Overview

overview

3

Static

static

3

cvery.comv...ou.url

windows7-x64

1

cvery.comv...ou.url

windows10-2004-x64

1

cvery.comv...lk.exe

windows7-x64

3

cvery.comv...lk.exe

windows10-2004-x64

3

cvery.comv...ht.htm

windows7-x64

3

cvery.comv...ht.htm

windows10-2004-x64

3

cvery.comv...er.htm

windows7-x64

3

cvery.comv...er.htm

windows10-2004-x64

3

cvery.comv...aq.htm

windows7-x64

3

cvery.comv...aq.htm

windows10-2004-x64

3

cvery.comv...lp.htm

windows7-x64

3

cvery.comv...lp.htm

windows10-2004-x64

3

cvery.comv...ft.htm

windows7-x64

3

cvery.comv...ft.htm

windows10-2004-x64

3

cvery.comv...un.htm

windows7-x64

3

cvery.comv...un.htm

windows10-2004-x64

3

cvery.comv...ep.htm

windows7-x64

3

cvery.comv...ep.htm

windows10-2004-x64

3

cvery.comv...op.htm

windows7-x64

3

cvery.comv...op.htm

windows10-2004-x64

3

cvery.comv...ie.htm

windows7-x64

3

cvery.comv...ie.htm

windows10-2004-x64

3

cvery.comv...se.htm

windows7-x64

3

cvery.comv...se.htm

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    26-07-2024 19:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cvery.comvc102543525255525/exe/help/copyright.htm

  • Size

    759B

  • MD5

    dbb4746a7f20db450e82b4da81dd9eb9

  • SHA1

    4ef4257952998fbf3cdfc498b5aacf177e59329d

  • SHA256

    cfeefaa5cda7898c64054a795db3374096328d124eb9c03bfe54f5cdfc5d4183

  • SHA512

    c786bef7adcd10571cbbd1a97c7c3581058a1e5ab5ef3aa32e7192feaeb84260ea5074355258badba21437aef96c30802873e8dee31a80e3eb82f290c1b13921

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cvery.comvc102543525255525\exe\help\copyright.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2304

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    142c0f9aff4e2faaf64d1243a96c0ce8

    SHA1

    6fa1751519fac8f51c8b509204b327231df0ffc7

    SHA256

    26a5671d3a111bff9441cfb43b9499c485d3176fd90068cf8c55b1748a1dd994

    SHA512

    a8db86dc4ecf213a876565efb147140b802f4fafd472c602c1fc358f9273e2d4801077e2c6fc3dd9f93bfd33282f073e3717695166062c10ec41ce929204df2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f57778301e065d7cf864857fcfacab4c

    SHA1

    f55281db4c113e2aeb3e61fb223efa23bf758b32

    SHA256

    3ae0b76e3a8b9c81ed392c74bb051a3abd2967febf1ad1da4d0e72701235ea94

    SHA512

    5175c92401f4882f4beddc8201b6aa79424a5d836714d1452995aa3f940bee55df19cc8f8182f1afb4e17e9c6b60a17ba7390fb45fb25a07a1b19307cf8f41c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b1d071ed0e61a360cc9d0f86a698f784

    SHA1

    2067177097371e6845e4eec036e194e1b7b829f0

    SHA256

    1384ec763b33716e931eba317dc0b1a0dc73219045df3581a06e9dee5664aad4

    SHA512

    11284e5f6438c4662c976825a1df605851f8e00ea0eed43132511757dbfe780ba5d55845d5aaec025d682a3e4caa7287045663d8f45f0fd45a2076de023063d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d55a8ecdaf6c85641acbd2581da79170

    SHA1

    0a1fda6b4779b992cbb1d5a0839cb69960533765

    SHA256

    d8c1ad70bff136b6773bdd125784f8074bf8cb54bf28fb6b29fdcae3ba3de8c3

    SHA512

    56e63207e298a8a9faa50aa8af25ef6cd79fe4d114abdf0803ffe5fd328c382035b2f6e0f65988a47ec822b0d25b146a1cfeb7fc548b098e9bc737a6397a5d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8ced9907e548ea564cd23ca9cf42c1ee

    SHA1

    76b0047adcb6517597ed3ec544620adc35270e59

    SHA256

    af2399d25c018766851fecadc122353134c74a139cf741fc9a3ffcce73791971

    SHA512

    ff17ab5c6225fa1908a93c5d827c66765d225cd4296b2fd576f0f3840d77811f3b2f8c00b08c5479119a2c879b4747386dca4d978dc4bea15ff28a17574e75d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    02ba97b3515f523182297b74447d1666

    SHA1

    c66848962bf2a73ad4d97127420f22af8c507d34

    SHA256

    0a34be7c1e52f5e73628911277ec82f464fcb5d3817abbd374d7d3d3f7205e46

    SHA512

    2686e480179cd6faf4563b8880e0f1e07005ab9004fb72b1ffa480b9d2c41ddcc779b51afbcb9f5a8dc00a924430f4df22da526924fb9521b247d3b081811754

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    41b0c262cc4dd9c5de3725328bc37c1e

    SHA1

    a051b26b8f234bcd772df7678e5eae60522af791

    SHA256

    e7269738173b48bf2b01d46bb0f26bf8d890ca98b4697800c9f8821dbf265983

    SHA512

    2a368c4c9adb1206766a5bc70602acdbd86f52068ceca61e670b033d270494c175410e6039d2c0dd3a60d86ab90175af5a144ba6b4c257fec480ce672d161a34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    509c8a7500260c192450f0fb7de5d46c

    SHA1

    c3c31645781b13b93c73c581476740add6e2cdc6

    SHA256

    c0e74a1e08e4bf6bb4b19ea286dda896c40402f6e9566b0d1bf0e10ee5d93d36

    SHA512

    515a8b57d50fe3ce8046f4f557b5fa72426bc61496bbfc34c2881e6bb26ac4368ef25c53ccfd19181450c84ce890e1abb267d8323580b7cb767c99b6c4d9770b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    de3d4ce4b29fc73625541006f38b721d

    SHA1

    f09b17d132436c61b10c9b9ae95e1f7885eb833c

    SHA256

    ad834d3efe02941c40ff20169c126a71bc3242ddd0abd006c31543822a10e5e7

    SHA512

    7f1e6990136f87292d8b98068d805f03082e842431a82d907a4788600221cd9e81ea9adbdfbde77060455b888e39e100c8b2b34f82fcf731fac837bcbb61f763

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a3d767c8b0a7ecca649d2ae0053c647f

    SHA1

    bac0d3f52bc22ef27982b42443d4cdc3c973561d

    SHA256

    bc8f0c5de728992f43ef3b437464c133e19b9aeaa4852c8b5c24e57e1b8aba5e

    SHA512

    2c505e7dfad3a39e68245e91c6840395ee7576288ae9a756a8c0c30d0c8b0b79b56652c08d66101b146e08a962e76d52cacf0d0746c53c65572d062e6e275301

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9a23c813d0f68eb4ad3b617380d0cf9f

    SHA1

    3edfed986dc674ef9819d041ab595a6433a91fb5

    SHA256

    1bc0b65930b9946eb2842d1b96f2c41b00fd3a3f2539a4e52e8054dd1f00eccc

    SHA512

    cd5ff896dba481a40067acc1af2d7c74b8f36efd6703bb4821891458f3fc8a747d53996f50bcda916cc346813364b7a6a1b8210a673ac485dd55eedcdc31d95b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    e86aac4e4f9a431aae5bf1895ad1f184

    SHA1

    9f4beca07004a728d99d9fd6b3ef0a99ca4cbfa5

    SHA256

    469a621a89f88f3e2fec81ac0861f9ef64dfd708b258bfa537ba1e3b7b39ca5f

    SHA512

    dc43d7cdc49cdacdcb604ef3e980a8c83ffd20d7e723c7b9e9e69e0bcf759fe4850c6821105496df908de2de0afd090379a27871967dd062fc333de976a24bb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    37c3ec356c73da98299dbd9c9110777c

    SHA1

    8b54e00eeb00c4947c81940b0d9f4ddbd442adbf

    SHA256

    f42986ee4ae2f46e713099294bbedccf9b6a235b8d11121ff61d606d3ec8b00d

    SHA512

    15a03a6fc4c97fe6b9035a3ea1ac4e35f039a538e86cd7a601b0375addf39612e27270d27e05216e5224ef7dd5c8048aa24d448cc3bada450d9222d7bd82af5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    150bda44d2cdd7c22b663618c78f712a

    SHA1

    5a8c7c640ff2af06cb43a15d29cca0c218176502

    SHA256

    5e0c8a7eb920c2998d12e6d2bbb9696bd472cffa8eb7de1e39a5408e19bfcb56

    SHA512

    d7c1a28697717ebc035e30d1db16423ea5664d1cc524c71fad80f6a4d72ffe84c3573f524345ca97c187cf3b6d79a69fdc802c0a3ae36ae4a86bbb77531a974f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8779c8c06acea06bfb32a2e2e87ac8ec

    SHA1

    5c0dd3666b0969e088be5dbceed96222900753e8

    SHA256

    c9e179886bfe5209acb52fbf888c50158239e2778ec67eab8c8cc789988d8db9

    SHA512

    137c39a320d5a926d25d62bd3af959a5fe375f0c63fb7b929979c26501ce9e5feadfd259439fa43b06b21d3c219304aa4f1c5eecabb53dc5b881ce6994f310ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9b8ae2c242d9ed97209a6e1fcf80ab1e

    SHA1

    71d69517c5e829f21b08b9b56761a4d218897b19

    SHA256

    8dfda7f5fb1715f82f0c30172507b775b54af3f553da538fc8d6cddefca677a1

    SHA512

    0a559fd8fcaa3540bda194a6b0fc8ac7ef2cb906caba945a769ec0daa371fc1e4ba70fb27353e2e0ebc773eda406d4ebd94f0588c3a4601a55e8cd9de0d207ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c045a2b310af4672e277f94d5e58afbf

    SHA1

    287254556bec03d9ba56758b6a386dbde918f851

    SHA256

    b73cd87077a0ae66d1c2339cc36e679a8ee1cc79261ef453cad68cd09ff6a0d8

    SHA512

    6b5f153c29e9a765f78a06a79b1bb505b4a68ca4d61f493cc2f87daea749f7e2f9c465735ae491cf887f725e6d5b0ec12e722ff84a5de2c598cf42450599713a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    56fc54c2438f1f35e2e8b456c6b7a68b

    SHA1

    bc5ddbbd3e4f9f8bd64ee295b165b93fb4d97215

    SHA256

    1e2ee07e846404184ee1e1e0fd2124b61b4914ab2b5a3fb0f1fc8cf127958d21

    SHA512

    6e29c8345626c16c5ada4b6a4abfc65b60f4251f9bb8fd93fd25f0a3764d8e83f1f03330914ed6e516c7902a30819e5eebe9835dd2577900bb518ce2bf0ac920

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f3f54125c69f14952155df224fd6ffc5

    SHA1

    0d373c16bda2a1fad48ef9ca6783f97e006807d5

    SHA256

    e00dcb661bc0f37d6b3e78aa6a88e3256c7f7d2277882115e0c38a73db527cd8

    SHA512

    6774fba9cc491b178418807581cf6fc1b3e4189cdb58b8fbda012de22f7bed83fdbfb1b6f1674579569329fc409debd2bb9040741074a6f0e886686a81f39738

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF4DD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF57C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit