un.htm

windows7-x64

3

cvery.comv...un.htm

windows10-2004-x64

3

cvery.comv...ep.htm

windows7-x64

3

cvery.comv...ep.htm

windows10-2004-x64

3

cvery.comv...op.htm

windows7-x64

3

cvery.comv...op.htm

windows10-2004-x64

3

cvery.comv...ie.htm

windows7-x64

3

cvery.comv...ie.htm

windows10-2004-x64

3

cvery.comv...se.htm

windows7-x64

3

cvery.comv...se.htm

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    26-07-2024 19:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cvery.comvc102543525255525/exe/help/left.htm

  • Size

    2KB

  • MD5

    256946d1e7515e016cc0be843a8681fa

  • SHA1

    aeb368ed9086273cd22833354f24b72bdcbde858

  • SHA256

    084b9ff2a0d6e28ce2fd9af0cde4c8f63b099b167a275c027a0e51612ac6deef

  • SHA512

    d2ca16a1d6733b18ddb395ce4ca2661e0c95ca6ac2c75db4158fba8f7a882848107b3d7d2b580ae1d7f8069cffd5b1a767dd0ecc88aafbcc1f93b9e24787fc25

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cvery.comvc102543525255525\exe\help\left.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2396
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2396 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2780

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    92ed78ebd7f2a964002ef09528fd5e3c

    SHA1

    fc136c5f7bcb3b0239d6eee366645b097d8681e5

    SHA256

    31e8f250999879024f0664d514036151ac1dae40d3ea034b9e84b1ac7f69e189

    SHA512

    b428bf61684b02d4bae6c435a5c5aab88ebb0c6ecc4f7c4c90dcef14d03320e688c8266b11a2588d55116347195dfc46952a59c762958626a4ff22ef86804813

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c2f2844a44043eec2e0614c7d856e320

    SHA1

    c1b3dcbab0da8bf38d82005a508c4f6477317b15

    SHA256

    355127a556ec2676602c1620dd3aaf960a16b7854a261d842670689395d7f2eb

    SHA512

    7f177067f79dbeeecf8e583f009c7b63ef58f42dfa48155a376254ee4f57b0ccc78adfca4b7770e07872d9a7fb0a0da9f27357ce7fec3cc47c06d5b69829005a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7abfb30022a366e30f00a5bdbedb2b5d

    SHA1

    fe48f6b363658ae7fd58919c47ed86f5bf3ea63c

    SHA256

    897a1223f4fc3062ab7eeff0295fa7804ac2f55c0218b122d134f563d991cd9a

    SHA512

    f3c2741b5774895f358662f722f5c51e5b31dd51213c7fce03ff1bf1c28f15dd594edef461c0250ccdbe8de2a2471b16b32059db8d1b5a4fbc828403bcbdf333

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a009dd246c56bb7bd1b94d46339cb3ba

    SHA1

    3d99e32ece059bbfac5dc92f555328d670743568

    SHA256

    4aef69cb14e95b401652c023b63c970cd28add8922b05a9ec8167edc324bf072

    SHA512

    d6c4e6d61c2f5224a4343347e6d7cc7278feb41520ed3923afa6e81fded780d6e5e0d50f3351d4b26825b8cd2070dab63c849172e8d6587fad35d8775b1a084c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b388982839ec88ee632f21b07ae239a

    SHA1

    7cdf7209eec6f13b6e376d7f1645dac54f4a6ae8

    SHA256

    3958d6bf27f56c6d446f8ccd5477b0dc37c2554bc400d949215bb951184adfa3

    SHA512

    12ed8805ddf0b13d1cbf5d15df968f20d14b6cc27314be0d2998f0e12e150658d1786d68a8ed19b40660ec8fea727f0d2a41be035ac0f6bea785673c86742764

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10825237702f733647d97e8dbf0d3332

    SHA1

    f6785fe0c81bb692e206e2736f1177a2f9eab84e

    SHA256

    72dcdea493e02b113dc22644ea4ac513a0b0bead1ff759ad89c1797ab96aed24

    SHA512

    6ee50f012eaf6bf4be80cb3b420d6537e30bae5e35c6057b66d39735c7e7da939d44534bebe03c8c97c4c6d15e3d0a9791d866fe3876003ef9a2e0b44ba14519

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    052cd6001b0b3970ab9623c803eda821

    SHA1

    26632c24e0da7522987376d20cc537b3880ecfb6

    SHA256

    47df5126c2be56512357d2bc621e5ac4c922f3fbc690bbb6bc378757de77d2b8

    SHA512

    62ed1a125e3e7d884f1bedf9b09667433d07fb8d71a5c5eb68454a949a5cd96975e7161ef597f04812ad48cf9869e11f824f20d8e54f51221d4a9868dc52194e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02cd32777d3e4a06339c2b81dab4c78f

    SHA1

    ca1fa85fb80694e7ee1ed896a53f27bbc5db6eb5

    SHA256

    fe68cfdb3f1f352ac160d21e7b70c3bfc2173fb651fb9c2337e9bb3fa2e8dfc3

    SHA512

    03e88c8419e83ab0ed863321a2e8a65b90b4ca8c917940c752a6bda2f1dfd0c9d215752a197e079ea49fd1eb84b6a46acd070d27e309d3974f02cc9818f08ef4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26058eccf578120871082cadd8e5799d

    SHA1

    e1340c61af02e0b7337da481c619f5e480588366

    SHA256

    73f57ee9aef06dfc15a4df2a93480aff5224e5be8200b14dae471431d17ef437

    SHA512

    df0fe9f953598baf2fd76c0bb8f7af977da03c7dfd4326cc953b6d48dc8ba23a5f2ae77a070e910cd029c8d50989d550688574633acae7103a83373d9069f458

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bcb35825cc03708320e0d5b6c6caec05

    SHA1

    d89d485dedea541a57d434290b25107c1c6e2ec4

    SHA256

    2d1f00df9185a7e0860c45bba389662bfdd7596bc0605d89be8380f023da6fe0

    SHA512

    cf2878204ff5fb1e442d6047ce69805dae333afccc0701fe8d28760e6ade895d0d2d84d8c9913115d04cde7ec92fefea34d317710e4951fee4bdfcc409a1b7ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    522c85df21ced79a4ce366ed08e3c093

    SHA1

    ea11fcd410b9620b7a5dc2622dba969414ddf761

    SHA256

    c214567ab8e923b294b0946d336dc815ca1a5efbfb642c958adc29bd8c4ea18e

    SHA512

    369d9c5b29315397b336cedfd8ae875ccc57a7d0aa12af1297fafd1689ba8a8d6ca38b2440ad4868e0ea5ebfe08cdb02cf4085da17a3553acaba9bcf96299144

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c66e47345a92bdfc0833d0576bb71bf

    SHA1

    69c10a73e58420b90d189d9000287c86b8be307e

    SHA256

    b60f4dbfb3f48b3b47f647f48e31039f7f60ec2c04325b91dfb1eb1683e92318

    SHA512

    0c808276ae3c99dee91df7df758277101ed6b5b1da24ac184ec31868b5a4c831621d5f867c9ec3013ce63b26b02355ef1b32570132b2dcee2b6bb459565fc93d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d9f96bc0bb51210f5d739078b30e11c

    SHA1

    603d892234924a322dd601fadc51248ee4afcfbc

    SHA256

    ce1c6297749561b382541079adae7d1ac9a6f171b0490940ceac265c149dc830

    SHA512

    e59ac528b64b2749037f1467faf7cd34ee4aeea5cc29d09458ad7018dfb94897dcd5742a36f99e6c7c7b5cdfcc860abcc955b82e8a1c5dc1c74a4dfd08daeab5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56159adc3139235150476daa35a97573

    SHA1

    020a84de4ca03784f95b6cd8afb2632c99280b51

    SHA256

    4c3311f8f2bed88b1b32399ea510dc0314860ff1865686991f13e584f0818483

    SHA512

    c879e0332a82581f5623cf722289dd1e5cf15fa7f6fe88fb3f19d589bcfdf67aea2075855534e24e3187b11f06dbc3ba4268819b0e84c283dbb2c8dd84c3e8db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    836571b060c36967eaf1ebe67a37df86

    SHA1

    98fa8c77891700621d6ebf0c988b1fc909b2cbfa

    SHA256

    44e82ceb20afb1661a654620bf0e9b465722884ad10ace88b6958885e4bc91bb

    SHA512

    183f733ba70e160250e8a94eaeb4befbd2c8e8fe31252db6dbcf2cad312bd4fc6116ba6e59dbaec382ed128ae85aca626bfc165a8b6357d129517ec5a479c92c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac8bedde8d3179497ba46033fb69e12c

    SHA1

    78fe89076701a061acc6939bbbab1d9e5dd487ad

    SHA256

    d6e2a003e0b99b892adf18e2f193343c8cac9c36b829d8039697a24e751e8edc

    SHA512

    ae800833cbdff3926044d30eba51d8d6d1575a5b7b846cfa1497d1e7cb36438e14fa4e11afc81d591b436657bbe7540fe393f31b27ea3629bdf2e6fef8e74466

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f0556a63c1722e09d62e2c0b58db6bd

    SHA1

    c58d582656f5fd5a19e79df3692fb39edef0906a

    SHA256

    6e4cfadcd18d8330478942434177bc4de115a71552e52d3230dcb4b3ed04f962

    SHA512

    642fade4928b3c9d6b5da865ee6e18f5af4dce5c233be19dd7843b20382c19c33f78861705fba993991c86a3966caa316fe55ccbf222f8dcc667bc4908db6586

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1e12a56e9b5f380c00d4dbc3d089c12

    SHA1

    c43aa1a286d487f58f3bc63e7f8ac2ccca12dce0

    SHA256

    aafdb268aa0a917042850b47ca744503feaad2050deac1ebcb4e9da973c956f2

    SHA512

    d457bae7840d4968f6fc9635c32d37446d63275bef6fd7dd50fa8da67937cb5aa48c09ba4b77fc9501d874905ea70a1fc6c12e93f0352938338efafa6c959b4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d88c7056221818071202ccb1b3decc00

    SHA1

    194ee9e4873add5ff0479651659bc8be5f158869

    SHA256

    ca5d3bc4b8713de8f617c55cd194dd4116d95d755969ebc737f64dac5e2928cc

    SHA512

    e285bdf3bb38a7923149a9fee788a686b5b343ebb198ecc0cba2bd2cc91d41a242af5c5a4fb9c04129b5278252b6b9c78a247f3de28567568f21e03f7976e285

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab239A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2439.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit