Overview

overview

3

Static

static

3

cvery.comv...ou.url

windows7-x64

1

cvery.comv...ou.url

windows10-2004-x64

1

cvery.comv...lk.exe

windows7-x64

3

cvery.comv...lk.exe

windows10-2004-x64

3

cvery.comv...ht.htm

windows7-x64

3

cvery.comv...ht.htm

windows10-2004-x64

3

cvery.comv...er.htm

windows7-x64

3

cvery.comv...er.htm

windows10-2004-x64

3

cvery.comv...aq.htm

windows7-x64

3

cvery.comv...aq.htm

windows10-2004-x64

3

cvery.comv...lp.htm

windows7-x64

3

cvery.comv...lp.htm

windows10-2004-x64

3

cvery.comv...ft.htm

windows7-x64

3

cvery.comv...ft.htm

windows10-2004-x64

3

cvery.comv...un.htm

windows7-x64

3

cvery.comv...un.htm

windows10-2004-x64

3

cvery.comv...ep.htm

windows7-x64

3

cvery.comv...ep.htm

windows10-2004-x64

3

cvery.comv...op.htm

windows7-x64

3

cvery.comv...op.htm

windows10-2004-x64

3

cvery.comv...ie.htm

windows7-x64

3

cvery.comv...ie.htm

windows10-2004-x64

3

cvery.comv...se.htm

windows7-x64

3

cvery.comv...se.htm

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    26-07-2024 19:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cvery.comvc102543525255525/exe/help/use.htm

  • Size

    726B

  • MD5

    ecb630059da1ae6b45aa69d7ab73ee0b

  • SHA1

    cb3aed25341bb9c3b6d9a6cc75ba2da836f4cd33

  • SHA256

    fbc4b96a3e5603e902870c8dea2a5f5f236601840c195d83a8e992d5a11bcf9d

  • SHA512

    cca588ff9810fecfbb34e3244b719fc88c8f028dfe828acb00bf3939c81adc056739fae292bec2836eb9ab9131ea31b78a13348e9f615ca67a3478d7d6394b6e

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cvery.comvc102543525255525\exe\help\use.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:308
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:308 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2336

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    81791ac0dccf2b8c9a7b5fbf3691444a

    SHA1

    9c5a60c94fd0df2d9be947b833a47c3527937d6a

    SHA256

    70ab6937ae40ef030850c98643c678c2c1fa15a597282a12c26a7fdbce495945

    SHA512

    a4ff5d03e619566bf50895ed0fb7cfa9519320a20ae358a588be3bd26777f8d4bddfc204f779ef339697a95addd14ee4729dfe13b5f31470a56a762c74e6c318

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    43e2f6c0a318966a31b94996c539d613

    SHA1

    b4531c4670a20596c4d172be63a8943d5e2e8054

    SHA256

    8def6016de55007171a136c738049ca5028cc7e8064f6071eb7e09bc4a42f9d6

    SHA512

    259deb096eee3302c92d82cdd61d3bccc700129213e2d1f2a48a8a4f85ad5dd9f5762a7b4695c7a1334043f92286a8eb5ae095b5b4050cc6eec37ec42e98a39b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7f9dc6763175650ceb2d83e40e1e647f

    SHA1

    ab29feab24dd3fa74af9e58b2fbdecb9b251ebee

    SHA256

    1890d8e4d97cbe7a5dc798c6f4ff275fe5d12bcb47188ff697ea676424896cf0

    SHA512

    42a3f66edafadbca3219561bd351348db4fe18358eebed8bf93bfd061ec73e6f4d4db21dec22cc4de1fd3771290eb38c7aedc6ac61459b09ae5b34ec469be103

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8a4941413611efc33b6b1f12204f9235

    SHA1

    7928e0ea948ea916609d7e9f4391da720ba162d4

    SHA256

    9df80e037be5c6ecfe8c3f3fd1ab6621450d5f0fb9017f0f7c375516a1f554ce

    SHA512

    ab9f95d5d3983fe387012e845ddb7842f2e138c2bd30ee20cf239bcc41852ea26b5b021f1b973b55f848cba41e99c4e231b463957aef7a588eff88aa5209c8f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3db897a631e8c7e202ba74423af1ada1

    SHA1

    da89a2dd2892b409f1c37843fd904aaff654ff84

    SHA256

    5cb0bbb0b600ff024792c1113fc05d3ba0a8e82295f48371655747facc0fab04

    SHA512

    5224162add9b8ea8baec827ec310da1af3d4a95d878b8eca03060719bd6bd4c079146fe12ef49c1304aab0dd47f598c6db9530e31a1074777cebc08d5de39c5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    e7f2adbb56bdb95ad77c9590cfa5e6a3

    SHA1

    19a7c03033258eaeefa19a51c524e3766a0eff30

    SHA256

    c6f4c956e1e6692186898bc4857337c41182d523681d4bb018571005885bc431

    SHA512

    a308cc7b17655b3c3297e0a11a9ee0c2d742ba699428b90c4b8d2e80707417a42cd881aa995fd7cf05f003fa1b7443ec82958cef5618e7784d48c49b1c4d22d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b2d82a78a727bbb3520fbb1d7470dd01

    SHA1

    74bbd490ff832781f8c0b77c945d51956d74bd72

    SHA256

    d028f6d3e52b44d8bd71e2146d3dbe4c3bbe23e7450c39bba90c45a58ff56705

    SHA512

    dcd29bdc44c98686ec89d6cbdc6c21863d5bf2fb1c6961fb8b3b0bba49739b26c3bfd299bfaaa10f0a97e0306f72caaa714615f886c888bc50699155b4f40e67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a51152b0490dea3e5a4944283d80189d

    SHA1

    bc2675aae3c8b24bd2994ece2dccf1328b50dba7

    SHA256

    b28c3b86c26d23bba657153ebd3eaa6e9f9766514c9692cf5dceac81554d3951

    SHA512

    2dfbf316842fe19e4d928c84956a3c4ccc91af9910e3e5a32cff13d8bb76c2ba858b30519ee4f12c6686201bd7dda93082dbc6ed26221364ea9be9ec71b7db6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ea53b8bd888633e580742f27988bb41f

    SHA1

    191ab9f8648c0ee85f95ba4677106ba2137b3920

    SHA256

    437cedaa5a54a37093acc063035bfbdfec5a4e6b6248156b2f0c694a070db327

    SHA512

    18dbcbe7c47d773174600f24d18aba9fa340d6aa6391cb1e3d74dbd4ff0b063143baccaf71a31b31ae0973e7613106aacd80deead855356fa6877cf8dcef20e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d09c6a685a306e9f7481ada2fb919986

    SHA1

    6e091776e4492110eea667447ee792e82b50b00e

    SHA256

    74f719ce90c63f2fafa27034a7eddce1619d79e6dbb06b79d9493111dc61164b

    SHA512

    311a05790f0c75ac1f5a13d2a4a841d5e4db386c7ccc96b2c30a16eb2217b5f34f53815789570d330f16b62dc01f9dbca02ab7d038830fe41d8aa6d9b2b5c4ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bc168e9478f8ecdebcb705a124513146

    SHA1

    5907c36c7884e366f0ff8c2344c9610924d40a93

    SHA256

    37ddc3e92c7efbfed35ca8e33cd721d701bfcd6d12e16ffc4591d109a9cc91f0

    SHA512

    56863892bebcbd50df8862e09f51bfc548c7b0d7243841307ccc150e1b5760788f7c75ab0a20e69e38b701ba4171efa4584b9e98173920afee5308b48d95c96c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d63b33b57ca17c18e289646853e61be7

    SHA1

    38e9ac3be1fb7b9a038474b414cf6df3964b31ac

    SHA256

    4a4649e6bfd44288072a270267c369f942cf76cb4c2adf64569618ac5378470a

    SHA512

    28e520c816497107e0431bc534d25fc1a7a91023f8c3d15c1f7e3438adc506455d00d325dbb9b6037d07abf5c9941c1a3275e2e0680e83d31cb0156c74c2347d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    080662483f61c611ebccdf0c8e9abf69

    SHA1

    d6360ad0ece524390cec0cb991e48fd37ba5be4a

    SHA256

    0c570b42bf90c9fa0a1d24312312826ae82023d651e1988b73e4df2bd63cd6a8

    SHA512

    80354ce0e85fae1b62b48f6c5c544a82f7738d2c20dc0e2fe5dbbeca32483553607e844915718bad8b49866f9a3b63fbdb0a566544399b028cae6d2813b0c81c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    69d796b88e79851561aca719686d9f8f

    SHA1

    b75aef932dbbb1a2b6ee2496826d35aba25a7a90

    SHA256

    685e8083efaaea709329394ed2c075682dcdfa38bb4bb5896e4d6bd51683337c

    SHA512

    2a09139ea7fb1c0cecf0317f58eb1ed5101efaac16f8f2916189c9e26c6c4c8b4665ef20f1b14122c2f58587bc0497dee05c0c6427a1c978b437f950a53f54b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f6166332e55765d6b467954e18893a2e

    SHA1

    b5f439081da68e6fe01e2d30910dc0bbfb1b8a42

    SHA256

    0a24722e1dd74626ec9aecf6ef80b91ed4323267af716dfc7c8f277a2671f01a

    SHA512

    431415fdbed32b40e348758cf0e68e591cbf9083c2e343365ac1a411ffb0a7b1cd9d95e022bb39ec4c42c769d2a822115c20938ec76cd148b6cb3611e0bee221

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1eb0d967f724e7f2214bcbcd8231e49e

    SHA1

    6df74da44de09e16f0e9c64e5425f3701ac53294

    SHA256

    13e63616d621294f98e9c8118f4fadf4821abba645a9ee1230f340ea82347101

    SHA512

    ad0d924a098a28b7d180c81e6a56fe2a6592e405ae4b5c50ace24f0f455788a47116bb4c5c361b5a9ac1d4035091817396e418f8df99466f6c974143076ae45d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    dfe98b057b88b81f7a19060ffe70e5a5

    SHA1

    5f88010a1c749bfddb543aa7919ae03fbd21c8f0

    SHA256

    db31a6d14c1b16223ea09d090862b65bbe8bf8c8d948d7deb177ab13b963351e

    SHA512

    0c72dbe01aae768d2ae9306c9e53a969ff51121dfd53687d6eec0b42ec35a4f5f8a2fdcc75eef0aa1372609d1fb841c3614e2b44be122170d53cb907817e13d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    56fb693358769db2178cc87d5cf7ad20

    SHA1

    043b064d8a1573e0d3a6d9a543630abf30f08290

    SHA256

    af2f1f2cd937697adc35afa0f74f768e067616f3ad3866789692b0221b95e990

    SHA512

    d4ebbaa94b83e4ffacc31f1ea74592ad60f79f7588fb17ae004635b6045e73a9a24c8f3bb50b7b5c1fdc01d6c4ab10fd07f244fc0448c38f88388f980eb1216f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ffa1966990e8064f0bdf187035daf4ea

    SHA1

    5bf73eb53aa01d4582b2d0ef7561f0366f0fd3fc

    SHA256

    1e3bb2d291a1329e9319058148bb18248b728707dcedaf8a67e8dc83952e392f

    SHA512

    a549b30a9c64b5f33e7b82cb199c143bd06f8c7f93c63b3f6cfe71a22d2c2caf4090331d974c4c4f50947b155334b91d0da7b3205e66f247afa06a904ea93707

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab244.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2E4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit