Overview

overview

3

Static

static

3

cvery.comv...ou.url

windows7-x64

1

cvery.comv...ou.url

windows10-2004-x64

1

cvery.comv...lk.exe

windows7-x64

3

cvery.comv...lk.exe

windows10-2004-x64

3

cvery.comv...ht.htm

windows7-x64

3

cvery.comv...ht.htm

windows10-2004-x64

3

cvery.comv...er.htm

windows7-x64

3

cvery.comv...er.htm

windows10-2004-x64

3

cvery.comv...aq.htm

windows7-x64

3

cvery.comv...aq.htm

windows10-2004-x64

3

cvery.comv...lp.htm

windows7-x64

3

cvery.comv...lp.htm

windows10-2004-x64

3

cvery.comv...ft.htm

windows7-x64

3

cvery.comv...ft.htm

windows10-2004-x64

3

cvery.comv...un.htm

windows7-x64

3

cvery.comv...un.htm

windows10-2004-x64

3

cvery.comv...ep.htm

windows7-x64

3

cvery.comv...ep.htm

windows10-2004-x64

3

cvery.comv...op.htm

windows7-x64

3

cvery.comv...op.htm

windows10-2004-x64

3

cvery.comv...ie.htm

windows7-x64

3

cvery.comv...ie.htm

windows10-2004-x64

3

cvery.comv...se.htm

windows7-x64

3

cvery.comv...se.htm

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    26-07-2024 19:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cvery.comvc102543525255525/exe/help/step.htm

  • Size

    1KB

  • MD5

    a89c51402a57563e8c494f43b96fb758

  • SHA1

    9baa83457d31fd07072c416aaf6c91a0863fdc1a

  • SHA256

    8d9a7196ec9d502cb39521c049fcb032f336a72bb2c90b21a99cb388aaaf2424

  • SHA512

    8865638e65b57b6ab122db6819da4df2f5fc4befe47e070c089a17639db6d8b950f4fd9c55ce705903561e8c418ebde998026b3402cd3d4c77116b50ad4cad2b

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cvery.comvc102543525255525\exe\help\step.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2408
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2408 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2580

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a757a98e33b6cff4e9be7fcf2bd45365

    SHA1

    5e13b2af5de7e48c11f72df16f7f1a3039cc3c74

    SHA256

    acf5ffbefabcde0ce13463f9ccfcd94fe3c4deea7f364e5fa5bb9d72c2fbfa97

    SHA512

    2a61b9ba3bd6e58b15b45cb655498349e457b6648e9b8c21406b16077746b06c9c3ae69d53ba5ed0850938d70aba5ac26d6a730b45619443c4cc6eb1db88278d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37d0c1d6000cfd9b615b009822475b81

    SHA1

    6e08cbe3c3b01f95ffdeb0f26b8441f26dadeb1e

    SHA256

    eeb0dd6d620a281c2752eef542715694ba671393b9ba963bba10c73cfcd2c9e5

    SHA512

    6d1f08c6273719adfa696a385f1a0c98207a846b1dc367adddfeaebf0ba6220baecd432abc69fd92363fbdb9dd36a40eb671748a07a173fb0ec26260c5f0ddb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37165a2cf54df1f02b38bf3988692482

    SHA1

    c3e69e413b1febf357f765aa43f0644918042bff

    SHA256

    073426cb12691de8c9e8f623d9f1dd8569b6cd3ea805ae5883ffb3ec69fd19c2

    SHA512

    7ec0104867070a26cd0c2bdb9df950d9e23f8f0ef677765f6c57027aa56f25798be70d1a528f1cbb5c3b465bea554efa8e2e4d506203b25b64440a5cb050d843

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7fa65cfa2d35f9f5e5f31562639423d

    SHA1

    25695b88c3ec2391dd5193baa15511a0a5b955ed

    SHA256

    d55333411f2f9b4e1422216aa9239662ed0794df22db00b7325f86204dd43f29

    SHA512

    d3bdfe5e6f67862eb81012b9c15994fbb05783c1f23a4eb804e15c7d4dd63357967021f50b510604f09ab6fdf1b92f2df0e11c25b3ba4d242c11062dd30d013d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3b7a1dc5c1045f86852e0300142fa4a

    SHA1

    cfcb412e34c71835a7b8ef3553a65388e33bc4b4

    SHA256

    085c5990bf1af4acaf20b8b1b6cc46ef18dfc26af85bb9e217bfc26e94836a44

    SHA512

    97ad78ed4e336be4cb66b1c180fb1b6d8b96a10474769c56732f003e4061b312e42ca26df44d0fc990946f720a84f0d5e9524c08d30770fa0118ee0c86dc8886

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f5f9c427f23c9a56891590905c01ac1

    SHA1

    0bdff6f1ba1a4cddd3e845751e444c81451b3f8a

    SHA256

    197705e4acca3d86e1f16d2a69bea8da80b8442d4217eac77d788ae8cf9d3507

    SHA512

    ba3649c733d69bb98c7c7f1d4e3dd1a006c494e8ee6fe905cbce1e3ad5c81a3852f7623f4fa7265f8f491927612335752dae2f7d559f34221ba25dc279788e38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c080acdc6f0ee419ac7ea92cbf78e9ac

    SHA1

    ac0dde7b58ce7b11e7e295aa8baea8ad2a4426c3

    SHA256

    53630cb98a2b3c67cd1cb45ff2438eac1da635a9c13d372664519898512a578b

    SHA512

    c18d3bf06790f7d0d4af9b7f6a6c9184934462f88f146c67703f8b1238839746b2b4897143a9aaf683df95f9e7778d55b26ead0eeda014ee1641605968b3eaf9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ce649fd241f1b67db0b306d767e6979

    SHA1

    5efe42107bc6329e3b4b137e2649a234708e43e4

    SHA256

    a5320a4cfec31ebd0e0f0e7ebd926ca00506195c5c7ef929f8424ae60da63455

    SHA512

    ae3ed237bbe7658514919f9f82081b8fcd3af92a25de37bd0c0f02e818a43c01c5dc1071df4213112e3fdc5be692918f19eb134d88ad2a1e4a0d7d0eb49d860d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d84a1d41af8142e1b83929b910d84bba

    SHA1

    6201d010a17b07f873e038e99ade475de37f199a

    SHA256

    10f719f54813469d90fa5b32e778f2f4680729ea7247c9292d121601c8b81462

    SHA512

    b75df29f2b36812a0a627909125102ab8345492b172cf720533600d37e79fd96331fdc7c37ab3cdbdc8756d69cc0ab56e0c32e21eac906787ee01c27f2ed5fd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b678d91eb07e4e281c3954e5b12445b

    SHA1

    0880864a0dbdef867942a90157eb8fe6a9bd6fda

    SHA256

    fc5c0fe7dc4883e48d600da2f7f83d98327c12f6b9c5569d50cf236ea0099fb3

    SHA512

    6d1d12de2240da413b602f127a38f7d2615ae91bdd752528d4027c37fbe821ad18ffe631dc2d103fe828ffe46f041a2cff671d71b91ba218b4ed43912a8ab118

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    434231a27ab931ff98b043cec76e2dc6

    SHA1

    8c9092868989144158be37f308b7231076706624

    SHA256

    96cc4acc3820010e40e78226ba1f880c7f308e16d87d897376a08578c6a285f2

    SHA512

    3915365013aa0ee748f5491ac6b0b360f730c94f0d65ecef5002cc7bade963935f0399b8c25fe18c865f00abf96dc22beffd9f33c2c2dd33f2b1dd3808150677

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d86369a957129981bc2729bc78b851c5

    SHA1

    e57ae4acb1ce7d8ac419dd7e0e66fa033fe87798

    SHA256

    0a1ffb718d7e5492146386e62cf4051a372c5998d66efeffd7d39bed13c46d4b

    SHA512

    cbd97eb6564ffea8822e7d30635d6bd58fcaf0d299bd59953e4409b4b8264c6ed3b5629d4f8312446ea49e4a2ed2ec64e7732dd15977d8f9ca17a0f87624618c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5ade3ef03bfc5b963a9d644044e079e

    SHA1

    e5994afcea85057c3b2b9525ad9963e17cb81430

    SHA256

    c0f37fb242ad6bdba7e22d8fb1572a77b5e00ebac404e9667dc5b4d6082c167c

    SHA512

    4fbb21911236079d283997675b75b9d0c8cbcf2a60c9df4383e2d9c79f067e79e99727e535c871326d071f2531540c19df32955b2f7eaa380a5beabfb24c0be0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69e886da1183dd67112b0c58abffc15d

    SHA1

    9ef43120e14cbcc853d1e40134f25b881f06e702

    SHA256

    c09329963fdc9e9decdbbef593edb98b7fc52800ae5fba875f6d3899ea6fb431

    SHA512

    35eb6160bea26b1f24467d848ce1932cddb0a0456bb4428ae390f0f87e24ab643ffbe09da705eb5da2f489057409005f13c0ef7ceb0c862758471cfb4f28d4e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    97d8967a68c13b35e4d66ae603bdf541

    SHA1

    bb59eb6d61a55b5013c093a55593fc1725f5d51b

    SHA256

    1a878bc7bbd7e6b077ae8f52fa701a2ab30b9dc89d45acdddfbf019183969519

    SHA512

    2979edd2d146f1f5440c78c9b9a91b96fd663b847c1d5aed4c547221971e21cf044d44669220b58c58706bcc9a97d937af371bfe5fd74773f06ea4bd7794fbc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8b1bf7abb6a34d77c41e1909bc039a9

    SHA1

    a8135f8b89e33f6f2865579d4818accc217a4194

    SHA256

    07e781e7dfdd0d2ea4b66950e7ef79a2cdeb58e986a51c83671cff4f0af4f405

    SHA512

    1711decbd2ad386912aec958e810e303d2e7ad9ce76208bfa4b6fabb29eac7adda2bf36c666943adb19d949abfe25a65284fe639c1ab6546a1037e5c99f606d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    700e2e7cd814233aab34f028350e8838

    SHA1

    4feccc0df4e7cd8b5c1ab24f304ee2b5183a0799

    SHA256

    02a1a3e61cee56e57edde5426bd5dd8ff41769252a4ec709fa68787aaee5e1a1

    SHA512

    2f484342e9e174647b4c8fb71932789deb370464991e38dcdc852adbced3c5ac42dd750759f22c8e8fc37b9786c4a623ebc447ca2b501ad149337fdc6c7e9e1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63ac1273a5b4f8333ca1dda69ad8d49c

    SHA1

    001d6db69999ae42b39600c16c32a8b490844f3b

    SHA256

    f8ab27f014c42fb57bf120bc88c0fbf7e17e1851c59421cace3d77cbb19434ce

    SHA512

    f913596bea23aebdef0d5c536a91b4ae6cb3775f44b8bd5b891520452486ecc5b22a1f0f37080b0a4aaec4f39f17eefdf01814833da0386e3d0d3e1cd7133906

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5fe352893c8cd18f162edf5d795a8d1a

    SHA1

    ca2eafd9e0230852cdfb7745a32052e11bbf043c

    SHA256

    893bc29e66331c6ea698dffdb5b526089c39967ce454056c3588c616965e3e15

    SHA512

    33761068d7ba1ec19a5bc25e29cbdd92af132f56075d565c560eeb467c0635d666d00d4caa9990ff279e41e52e788fcc9a1dd484f6f3fb516f6c4b7998282ed3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEFFD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF08C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit