Overview

overview

10

Static

static

10

Pollos/CeleryIn.dll

windows7-x64

1

Pollos/CeleryIn.dll

windows10-2004-x64

1

Pollos/Guna.UI2.dll

windows7-x64

1

Pollos/Guna.UI2.dll

windows10-2004-x64

1

Pollos/Inject.exe

windows7-x64

1

Pollos/Inject.exe

windows10-2004-x64

1

Pollos/Mon...o.html

windows7-x64

3

Pollos/Mon...o.html

windows10-2004-x64

3

Pollos/Mon...ain.js

windows7-x64

3

Pollos/Mon...ain.js

windows10-2004-x64

3

Pollos/Mon...bat.js

windows7-x64

3

Pollos/Mon...bat.js

windows10-2004-x64

3

Pollos/Mon...fee.js

windows7-x64

3

Pollos/Mon...fee.js

windows10-2004-x64

3

Pollos/Mon...cpp.js

windows7-x64

3

Pollos/Mon...cpp.js

windows10-2004-x64

3

Pollos/Mon...arp.js

windows7-x64

3

Pollos/Mon...arp.js

windows10-2004-x64

3

Pollos/Mon...csp.js

windows7-x64

3

Pollos/Mon...csp.js

windows10-2004-x64

3

Pollos/Mon...css.js

windows7-x64

3

Pollos/Mon...css.js

windows10-2004-x64

3

Pollos/Mon...ile.js

windows7-x64

3

Pollos/Mon...ile.js

windows10-2004-x64

3

Pollos/Mon...arp.js

windows7-x64

3

Pollos/Mon...arp.js

windows10-2004-x64

3

Pollos/Mon.../go.js

windows7-x64

3

Pollos/Mon.../go.js

windows10-2004-x64

3

Pollos/Mon...ars.js

windows7-x64

3

Pollos/Mon...ars.js

windows10-2004-x64

3

Pollos/Mon...tml.js

windows7-x64

3

Pollos/Mon...tml.js

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    01-08-2024 21:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Pollos/Monaco/Monaco.html

  • Size

    6KB

  • MD5

    c92f106a09dafccb4573d199897fa642

  • SHA1

    f8cf6a2ff2cffdc2f3a84277705b9eb1a8d1dfdd

  • SHA256

    40cdabb8e90643505e73fc6c5771928c1fc45e8b4afb0d7e94742b41b209ae0a

  • SHA512

    74cc96543ed2417e7351f343ba091b44d42e3b151d524a88f929cffb68d54393c0a70b424046a3c814241ba1bb0fa3383b954720332db0db5e92817e8c64de2b

  • SSDEEP

    192:wEod3PorvXhP0Qp5keghKcCI2MCTJ3+NLSaPh/WCY/jt:ud3Podcw5keghHwjt

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Pollos\Monaco\Monaco.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2072
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2072 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    427bcfae0491ea5a4e6df5afac14c600

    SHA1

    db814879a446bd3eada10a13a9612fdcbde0e948

    SHA256

    aba662ff2f980b8103983171b5cf814a533ae0d9cffbf2ac232aff1fbb77e940

    SHA512

    015bdd01a17e2bc2ecb07c0502f8c2b11be7225925f1527b24d5834d887a906cb14ba1ced94ab848652ff706ceb1777178e2f014328108f3a0dda5a791241124

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8faa64a47bef327b2c1d75e2f07981c4

    SHA1

    38907ba8efefc269752cb704152883843661a322

    SHA256

    19ffad43dcd2691f2c0953a8a41f9d044ad41a7d2958514431fd8f1f704458eb

    SHA512

    7a9549932c973ae8c14292ebb6fce3323ab69d9f9879cb081211e4e94c5bf56dccb501329d070111dc4449c735c36b718b03ef09fc759c6dc296bde654d3bfe8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94578292d3a66fc7a9b0c6c4155dd16a

    SHA1

    ddfb1711abdb881eea9c49fbf6eb904a403c4576

    SHA256

    23d8b16b082edd18a68adea528e0ac603d71e9516fb8c76fdf9bb419bf29b7bb

    SHA512

    a9379841c84be259f93107271b20b8d2d08b01c41d78ad892f79df9ff3c4da31644f650d608edc49f4ebe2d5a0c2b50843099be0835e78cb4b0f4d1f8d6f5532

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56bcb897e87e5df6709a75c4edc40e6d

    SHA1

    9572b0cc7a3e11b1ab0ea703c14f02ec2051bceb

    SHA256

    7f9c2483d2c35613c0913e916b98f1590fb8e66fae1d1d4a3e410f8bfbad0245

    SHA512

    8549495ed7023563291d70afb6d3a6844ebfeb86200afd4102d118f0da72f6347f44fcb27d8b78e077fa72225bb21650af9c9e5e0fb4a9e6575b5c4dd0ae0237

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ffdcab3b3fc99140045d061bf05eebd1

    SHA1

    dfae74c605a1393f506637362632421430d4d237

    SHA256

    49acd8fac9a9cc109e1dad8bf718bddbf372d73e46c99ee30ac3d4b56e8f5ec2

    SHA512

    06c5dc7336b3e1723c2e12fbe8ec172058d468fd702a30ffcdeece8cb7bdba2a2fa30f1d1a9104728f0f296e38a858d6b9517c4b352b095add0b21b73f5969a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31c8df4a6000a85511dbd415c17df14b

    SHA1

    fcd2f6e9c00b07ae7f75867ef1d7574eca867f60

    SHA256

    8c128ea9e0d9638b6fb68d47be6fac980b571cc56a50c3916fd80a67f9568faf

    SHA512

    438c8a97dfb8261b101700e7d719c37dac3e794a3991a77929988d3aebef27058aff59af06004890892da8c2d3d96eb01527bfaebed482ca4678e1f4298905b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2478f3801c03316688a1e5b79df761aa

    SHA1

    228054fa9d35fd619b942fc001a33aabbe74dc3d

    SHA256

    82e2910537ab48c1035c7e621e6836a187295876b5cabd9b16744d8d82d8d95c

    SHA512

    65e6c203b6b51559442895a2f5bfe53bd7a696908daf122918d2ecf8a79339bf654aad51e43e72d55e8c82a9e5484be9fb1966f52d52af9d10f9afeec01fd60c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e84278e16668016fefb9d163fcd41aac

    SHA1

    cf0ded4a034ee5ecba3d68743b4a7c8412973c69

    SHA256

    a55e74ed0638ce29b346a52b341f336ab6aa4e764d6894ad28dde146d69c8643

    SHA512

    f1cc708da7b8da5c7a99abbc2e4e94e5a2cbe3d00a6f00651bbec157436eb9d722b6db4778eb6322bb65eaae65a59e022e48c3e8c996612c86ccc3d3a2e6d7e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29d0a3060e275e53237208eeb627a069

    SHA1

    91e5163ee9c61eb11ad50161190e5ed49cfb871b

    SHA256

    c2a08c97a0577b9b4dbb9d59fc638f6c4c684249de50ab06cbd17da3e7bed40e

    SHA512

    abb1b9a3e19a2e44342eba06e14ffaae1ac33a343aa2cf55fc9fcaa35519f076d7ef6257fe5c9425fce5db7a34616c8d4a841d38fd90990746a04005b3a02c7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf8ef0a1a7e0eb761c139a6e6ac1bcfe

    SHA1

    e768577de8df54122639ba02455635d9c2088bac

    SHA256

    a71567c9811fa002120e7c58d563a03928107b324b8a6408d3e183f698d76713

    SHA512

    4d2cd58cdf11e4f2d65917fd7798c4106ea788f68845cf90dcef255bc7fd0d4b59e69e8b04e25cf9b31bb5f9f4459be5d361162a22e18876edbf87f0d864a1f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d428de19e6221b069cc47832320b93b

    SHA1

    ebfb74335808b5475f36cc7ae6ed36115ee00c20

    SHA256

    b78b4e94e2c21269ca03ae794b8470cf689ee6de83cca370056ddbdbc9fb3dda

    SHA512

    460100a707ef3c8afeca01d305ea948757dff6bc245242b1c32829c90687bb737ae18f45f79cfa7854edde79c32f5852c4cf254056d5108ae7011fc0af3eda8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95d82f52efeffe2247301f65ee334d50

    SHA1

    fe38f8f7c0a3f43f758f63803ad1ca715e062942

    SHA256

    a898e9ee4306f2c824c06c4871509ae621105db3efd4300eb3320110303b56ad

    SHA512

    956c35e4d7810b3d0e74f9dc8dbdfa3f7198dff0ab50b662d9058c43be279636ef0f13ef122b541525dde7e5569a38daadbbcd54a08da0672260234a68d6864e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab92f256e49379cb3fee17c6c1ab824a

    SHA1

    a3e642a4e9d90701a184ae178e7e2cda9df45cb3

    SHA256

    9562843967d076f3d6db9767eb8366d0e39d836bdb6cf6549594cc879fa6fc80

    SHA512

    651eee22c39a6d60ad2f824271e9bf46ff9e90e1b9c77294ffadc8f111c232f4c6b09460bbc5190b0a2955781eadbfbe3fe4449f0b88aa986f9997e9b78ad2a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d8b67b9c32ece3a2146b2299e2bcf56

    SHA1

    a5276ac84da5e92633da33ae6008babc1705dab5

    SHA256

    954eab7503af89eee68905f1e2b1651729927a0fe9842ad750a1bcdabbc29b6e

    SHA512

    efefa19efe232eb13db0f537a547b5824b0bcb1b7c0c853155495b7b6a7ef0762aab5b9cfc61a48e2725f15d5b731adec52082ceac4f2dfaa269774ccc3e4840

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76587850f9eab1e82b597bebe383dc8e

    SHA1

    0c49f4cc0748f45b7b77b24097516e9f3d61ef76

    SHA256

    2a0613f6b055784819268c0029f7ca46b520f567204df1c94ca2af3f03dc59ca

    SHA512

    42b9a18a98bc04eebb735ba86985eeb7145932cb448a227567ab114f15f028e184deac693fb400388d85f1821b1918098dc97184fe9b97f12c2dfbb6feae8725

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81b06712fc9fa1543b3334b5d1cf0f9c

    SHA1

    26515a1d6b06a4446bc10022b131accba0817c3d

    SHA256

    d7401512e2754c5286efb8a334a48219ed91278c051ef5d1bd50bcb1c96d0414

    SHA512

    94ef3bbc65ad9c904af64360a1d8fa6a84b8c0a4577c08fe30d37cab790c5fb20bba1e0728cd342ef953a37d5a4e7b4e6a5296449bdbcdb6b76195b64bd85f07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee6efd016ae8badf6c08825754922a4b

    SHA1

    1de958161b97c1bfa7b0442a7d2cecd2af79bf63

    SHA256

    110f65492f11d2c35c6db5b692feab824f9ca7fc51bf06d389b767faa9f6e703

    SHA512

    e2e0acb94dfcbd8a56e6d1f4f1b3909c844e0de33f350a25ad4cecc0a93e578ee24ec79b9e3f394e863e50b10187bf6b1c9043d801071f08ff1696337417a828

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5210c684f2b8ccf20ea1138730197d1c

    SHA1

    aa56d226d06b2d0a4ea34c20ea6fb89ea67b240e

    SHA256

    77199d8b8ec7c9b519ebe04165acec569a8a6ceb52d2307f4f62b27373e9433b

    SHA512

    1337e0049d19c38f8ee8d2c84ba010d9e10e5d3724b8deda079813f46d42b7c545d65b108606a4ef45e852c714cddde4e599bb95c719c77512d65e0c6c7ff33d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5eeeaf87396444ac2a23c79833569a7b

    SHA1

    c408a4395cbe09d9e404a49afeb685081b908caa

    SHA256

    21a355e6bcb5ac7a84f286344e7f69da7037008d43dbdef6a8b16109a08a4b3c

    SHA512

    df6ef640447408ed2343d20363b937382d993cbf1d016c9666783cd3452494120f16dcdbd19c760fe4e5345a04f571c8964d64e54ea6c11504717f6426d1fec5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2E91.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar327C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit