Overview

overview

10

Static

static

10

Pollos/CeleryIn.dll

windows7-x64

1

Pollos/CeleryIn.dll

windows10-2004-x64

1

Pollos/Guna.UI2.dll

windows7-x64

1

Pollos/Guna.UI2.dll

windows10-2004-x64

1

Pollos/ICS...ib.dll

windows7-x64

1

Pollos/ICS...ib.dll

windows10-2004-x64

1

Pollos/Inject.exe

windows7-x64

1

Pollos/Inject.exe

windows10-2004-x64

1

Pollos/Mon...o.html

windows7-x64

3

Pollos/Mon...o.html

windows10-2004-x64

3

Pollos/Mon...ain.js

windows7-x64

3

Pollos/Mon...ain.js

windows10-2004-x64

3

Pollos/Mon...bat.js

windows7-x64

3

Pollos/Mon...bat.js

windows10-2004-x64

3

Pollos/Mon...fee.js

windows7-x64

3

Pollos/Mon...fee.js

windows10-2004-x64

3

Pollos/Mon...cpp.js

windows7-x64

3

Pollos/Mon...cpp.js

windows10-2004-x64

3

Pollos/Mon...arp.js

windows7-x64

3

Pollos/Mon...arp.js

windows10-2004-x64

3

Pollos/Mon...csp.js

windows7-x64

3

Pollos/Mon...csp.js

windows10-2004-x64

3

Pollos/Mon...css.js

windows7-x64

3

Pollos/Mon...css.js

windows10-2004-x64

3

Pollos/Mon...ile.js

windows7-x64

3

Pollos/Mon...ile.js

windows10-2004-x64

3

Pollos/Mon...arp.js

windows7-x64

3

Pollos/Mon...arp.js

windows10-2004-x64

3

Pollos/Mon.../go.js

windows7-x64

3

Pollos/Mon.../go.js

windows10-2004-x64

3

Pollos/Mon...ars.js

windows7-x64

3

Pollos/Mon...ars.js

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    01-08-2024 20:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Pollos/Monaco/Monaco.html

  • Size

    6KB

  • MD5

    c92f106a09dafccb4573d199897fa642

  • SHA1

    f8cf6a2ff2cffdc2f3a84277705b9eb1a8d1dfdd

  • SHA256

    40cdabb8e90643505e73fc6c5771928c1fc45e8b4afb0d7e94742b41b209ae0a

  • SHA512

    74cc96543ed2417e7351f343ba091b44d42e3b151d524a88f929cffb68d54393c0a70b424046a3c814241ba1bb0fa3383b954720332db0db5e92817e8c64de2b

  • SSDEEP

    192:wEod3PorvXhP0Qp5keghKcCI2MCTJ3+NLSaPh/WCY/jt:ud3Podcw5keghHwjt

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Pollos\Monaco\Monaco.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2072
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2072 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2968

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1dfe86e8038d1f53ca23751f20149872

    SHA1

    a4bc957dfd525365f4e353ce4714f49f9e01f125

    SHA256

    189a6e720d29a4d549485c430df140e263252866e5bf75d1af0336d769cfe8e0

    SHA512

    5f50339192ffd740e3a1ff54484101fb56234509504ac49f466f90a5e3771363700944ef581531b03159714e6c871c18227fcfe9faa03f471d50886c1d4f0163

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d3c7845be8dd195917eed9269d0ed36d

    SHA1

    a1cdbb90b335cf52d5cc24308f98e0f1ff4c75d1

    SHA256

    ff6c4d4da73360e09a8683594ffa0682fc4c934c647b13d66b787fd92c1ef659

    SHA512

    8383b4d331c1a826f850444a8d8e4abf31e1059595a3cbbd8ce0f24115b429b6a200cc7b4b9f2481c01e91d422abf79d42c60d0cdcaba8657b4768d9a1e2acb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f5a55a15b38daa76f979bd222a272a4

    SHA1

    1b49dc187b974a2fad10258f7c17c592064350b2

    SHA256

    7d4c69a04948417824fb577c0f30bd1ac702c136e1d6399470fd85ae37943761

    SHA512

    0a0d2564e2630e0998ebf8eb478ade48b123b666e02106f1c638211673ef944f706ec32077fe7e3bcd936bc6ca157dc6ef072740c4419b0a84f9fd44ca5b65f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37632f34ca9febc61c4550e4f00ddec3

    SHA1

    999846188b61cb74cacdfd9a8acebf108fae22db

    SHA256

    e0b29b37a94f530ff2f7af541a5b45fbaf61918b82010597a656c395e5421aa1

    SHA512

    6b5850ffdc4c82d997391cc148cba26971ed56409b596cec678ef3fb38c25a5927fa452ae6e93fac95b1d173bb53be244c2846e9d8ac9e768005932eccaa2c8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e40fa27aa60442d141d18696a756ba20

    SHA1

    327144abb6930d6d7b5617f81f5e9b0e83ca7597

    SHA256

    67e3d0b9abab42ffae19599d4e4445df8c847e5181db467bba92eea9f6706c11

    SHA512

    cfd33a9f2257fa109e8cdc873aeb7b10b66a2e9a4a17a22ce6266fe786e29a22eb16e2d0088281b5833831ea7dc6493892a7ce9145640f4cd877133bf5b51a76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31c2c419c90551809fae4307da69e1c1

    SHA1

    7e0885f545b2a4abc6cd3d75949e7bb678ea0eba

    SHA256

    a706eee31ceea6ff89fde5a8dacb597120d2a7fd934447c5222201602c3024d1

    SHA512

    83581862673d62efe1a94133ec459ad5c9f8dd5aeb43df589ee890b690d52b575fb7ee3981238aad463dcd95dc748d006fe86f513c05c875ab205f4f87efcf1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31b3e4ebf80e25cbd19dd9e3856a9a81

    SHA1

    cd890b84774c638bbbed7ff13fe56369cce7c0b7

    SHA256

    be3fd7cc2f85a9c1afa5df1d87b12f4414cc1a27c4191d0f818d75000af5c01e

    SHA512

    d42e4794f28bd37810acaad70876e1c53238d568e445c237f200860086669d21cd0656e5b3aeea71bc8156f10e64dcaf34bfa3e59748cdaf854567452a582435

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    352b97a7228910aa5bad01d6edd37924

    SHA1

    1b4beb138a41ce882b54b455cd284194be80aac7

    SHA256

    255c90f8517600b5814943ae662b18ec39ab4cbc3e98144fd3f71e84f9b85680

    SHA512

    2fe0638dc97c892532c1108607905cfde0939beb782caf9373646e4da7472985bc7987033474d7c7df823477d09ffeb140865b7f363870979ee5c1f7dc8620dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65ebc3199a314bac6196f3c3fcf426dc

    SHA1

    2c70e550c05b5780e3cde91d2a3ceeb7e44d3516

    SHA256

    07f4a904ffbe5ab5c3b36caafd1284546292dd089426e16be5035228afd29edf

    SHA512

    944fb8f95405c6c27f559cfa425f481b75fde998fb6ee9d3acdefd574042f526dc893611126efd1e040fb3dc683e9cd3a67834148a37e1694522366dd3686c2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c8022c9f881c3c852b2c9eaf5f75046

    SHA1

    e9345e92e3e9b19d267f7192844fe80316576850

    SHA256

    75693f27b10ae0495bcfb79d8c54bdc4fd92abe381c2e4ef0c253176a21c04fb

    SHA512

    e7f629680d99a2ba43d5e25fee7a65e8339cc659ac0074c70bd6aeb0f19e481c5a1218b4a7902fbfe9b773c5e72bd45b85c736fe5789aaee3d63f5f311c695bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df6379fcbe58ee637d63250e6b6a14f0

    SHA1

    945dac291c230e83f099151b8552ef78ca6d8654

    SHA256

    2a3fae64df3fd83e9538b05f6942ee91bbe21dda2b1908dd57bc2a173002e365

    SHA512

    004a6da273807e56289fae862cc8eea8639b3ca0744ec36c5befd4c19d16534d23f1040184ccb36a12bfe410b399cfe1144331b34d6c644d8717643c7b07cd21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ed95dc8cb9e6cc6f7e98a6dd9cc56b5

    SHA1

    dcc9edf441ea6ac0647e01a2d1e784cd8ef0c9e5

    SHA256

    bf4011b8d73694c0a80a00bb76da1ee128dc522bce6b769bef65150f9f0a4009

    SHA512

    35e555290a78e6aaa1e9ab239b43976fa2d86242424e8c89e89e55582848d67d004697669e0ba8b1efd2fa89dea5a43d962c7057bd6b1393d7d94ebeb6742ee5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ada9409377ee0bc7c7ebceb2831b597

    SHA1

    c8139a63df87b1b9f1e83df004aa1f7fd6e5c6fd

    SHA256

    4151bea8ce52a016eac0d87c748784d3dde01855669612abef50d6aca99c6ec3

    SHA512

    da4b5f94dcf5fc14f64f524afc1522ce14019a05c190948f1489d68ab73b1946c5d1a12958d2b461d80105525bec4245ad6cdbf6844e1c971388137c527e935a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39d0fc47d89e29bba42b306b6d70cc67

    SHA1

    05236914460024b874342ec1cc5444c077b46d97

    SHA256

    c52880acecc742790467fa879598f8c4cef24dfbed8533ab20a2a4d4fe5bd72d

    SHA512

    75b910ea92fd130bd32c7e7aa1cee8f68adf5c074da855debca10492a1f2cc2a8b324e7a485716ab47b1975471d7b2fdae98afe66cb0cbd33abf662114fee1d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c60855c2971d10ef6a331f0bdb75618

    SHA1

    1fed20ce8d344a94b9d14591fb9f723c0105f56c

    SHA256

    99d1a9da42be72ae2b594154264c45ccada6bd80a50d85851308b3fb91983052

    SHA512

    1d2afc248a9a361cbb4d71d9f51189c50329f800853da2088a94b8b5ae41bab8aff1170304bc567eaad2cf3aaf31dce19c3fba33fb0bf3920ab1fba66a880da4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bb7e796c9d087010365f9a916262705

    SHA1

    f65cba05be5b54ab7bce689d1557a1ba7a959f1e

    SHA256

    10b2ed5caa11b708005f69a33bed0697856d58b088a362fede4d97eb47944f74

    SHA512

    77d676d712660efc3facac9b3325472fe63ea40372062df24d8f157652bc0095daeba8ea42da106b3072354868704756bf08aeac26431bc65dd39f95ec9b5e44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6227bb1f86aca9120a67e11e634662a9

    SHA1

    753838a08ea3ec92aa2f07c5e7b2338fdb929de2

    SHA256

    11053795ef866d04eca5822707987a4272c222ea7ae4e0144a14b3aff8eafe35

    SHA512

    c6ade3210bf471f4af6c88e61f62efe4341600880cd276da1a96d73c38dfacf8becdbabb3e5dff972fc4252aa2c025960ca9e7f2d1affc6397045d5628126729

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    64a83a3242c45febf32fee8aaa7e7c04

    SHA1

    9b19321c9eeb2f397a05e2d5a1c112036db25f90

    SHA256

    285fb4e79792faca0400a4b177adc06f3df09ec47158fe768cd0c55a0ede2151

    SHA512

    ff8ce8276e4d977b0ffcd6957be831c4c3c318cebe2a3d8f0cf546d452223db1606d88d3d48c5bb3a6507954303ce20dc589a9402732555328313b52f660e546

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b04760c0294b1f42438403dea017db2

    SHA1

    93a49ad4e6821f5e1fac38bec864299953cb96ec

    SHA256

    1e8148e8c9575384e70164edf3a224534686663de61f68979e3577f60e387d3d

    SHA512

    5cace4628786d0f7e6384cea4006508b3ecd0f5854c6c9fd39cbcd8e76e063d2735d032475672c1b139ac5fc91015bd6bd0639ed892e8e87805585b64fb80321

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2D0C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2DDA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit